发布求助
文献互助 智能选刊 最新文献

2009 22nd IEEE Computer Security Foundations Symposium最新文献

筛选
英文 中文
Minimal Message Complexity of Asynchronous Multi-party Contract Signing 异步多方合同签名的最小消息复杂度
2009 22nd IEEE Computer Security Foundations Symposium Pub Date : 2009-07-08 DOI: 10.1109/CSF.2009.15
S. Mauw, S. Radomirovic, M. Dashti
{"title":"Minimal Message Complexity of Asynchronous Multi-party Contract Signing","authors":"S. Mauw, S. Radomirovic, M. Dashti","doi":"10.1109/CSF.2009.15","DOIUrl":"https://doi.org/10.1109/CSF.2009.15","url":null,"abstract":"Multi-party contract signing protocols specify how a number of signers can cooperate in achieving a fully signed contract, even in the presence of dishonest signers. This problem has been studied in different settings, yielding solutions of varying complexity. Here we assume the presence of a trusted third party that will be contacted only in case of a conflict, asynchronous communication, and a total ordering of the protocol steps. Our goal is to develop a lower bound on the number of messages in such a protocol. Using the notion of abort chaining, a specific type of attack on fairness of signing protocols, we derive the lower bound alpha^2 + 1, with alpha being the number of signers involved. We obtain the lower bound by relating the problem of developing fair signing protocols to the open combinatorial problem of finding shortest permutation sequences. This relation also indicates a way to construct signing protocols which are shorter than state-of-the-art protocols. We illustrate our approach by presenting the shortest three-party fair contract signing protocol.","PeriodicalId":229418,"journal":{"name":"2009 22nd IEEE Computer Security Foundations Symposium","volume":"142 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2009-07-08","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"126809050","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 20
Updatable Security Views 可更新的安全视图
2009 22nd IEEE Computer Security Foundations Symposium Pub Date : 2009-07-08 DOI: 10.1109/CSF.2009.25
Nate Foster, B. Pierce, S. Zdancewic
{"title":"Updatable Security Views","authors":"Nate Foster, B. Pierce, S. Zdancewic","doi":"10.1109/CSF.2009.25","DOIUrl":"https://doi.org/10.1109/CSF.2009.25","url":null,"abstract":"Security views are a flexible and effective mechanism for controlling access to confidential information. Rather than allowing untrusted users to access source data directly, they are instead provided with are restricted view, from which all confidential information has been removed. The program that generates the view effectively embodies a confidentiality policy for the underlying source data. However, this approach has a significant drawback: it prevents users from updating the data in the view.To address the \"view update problem\" in general, a number of bidirectional languages have been proposed. Programs in these languages---often called lenses---can be run in two directions: read from left to right, they map sources to views; from right to left,they map updated views back to updated sources. However, existing bidirectional languages do not deal adequately with security. In particular, they do not provide a way to ensure the integrity of source data as it is manipulated by untrusted users of the view.We propose a novel framework of secure lenses that addresses these shortcomings. We enrich the types of basic lenses with equivalence relations capturing notions of confidentiality and integrity, and formulate the essential security conditions as non-interference properties. We then instantiate this framework in the domain of string transformations, developing syntax for bidirectional string combinators with security-annotated regular expressions as their types.","PeriodicalId":229418,"journal":{"name":"2009 22nd IEEE Computer Security Foundations Symposium","volume":"4 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2009-07-08","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"127391371","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 40
Achieving Security Despite Compromise Using Zero-knowledge 利用零知识实现安全
2009 22nd IEEE Computer Security Foundations Symposium Pub Date : 2009-07-08 DOI: 10.1109/CSF.2009.24
M. Backes, Martin P. Grochulla, Catalin Hritcu, Matteo Maffei
{"title":"Achieving Security Despite Compromise Using Zero-knowledge","authors":"M. Backes, Martin P. Grochulla, Catalin Hritcu, Matteo Maffei","doi":"10.1109/CSF.2009.24","DOIUrl":"https://doi.org/10.1109/CSF.2009.24","url":null,"abstract":"One of the important challenges when designing and analyzing cryptographic protocols is the enforcement of security properties in the presence of compromised participants. This paper presents a general technique for strengthening cryptographic protocols in order to satisfy authorization policies despite participant compromise. The central idea is to automatically transform the original cryptographic protocols by adding non-interactive zero-knowledge proofs.Each participant proves that the messages sent to the other participants are generated in accordance to the protocol.The zero-knowledge proofs are forwarded to ensure the correct behavior of all participants involved in the protocol, without revealing any secret data.We use an enhanced type system for zero-knowledge to verify that the transformed protocols conform to their authorization policy even if some participants are compromised.Finally, we developed a tool that automatically generates ML implementations of protocols based on zero-knowledge proofs.The protocol transformation, the verification, and the generation of protocol implementations are fully automated.","PeriodicalId":229418,"journal":{"name":"2009 22nd IEEE Computer Security Foundations Symposium","volume":"63 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2009-07-08","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"123692282","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 20
Specification and Analysis of Dynamic Authorisation Policies 动态授权策略的规范与分析
2009 22nd IEEE Computer Security Foundations Symposium Pub Date : 2009-07-08 DOI: 10.1109/CSF.2009.14
Moritz Y. Becker
{"title":"Specification and Analysis of Dynamic Authorisation Policies","authors":"Moritz Y. Becker","doi":"10.1109/CSF.2009.14","DOIUrl":"https://doi.org/10.1109/CSF.2009.14","url":null,"abstract":"This paper presents a language, based on transaction logic, for specifying dynamic authorisation policies, i.e., rules governing actions that may depend on and update the authorisation state. The language is more expressive than previous dynamic authorisation languages, featuring conditional bulk insertions and retractions of authorisation facts, non-monotonic negation, and nested action definitions with transactional execution semantics. Two complementary policy analysis methods are also presented, one based on AI planning for verifying reachability properties in finite domains, and the second based on automated theorem proving, for checking policy invariants that hold for all sequences of actions and in arbitrary, including infinite, domains. The combination of both methods can analyse a wide range of security properties, including safety, availability and containment.","PeriodicalId":229418,"journal":{"name":"2009 22nd IEEE Computer Security Foundations Symposium","volume":"59 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2009-07-08","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"132469617","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 45
A Secure Cryptographic Token Interface 一个安全的加密令牌接口
2009 22nd IEEE Computer Security Foundations Symposium Pub Date : 2009-07-08 DOI: 10.1109/CSF.2009.7
C. Cachin, Nishanth Chandran
{"title":"A Secure Cryptographic Token Interface","authors":"C. Cachin, Nishanth Chandran","doi":"10.1109/CSF.2009.7","DOIUrl":"https://doi.org/10.1109/CSF.2009.7","url":null,"abstract":"Cryptographic keys must be protected from exposure. In real-world applications, they are often guarded by cryptographic tokens that employ sophisticated hardware-security measures. Several logical attacks on the key management operations of cryptographic tokens have been reported in the past, which allowed to expose keys merely by exploiting the token API in unexpected ways. This paper proposes a novel, provably secure, cryptographic token interface that supports multiple users, implements symmetric cryptosystems and public-key schemes, and provides operations for key generation, encryption, authentication, and key wrapping. The token interface allows only the most important operations found in real-world token APIs; while flexible to be of practical use, it is restricted enough so that it does not expose any key to a user without sufficient privileges. The security policy can be applied to the industry-standard PKCS #11 interface.","PeriodicalId":229418,"journal":{"name":"2009 22nd IEEE Computer Security Foundations Symposium","volume":"312 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2009-07-08","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"115936388","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 39
A Method for Proving Observational Equivalence 一种证明观测等效性的方法
2009 22nd IEEE Computer Security Foundations Symposium Pub Date : 2009-07-08 DOI: 10.1109/CSF.2009.9
V. Cortier, S. Delaune
{"title":"A Method for Proving Observational Equivalence","authors":"V. Cortier, S. Delaune","doi":"10.1109/CSF.2009.9","DOIUrl":"https://doi.org/10.1109/CSF.2009.9","url":null,"abstract":"Formal methods have proved their usefulness for analyzing the security of protocols. Most existing results focus on trace properties like secrecy (expressed as a reachability property) or authentication. There are however several security properties, which cannot be defined (or cannot be naturally defined) as trace properties and require the notion of observational equivalence. Typical examples are anonymity, privacy related properties or statements closer to security properties used in cryptography.In this paper, we consider the applied pi calculus and we show that for determinate processes, observational equivalence actually coincides with trace equivalence, a notion simpler to reason with.We exhibit a large class of determinate processes, called simple processes, that capture most existing protocols and cryptographic primitives. Then, for simple processes without replication nor else branch,we reduce the decidability of trace equivalence to deciding an equivalence relation introduced by M. Baudet. Altogether, this yields the first decidability result of observational equivalence for a general class of equational theories.","PeriodicalId":229418,"journal":{"name":"2009 22nd IEEE Computer Security Foundations Symposium","volume":"27 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2009-07-08","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"130651932","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 80
Universally Composable Symmetric Encryption 普遍可组合对称加密
2009 22nd IEEE Computer Security Foundations Symposium Pub Date : 2009-07-08 DOI: 10.1109/CSF.2009.18
Ralf Küsters, Max Tuengerthal
{"title":"Universally Composable Symmetric Encryption","authors":"Ralf Küsters, Max Tuengerthal","doi":"10.1109/CSF.2009.18","DOIUrl":"https://doi.org/10.1109/CSF.2009.18","url":null,"abstract":"For most basic cryptographic tasks, such as public-key encryption, digital signatures, authentication, key exchange, and many other more sophisticated tasks, ideal functionalities have been formulated in the simulation-based security approach, along with their realizations. Surprisingly, however, no such functionality exists for symmetric encryption, except for a more abstract Dolev-Yao style functionality. In this paper, we fill this gap. We propose two functionalities for symmetric encryption, an unauthenticated and an authenticated version, and show that they can be implemented based on standard cryptographic assumptions for symmetric encryption schemes, namely IND-CCA security and authenticated encryption, respectively, provided that the environment does not create key cycles or cause these-called commitment problem. We also illustrate the usefulness of our functionalities in applications, both in simulation-based and game-based security settings.","PeriodicalId":229418,"journal":{"name":"2009 22nd IEEE Computer Security Foundations Symposium","volume":"10 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2009-07-08","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"132362556","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 30
Authentication without Elision: Partially Specified Protocols, Associated Data, and Cryptographic Models Described by Code 没有省略的身份验证:部分指定的协议、关联数据和代码描述的加密模型
2009 22nd IEEE Computer Security Foundations Symposium Pub Date : 2009-07-08 DOI: 10.1109/CSF.2009.23
P. Rogaway, Till Stegers
{"title":"Authentication without Elision: Partially Specified Protocols, Associated Data, and Cryptographic Models Described by Code","authors":"P. Rogaway, Till Stegers","doi":"10.1109/CSF.2009.23","DOIUrl":"https://doi.org/10.1109/CSF.2009.23","url":null,"abstract":"Specification documents for real-world authentication protocols typically mandate some aspects of a protocol's behavior but leave other features optional or undefined. In addition, real-world schemes often include parameter negotiations, authenticate associated data, and support a multiplicity of options. The cryptographic community has routinely elided such matters from our definitions, schemes, and proofs. We propose encompassing them by explicitly modeling the presence of unspecified protocol functionality. To demonstrate, we provide a new treatment for mutual authentication in the public-key setting, doing this in the computational cryptographic tradition. In our model, compactly described in pseudocode, a protocol core (PC) will call out to protocol details (PD), but, for defining security, such calls will be serviced by the adversary. Parties accepting an authentication exchange will output a string of associated data, the value of which may be determined by the PD calls. We illustrate the approach by re-proving security for the Needham-Schroeder-Lowe public-key protocol, but extended in a manner that would be typical were the mechanism embedded in a real-world standard.","PeriodicalId":229418,"journal":{"name":"2009 22nd IEEE Computer Security Foundations Symposium","volume":"85 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2009-07-08","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"133823430","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 15
Securing Timeout Instructions in Web Applications 在Web应用程序中保护超时指令
2009 22nd IEEE Computer Security Foundations Symposium Pub Date : 2009-07-08 DOI: 10.1109/CSF.2009.16
Alejandro Russo, A. Sabelfeld
{"title":"Securing Timeout Instructions in Web Applications","authors":"Alejandro Russo, A. Sabelfeld","doi":"10.1109/CSF.2009.16","DOIUrl":"https://doi.org/10.1109/CSF.2009.16","url":null,"abstract":"Timeout mechanisms are a useful feature for web applications. However, these mechanisms need to be used with care because, if used as-is, they are vulnerable to timing attacks. This paper focuses on internal timing attacks, a particularly dangerous class of timing attacks, where the attacker needs no access to a clock. In the context of client-side web application security, we present JavaScript-based exploits against the timeout mechanism of the DOM (document object model), supported by the modern browsers. Our experimental findings reveal rather liberal choices for the timeout semantics by different browsers and motivate the need for a general security solution. We propose a foundation for such a solution in the form of a runtime monitor. We illustrate for a simple language that, while being more permissive than a typical static analysis, the monitor enforces termination-insensitive noninterference.","PeriodicalId":229418,"journal":{"name":"2009 22nd IEEE Computer Security Foundations Symposium","volume":"23 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2009-07-08","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"133880314","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 43
Expressive Power of Definite Clauses for Verifying Authenticity 定句真实性验证的表达能力
2009 22nd IEEE Computer Security Foundations Symposium Pub Date : 2009-07-08 DOI: 10.1109/CSF.2009.12
G. Filé, R. Vigo
{"title":"Expressive Power of Definite Clauses for Verifying Authenticity","authors":"G. Filé, R. Vigo","doi":"10.1109/CSF.2009.12","DOIUrl":"https://doi.org/10.1109/CSF.2009.12","url":null,"abstract":"Thanks to the work of Bruno Blanchet definite clauses are an established technique for verifying security properties of communication protocols. We investigate the expressive power of this approach with respect to verifying authenticity. A translation from protocols into definite clauses is given, and direct proofs for correctness and completeness of the authenticity verification based on these clauses are shown. These proofs are new, and in particular the completeness result is surprising. These results, beside their intrinsic value, shed light on some interesting issues about existing proposals for exploiting definite clauses in protocols verification.","PeriodicalId":229418,"journal":{"name":"2009 22nd IEEE Computer Security Foundations Symposium","volume":"255 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2009-07-08","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"128786777","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 1
下一页 尾页
0
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
现在去查看 取消
×
提示
确定
请完成安全验证×
相关产品
×
本文献相关产品
联系我们:info@booksci.cn Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。 Copyright © 2023 布克学术 All rights reserved.
京ICP备2023020795号-1
ghs 京公网安备 11010802042870号
Book学术文献互助
Book学术文献互助群
群 号:604180095
Book学术官方微信