The Ever Changing Threat Model: A Social-Technical Perspective

Workshop on Socio-Technical Aspects in Security and Trust Pub Date : 2013-06-29 DOI:10.1109/STAST.2013.16

J. E. Martina

{"title":"The Ever Changing Threat Model: A Social-Technical Perspective","authors":"J. E. Martina","doi":"10.1109/STAST.2013.16","DOIUrl":null,"url":null,"abstract":"Summary form only given. Since Needham and Schroeder introduced the idea of an active attacker, a lot of research has been made on the technical side of information security in order to verify the protocols' claims against this type of attacker. Nowadays, the Dolev-Yao threat model is the most widely accepted attacker model for that. Consequently, we tend to consider systems when secure against an attacker under Dolev-Yao's assumptions. With the introduction of the human-centric security ideas we include human peers in our designs. With this addition we can potentially find and solve security flaws that were previously not detectable.In this talk, we will discuss that even though Dolev-Yao's threat model can represent the most powerful attacker possible, the attacker in this model is not realistic in certain scenarios, especially those related to the human peers. We look over other variations of threat models, including a dynamic threat model that can be adjusted according to each social-technical context. These new perspectives will help us to model and analyse security requirements in human-computer interaction always regarding to realistic scenarios without degrading security and improving usability.","PeriodicalId":262100,"journal":{"name":"Workshop on Socio-Technical Aspects in Security and Trust","volume":"101 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2013-06-29","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Workshop on Socio-Technical Aspects in Security and Trust","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/STAST.2013.16","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

Summary form only given. Since Needham and Schroeder introduced the idea of an active attacker, a lot of research has been made on the technical side of information security in order to verify the protocols' claims against this type of attacker. Nowadays, the Dolev-Yao threat model is the most widely accepted attacker model for that. Consequently, we tend to consider systems when secure against an attacker under Dolev-Yao's assumptions. With the introduction of the human-centric security ideas we include human peers in our designs. With this addition we can potentially find and solve security flaws that were previously not detectable.In this talk, we will discuss that even though Dolev-Yao's threat model can represent the most powerful attacker possible, the attacker in this model is not realistic in certain scenarios, especially those related to the human peers. We look over other variations of threat models, including a dynamic threat model that can be adjusted according to each social-technical context. These new perspectives will help us to model and analyse security requirements in human-computer interaction always regarding to realistic scenarios without degrading security and improving usability.

查看原文本刊更多论文

不断变化的威胁模型:社会-技术视角

只提供摘要形式。自从Needham和Schroeder提出主动攻击者的概念以来，人们在信息安全的技术方面进行了大量的研究，以验证协议对这种类型攻击者的声明。目前，Dolev-Yao威胁模型是最被广泛接受的攻击模型。因此，在Dolev-Yao的假设下，我们倾向于考虑系统对攻击者是安全的。随着以人为本的安全理念的引入，我们将人类同伴纳入我们的设计中。有了这个功能，我们可以潜在地发现并解决以前无法检测到的安全漏洞。在这次演讲中，我们将讨论即使Dolev-Yao的威胁模型可以代表最强大的攻击者，但在某些情况下，特别是与人类同伴有关的情况下，该模型中的攻击者是不现实的。我们研究了威胁模型的其他变体，包括可以根据每个社会技术背景进行调整的动态威胁模型。这些新的视角将帮助我们建模和分析人机交互中的安全需求，总是考虑到现实的场景，而不会降低安全性和提高可用性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Workshop on Socio-Technical Aspects in Security and Trust

自引率

0.00%

发文量