Volume 3 Number 5 (May 2008)
Home > Archive > 2008 > Volume 3 Number 5 (May 2008) >
JSW 2008 Vol.3(5): 40-54 ISSN: 1796-217X
doi: 10.4304/jsw.3.5.40-54

Deciding the Correctness of Attacks on Authentication Protocols

Anders Moen Hagalisletto
Department of Informatics, University of Oslo, Postbox 1080 Blindern, 0316 Oslo, Norway

Abstract—A new tool for automated validation of attacks on authentication protocols has been used to find several errors and ambiguities in the list of attacks described in the well known report by Clark and Jacob. In this paper the errors are presented and classified. Corrected descriptions of the incorrect attacks are given for the attacks that can be easily repaired. The underlying method for finding errors in attacks is presented, including a formal language for attack specification, a validation algorithm, and a framework for executing attacks. At the end of the paper, the connection between validation and simulation is settled: Every attack specification that can be successfully executed is valid.

Index Terms—Authentication protocols, attacks, validation

[PDF]

Cite: Anders Moen Hagalisletto, " Deciding the Correctness of Attacks on Authentication Protocols," Journal of Software vol. 3, no. 5, pp. 40-54, 2008.

General Information

ISSN: 1796-217X (Online)
Frequency: Monthly
Editor-in-Chief: Prof. Antanas Verikas
Executive Editor: Ms. Yoyo Y. Zhou
Abstracting/ Indexing: DBLP, EBSCO, ProQuest, INSPEC, ULRICH's Periodicals Directory, WorldCat, etc
E-mail: jsw@iap.org
  • Dec 06, 2019 News!

    Vol 14, No 1- Vol 14, No 4 has been indexed by EI (Inspec)   [Click]

  • Nov 18, 2019 News!

    Papers published in JSW Vol 14, No 1- Vol 14 No 10 have been indexed by DBLP     [Click]

  • Dec 06, 2019 News!

     Vol 13, No 10- Vol 13, No 12 has been indexed by EI (Inspec)   [Click]

  • Aug 01, 2018 News!

    [CFP] 2020 the annual meeting of JSW Editorial Board, ICCSM 2020, will be held in Rome, Italy, July 17-19, 2020   [Click]

  • Jun 25, 2019 News!

    Vol.13, No.9 has been indexed by EI (Inspec).   [Click]