Game-based analysis of denial-of-service prevention protocols

18th IEEE Computer Security Foundations Workshop (CSFW'05) Pub Date : 2005-06-20 DOI:10.1109/CSFW.2005.18

A. Mahimkar, Vitaly Shmatikov

{"title":"Game-based analysis of denial-of-service prevention protocols","authors":"A. Mahimkar, Vitaly Shmatikov","doi":"10.1109/CSFW.2005.18","DOIUrl":null,"url":null,"abstract":"Availability is a critical issue in modern distributed systems. While many techniques and protocols for preventing denial of service (DoS) attacks have been proposed and deployed in recent years, formal methods for analyzing and proving them correct have not kept up with the state of the art in DoS prevention. This paper proposes a new protocol for preventing malicious bandwidth consumption, and demonstrates how game-based formal methods can be successfully used to verify availability-related security properties of network protocols. We describe two classes of DoS attacks aimed at bandwidth consumption and resource exhaustion, respectively. We then propose our own protocol, based on a variant of client puzzles, to defend against bandwidth consumption, and use the JFKr key exchange protocol as an example of a protocol that defends against resource exhaustion attacks. We specify both protocols as alternating transition systems (ATS), state their security properties in alternating-time temporal logic (ATL) and verify them using MOCHA, a model checker that has been previously used to analyze fair exchange protocols.","PeriodicalId":333912,"journal":{"name":"18th IEEE Computer Security Foundations Workshop (CSFW'05)","volume":"52 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2005-06-20","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"51","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"18th IEEE Computer Security Foundations Workshop (CSFW'05)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/CSFW.2005.18","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 51

Abstract

Availability is a critical issue in modern distributed systems. While many techniques and protocols for preventing denial of service (DoS) attacks have been proposed and deployed in recent years, formal methods for analyzing and proving them correct have not kept up with the state of the art in DoS prevention. This paper proposes a new protocol for preventing malicious bandwidth consumption, and demonstrates how game-based formal methods can be successfully used to verify availability-related security properties of network protocols. We describe two classes of DoS attacks aimed at bandwidth consumption and resource exhaustion, respectively. We then propose our own protocol, based on a variant of client puzzles, to defend against bandwidth consumption, and use the JFKr key exchange protocol as an example of a protocol that defends against resource exhaustion attacks. We specify both protocols as alternating transition systems (ATS), state their security properties in alternating-time temporal logic (ATL) and verify them using MOCHA, a model checker that has been previously used to analyze fair exchange protocols.

查看原文本刊更多论文

基于博弈的拒绝服务防范协议分析

可用性是现代分布式系统中的一个关键问题。虽然近年来提出并部署了许多防止拒绝服务(DoS)攻击的技术和协议，但用于分析和证明其正确性的正式方法并没有跟上DoS防御的最新水平。本文提出了一种防止恶意带宽消耗的新协议，并演示了如何成功地使用基于游戏的形式化方法来验证网络协议的可用性相关安全属性。我们分别描述了两类针对带宽消耗和资源耗尽的DoS攻击。然后，我们根据客户端谜题的一个变体提出我们自己的协议，以防止带宽消耗，并使用JFKr密钥交换协议作为防止资源耗尽攻击的协议示例。我们将这两种协议指定为交替转换系统(ATS)，在交替时间时间逻辑(ATL)中声明它们的安全属性，并使用MOCHA验证它们，MOCHA是以前用于分析公平交换协议的模型检查器。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

18th IEEE Computer Security Foundations Workshop (CSFW'05)

自引率

0.00%

发文量