Probabilistic model checking for the quantification of DoS security threats

Computers and Security

Volumn 28, Issue 6, 2009, Pages 450-465

  Basagiannis, Stylianos ^a   Katsaros, Panagiotis ^a   Pombortsis, Andrew ^a   Alexiou, Nikolaos ^a  

^a ARISTOTLE UNIVERSITY OF THESSALONIKI   (Greece)

Author keywords

Attacker model; Denial of service; Probabilistic model checking; Resource exhaustion; Secure authentication

Indexed keywords

ATTACKER MODEL; DENIAL OF SERVICE; PROBABILISTIC MODEL CHECKING; RESOURCE EXHAUSTION; SECURE AUTHENTICATION;

AUTHENTICATION; COMPUTER CRIME; CONTINUOUS TIME SYSTEMS; COST BENEFIT ANALYSIS; CRYPTOGRAPHY; ELECTRIC NETWORK TOPOLOGY; ELECTRONIC COMMERCE; INTERNET PROTOCOLS; ION EXCHANGE; MARKOV PROCESSES; MOBILE TELECOMMUNICATION SYSTEMS; NETWORK PROTOCOLS; NETWORK SECURITY; PATIENT MONITORING; SECURITY SYSTEMS; TELECOMMUNICATION NETWORKS; TRANSMISSION CONTROL PROTOCOL; WIRELESS TELECOMMUNICATION SYSTEMS;

MODEL CHECKING;

EID: 67649723048     PISSN: 01674048     EISSN: None     Source Type: Journal    
DOI: 10.1016/j.cose.2009.01.002     Document Type: Article

References (27)

1. Agha G, Greenwald M, Gunter CA, Khanna S, Meseguer J, Sen K, et al. Formal modelling and analysis of DoS using probabilistic rewrite theories. Proceedings of the IEEE workshop on foundations of computer security (FCS'05). Chicago; 2005.
2. Aiello W., Bellovin S.M., Blaze M., Ioannidis J., Reingold O., Canetti R., et al. DoS-resistant, secure key exchange for internet protocols. Proceedings of the 9th ACM conference on computer and communications security (2002), ACM Press p. 48-58
3. Aura T., and Nikander P. Stateless connections. Proceedings of the 1st international conference on information and communication security (ICICS). LNCS 1334 (1997), Springer Verlag p. 87-97
4. Aura T., Nikander P., and Leiwo J. DOS-resistant authentication with client puzzles. Proceedings of the security protocols workshop, Cambridge, UK. LNCS 2133 (2001), Springer Verlag p. 170-81
5. Basagiannis S., Katsaros P., and Pombortsis A. Intrusion attack tactics for the model checking of e-commerce security guarantees. Proceedings of the 26th international conference on computer safety, reliability and security (SAFECOMP), Nuremberg, Germany. LNCS 4680 (2007), Springer Verlag p. 238-51
6. Castelliccia C, Mykletun E, Tsudik G. Improving secure server performance by rebalancing SSL/TLS handshakes. Cryptology ePrint Archive 2005/037. IACR. http://eprint.iacr.org/2005/037 (accessed 18.08.08).
7. Cederquist J, Dashti MT. An intruder model for verifying liveness in security protocols. Proceedings of the 4th ACM workshop on formal methods in security; 2006. p. 23-32.
8. CERT coordination center. Denial of service attacks. http://www.cert.org/tech_tips/ denial_of_service.html (accessed 28.12.07).
9. Dolev D., and Yao A. On the security of public-key protocols. IEEE Transactions on Information Theory 2 29 (1983) 198-208
10. Gärtner F. Revisiting liveness properties in the context of secure systems. Proceedings of the 1st international conference on formal aspects on security. LNCS 2629 (2003), Springer p. 203-11
11. Grunske L. Specification patterns for probabilistic quality patterns. Proceedings of the 30th international conference on software engineering (ICSE) (2008), ACM Press p. 31-40
12. Hansson H., and Jonsson B. A logic for reasoning about time and reliability. Formal Aspects of Computing 6 5 (1994) 512-535
13. InfraHIP project web site. http://infrahip.hiit.fi/ (accessed 21.12.07).
14. Internet Engineering Task Force (IETF) - Network Working Group. Host identity protocol. Internet draft (February 2007)
15. Karn P., and Simpson A. Photuris: session-key management protocol. RFC 2522 (1999), IETF Network Working Group
16. Kemeny J., Snell J., and Knapp A. Denumerable Markov chains. 2nd ed. (1976), Springer
17. Kwiatkowska M., Norman G., and Parker D. Stochastic model checking. In: Bernardo M., and Hillston J. (Eds). Formal methods for the design of computer, communication and software systems: performance evaluation (SFM'07). LNCS 4486 (2007), Springer 220-270
18. Kwiatkowska M. Quantitative verification: models, techniques and tools. Proceedings of the 6th joint meeting of the European software engineering conference and the ACM SIGSOFT symposium on the foundations of software engineering (ESEC/FSE) (2007), ACM Press p. 449-58
19. Madan B., Goseva-Popstojanova K., Vaidyanathan K., and Trivedi K.S. Modeling and quantification of security attributes of software systems. Proceedings of the IEEE/IFIP international conference on dependable systems and networks (DSN 02) (2002), IEEE Computer Society Press
20. Meadows C. A cost-based framework for analysis of DoS in networks. Journal of Computer Security 9 1/2 (2001) 143-164
21. Meadows C. Formal methods for cryptographic protocol analysis: emerging issues and trends. IEEE Journal on Selected Areas in Communications 21 1 (2003) 44-54
22. PRISM model checker web site. http://www.prismmodelchecker.org/ (accessed 3.01.08).
23. Probabilistic model checking DoS in HIP - PRISM model online: http://mathind.csd.auth.gr/dos_work.html (accessed 2.07.08).
24. Sen, K., Viswanathan, M., Agha, G. VESTA: a statistical model-checker and analyzer for probabilistic systems. Proceedings of the 2nd international conference on the quantitative evaluation of systems (QEST'05); 2005a. p. 251-2.
25. Sen K., Viswanathan M., and Agha G. On statistical model checking of stochastic systems. Proceedings of the 17th international conference on computer aided verification (CAV'05). LNCS 3576 (2005), Springer p. 266-88
26. Smith J, Gonzalez-Nieto JM, Boyd C. Modelling denial of service attacks on JFK with Meadows's cost-based framework. Proceedings of the fourth Australasian information security workshop (AISW-NetSec). CRPIT Series; 2006. p. 125-34.
27. Tritilanunt S., Boyd C., Foo E., and Gonzalez Neto J.M. Using coloured petri nets to simulate DoS-resistant protocols. Proceedings of the seventh workshop and tutorial on practical use of coloured petri nets and the CPN tools (2006), University of Aarhus, Denmark