Selection of an Attack-Construction Engine to Enhance Security Protocol Analysis

Lukell, Simon and Hutchison, Andrew (2004) Selection of an Attack-Construction Engine to Enhance Security Protocol Analysis, Proceedings of Southern African Telecommunication Networks and Applications Conference (SATNAC) 2004, 6 - 8 September 2004, Spier Wine Estate.

[img] PDF

Download (80kB)


In the context of providing an integrated environment for engineering of security protocols, the incorporation of an attack-construction analysis engine has been investigated. The purpose of such an engine is to search protocol specifications for possible replay attacks against it, returning a description of the attack if found. This kind of analysis complements the logic analysis tool already present in the environment, since it can find protocol vulnerabilities that the existing analysis is unable to detect. An investigation of six publicly available attackconstruction tools was conducted, considering criteria such as capability, efficiency and usability. More project-specific factors, such as suitability for integration, also played an important part. The outcome of the investigation was that the constraint-based system by Corin & Etalle (based on an initial system by Millen & Shmatikov) was the most suitable.

Item Type: Conference paper
Date Deposited: 21 Oct 2004
Last Modified: 10 Oct 2019 15:35

Actions (login required)

View Item View Item