Security Protocols I - Information Security

More documents

Recommendations

Info

Sebastian Mödersheim 57Prudent engineering of security protocols• Principles proposed by Abadi and Needham (1994, 1995):◮ Every message should say what it means.◮ Specify clearly conditions for a message to be acted on.◮ Mention names explicitly if they are essential to the meaning.◮ Be clear as to why encryption is being done: confidentiality,message authentication, binding of messages, ...e.g. {X, Y } inv(K) versus {X} inv(K) , {Y } inv(K)◮ Be clear on what properties you are assuming.◮ Beware of clock variations (for timestamps).◮ etc.• Good advice, but◮ Is the protocol guaranteed to be secure then?◮ Is it optimal and/or minimal then?◮ Have you considered all types of attacks?◮ etc.FMSEC Module 2, v.2 28.09.2009
Sebastian Mödersheim 58Summary• <strong>Security</strong> protocols can achieve properties that cryptographicprimitives alone cannot offer, e.g. authentication, secrecy, ...• The example is simple, but the ideas are general.• Even three liners show how difficult the art of correct design is.Let every eye negotiate for itselfAnd trust no agent; for beauty is a witchAgainst whose charms faith melteth into blood.• Formal analysis of protocols is required.(William Shakespeare, Much ado about nothing)However, formal analysis of protocols is nontrivial (even assumingperfect cryptography).FMSEC Module 2, v.2 28.09.2009
Page 1 and 2:
Security Protocols IIntroductionSeb
Page 3 and 4:
Sebastian Mödersheim 2Good Crypto
Page 5 and 6:
Sebastian Mödersheim 4Motivation
Page 7 and 8: Sebastian Mödersheim 6Road map•
Page 9 and 10: Sebastian Mödersheim 8Building a k
Page 11 and 12: Sebastian Mödersheim 1. A, B10Buil
Page 13 and 14: Sebastian Mödersheim 1. A, B12Buil
Page 15 and 16: Sebastian Mödersheim 14Building a
Page 19: Sebastian Mödersheim 18Building a
Page 24 and 25: iSebastian Mödersheim 23Building a
Page 32 and 33: Sebastian Mödersheim 31ExerciseCan
Page 34 and 35: Sebastian Mödersheim 33Summary: Co
Page 36 and 37: Sebastian Mödersheim 35Summary: Pr
Page 38 and 39: Sebastian Mödersheim 37An authenti
Page 40 and 41: Sebastian Mödersheim 39Informal Co
Page 42 and 43: Sebastian Mödersheim 41Man-in-the-
Page 44 and 45: Sebastian Mödersheim 43Assumptions
Page 46 and 47: Sebastian Mödersheim 45Examples of
Page 48 and 49: Sebastian Mödersheim 47Type flaw a
Page 50 and 51: Sebastian Mödersheim 49Type flaw a
Page 52 and 53: Sebastian Mödersheim 51Example of
Page 54 and 55: Sebastian Mödersheim 53Example of
Page 56 and 57: Sebastian Mödersheim 55. . . and s
Page 60: Sebastian Mödersheim 59Bibliograph
show all

Security Protocols I - Information Security

Create successful ePaper yourself

Delete template?

Save as template?