UnipiEprints
Università di Pisa
Sistema bibliotecario di ateneo

Detecting and Preventing Type flaws: a Control Flow Analysis with tags

Bodei, Chiara and Degano, Pierpaolo and Gao, Han and Brodo, Linda (2007) Detecting and Preventing Type flaws: a Control Flow Analysis with tags. Technical Report del Dipartimento di Informatica . Università di Pisa, Pisa, IT.

Full text not available from this repository.

Abstract

A type flaw attack on a security protocol is an attack where an honest principal is cheated on interpreting a field in a message as the one with a type other than the intended one. In this paper, we shall present an extension of the LySa calculus with tags attached to each field, indicating the intended types. We developed a control flow analysis for analysing the extended LySa, which over-approximates all the possible behaviour of a protocol and hence is able to capture any type confusion that may happen during the protocol execution. The control flow analysis has been applied to a number of security protocols, either subject to type flaw attacks or not. The results show that it is able to capture type flaw attacks on those security protocols.

Item Type: Book
Uncontrolled Keywords: Security Protocol, Control Flow Analysis, Type Flaw Attacks
Subjects: Area01 - Scienze matematiche e informatiche > INF/01 - Informatica
Divisions: UNSPECIFIED
Depositing User: dott.ssa Sandra Faita
Date Deposited: 09 Dec 2014 13:42
Last Modified: 09 Dec 2014 13:42
URI: http://eprints.adm.unipi.it/id/eprint/2189

Repository staff only actions

View Item