Searching for just a few words should be enough to get started. If you need to make more complex queries, use the tips below to guide you.
Article type: Research Article
Authors: Kanovich, Maxa; b; * | Ban Kirigin, Tajanac | Nigam, Vivekd; g | Scedrov, Andreb; e | Talcott, Carolynf
Affiliations: [a] Department of Computer Science (UCL-CS), University College London, London, UK. E-mail: [email protected] | [b] Faculty of Computer Science, National Research University Higher School of Economics, Moscow, Russian Federation | [c] Department of Mathematics, University of Rijeka, Rijeka, Croatia. E-mail: [email protected] | [d] Computer Science Department, Federal University of Paraíba, João Pessoa, Brazil. E-mail: [email protected] | [e] Department of Mathematics, University of Pennsylvania, Philadelphia, PA, USA. E-mail: [email protected] | [f] Computer Science Laboratory, SRI International, Menlo Park, CA, USA. E-mail: [email protected] | [g] fortiss, Munich, Germany
Correspondence: [*] Corresponding author. E-mail: [email protected].
Abstract: Many security protocols rely on the assumptions on the physical properties in which its protocol sessions will be carried out. For instance, Distance Bounding Protocols take into account the round trip time of messages and the transmission velocity to infer an upper bound of the distance between two agents. We classify such security protocols as Cyber-Physical. Time plays a key role in design and analysis of many of these protocols. This paper investigates the foundational differences and the impacts on the analysis when using models with discrete time and models with dense time. We show that there are attacks that can be found by models using dense time, but not when using discrete time. We illustrate this with an attack that can be carried out on most Distance Bounding Protocols. In this attack, one exploits the execution delay of instructions during one clock cycle to convince a verifier that he is in a location different from his actual position. We additionally present a probabilistic analysis of this novel attack. As a formal model for representing and analyzing Cyber-Physical properties, we propose a Multiset Rewriting model with dense time suitable for specifying cyber-physical security protocols. We introduce Circle-Configurations and show that they can be used to symbolically solve the reachability problem for our model, and show that for the important class of balanced theories the reachability problem is PSPACE-complete. We also show how our model can be implemented using the computational rewriting tool Maude, the machinery that automatically searches for such attacks.
Keywords: Multiset Rewrite Systems, Cyber-Physical Security Protocols, protocol security, computational complexity, Maude
DOI: 10.3233/JCS-0560
Journal: Journal of Computer Security, vol. 25, no. 6, pp. 585-630, 2017
IOS Press, Inc.
6751 Tepper Drive
Clifton, VA 20124
USA
Tel: +1 703 830 6300
Fax: +1 703 830 2300
[email protected]
For editorial issues, like the status of your submitted paper or proposals, write to [email protected]
IOS Press
Nieuwe Hemweg 6B
1013 BG Amsterdam
The Netherlands
Tel: +31 20 688 3355
Fax: +31 20 687 0091
[email protected]
For editorial issues, permissions, book requests, submissions and proceedings, contact the Amsterdam office [email protected]
Inspirees International (China Office)
Ciyunsi Beili 207(CapitaLand), Bld 1, 7-901
100025, Beijing
China
Free service line: 400 661 8717
Fax: +86 10 8446 7947
[email protected]
For editorial issues, like the status of your submitted paper or proposals, write to [email protected]
如果您在出版方面需要帮助或有任何建, 件至: [email protected]