Detecting man-in-the-middle attacks by precise timing

Proceedings - 2009 3rd International Conference on Emerging Security Information, Systems and Technologies, SECURWARE 2009

Volumn , Issue , 2009, Pages 81-86

  Aziz, Benjamin ^a   Hamilton, Geoff ^b  

^a RUTHERFORD APPLETON LABORATORY   (United Kingdom)

^b DUBLIN CITY UNIVERSITY   (Ireland)

Author keywords

[No Author keywords available]

Indexed keywords

DISTRIBUTED COMPUTING TECHNOLOGY; DISTRIBUTED SYSTEMS; IP SPOOFING; MAN IN THE MIDDLE ATTACKS; MOBILE PROCESS; SAFETY CRITICAL APPLICATIONS; STATIC-ANALYSIS ALGORITHM; WIRELESS COMMUNICATIONS;

TIME MEASUREMENT;

WIRELESS TELECOMMUNICATION SYSTEMS;

EID: 70449472280     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/SECURWARE.2009.20     Document Type: Conference Paper

References (24)

1. N. Asokan, Valtteri Niemi, and Kaisa Nyberg. Man-in-the-Middle in Tunnelled Authentication Protocols. In Bruce Christianson, Bruno Crispo, James A. Malcolm, and Michael Roe, editors, Security Protocols Workshop, volume 3364 of Lecture Notes in Computer Science, pages 28-41. Springer, 2003.
2. B. Aziz. A Static Analysis Framework for Security Properties in Mobile and Cryptographic Systems. PhD thesis, School of Computing, Dublin City University, Dublin, Ireland, 2003.
3. nd Workshop on the Specification, Analysis and Validation for Emerging Technologies, number 94 in Datalogiske Skrifter, Copenhagen, Denmark, July 2002. Roskilde University.
4. Benjamin Aziz, Geoff Hamilton, and David Gray. A static analysis of cryptographic processes: The denotational approach. Journal of Logic and Algebraic Programming, 64(2):285-320, August 2005.
5. Martin Berger and Kohei Honda. The two-phase commitment protocol in an extended pi-calculus. Electronic Notes in Theoretical Comp. Science, 39(1), 2000.
6. Stefan Brands and David Chaum. Distance-bounding protocols. In Tor Helleseth, editor, Proceedings of EURO-CRYPT' 93, Workshop on the Theory and Application of of Cryptographic Techniques, volume 765 of Lecture Notes in Computer Science, pages 344-359, Lofthus, Norway, May 1993. Springer.
7. th Annual Symposium on Logic in Computer Science, pages 246-265, Boston, MA, U.S.A., June 2001. IEEE Computer Society Press.
8. Jolyon Clulow, Gerhard P. Hancke, Markus G. Kuhn, and Tyler Moore. So near and yet so far: Distance-bounding attacks in wireless networks. In Levente Buttyán, Virgil D. Gligor, and Dirk Westhoff, editors, ESAS, volume 4357 of Lecture Notes in Computer Science, pages 83-97. Springer, 2006.
9. nd Annual Symposium on Foundations of Computer Science, pages 350-357, October 1981.
10. Ratan K. Guha, Zeeshan Furqan, and Shahabuddin Muhammad. Discovering man-in-the-middle attacks in authentication protocols. Military Communications Conference, 2007. MILCOM 2007. IEEE, pages 1-7, Oct. 2007.
11. Gerhard P. Hancke and Markus G. Kuhn. An RFID distance bounding protocol. In Proceedings of the First International Conference on Security and Privacy for Emerging Areas in Communications Networks, pages 67-73, Athens, Greece, September 2005. ACM Press.
12. Gerhard P. Hancke and Markus G. Kuhn. Attacks on time-of-flight distance bounding channels. In WiSec '08: Proceedings of the first ACM conference on Wireless network security, pages 194-202, New York, NY, USA, 2008. ACM.
13. Chong Hee Kim, Gildas Avoine, Franois Koeune, François-Xavier Standaert, and Olivier Pereira. The Swiss-Knife RFID Distance Bounding Protocol. In The 11th International Conference on Information Security and Cryptology - ICISC 2008, pages 98-115. Springer-Verlag, 2008.
14. Dennis Ku7die;gler. "Man in the Middle" Attacks on Bluetooth. In Rebecca N. Wright, editor, Financial Cryptography, volume 2742 of Lecture Notes in Computer Science, pages 149-161. Springer, 2003.
15. Catherine Meadows. A cost-based framework for analysis of denial of service networks. Journal of Computer Security, 9(1/2):143-164, 2001.
16. Catherine Meadows, Radha Poovendran, Dusko Pavlovic, LiWu Chang, and Paul Syverson. Distance bounding protocols: Authentication logic analysis and collusion attacks. Advances in Information Security: Secure Localization and Time Synchronization for Wireless Sensor and Ad Hoc Networks, 30, 2006.
17. Ulrike Meyer and Susanne Wetzel. A man-in-the-middle attack on UMTS. In WiSe '04: Proceedings of the 3rd ACM workshop on Wireless security, pages 90-97, New York, NY, USA, 2004. ACM.
18. Robin Milner, Joachim Parrow, and David Walker. A calculus of mobile processes (parts I & II). Information and Computation, 100(1):1-77, September 1992.
19. Ventzislav Nikov and Marc Vauclair. Yet another secure distance-bounding protocol. Cryptology ePrint Archive, Report 2008/319, 2008. http://eprint.iacr. org/.
20. Dimitrios N. Serpanos and Richard J. Lipton. Defense against man-in-the-middle attack in client-server systems. In ISCC, pages 9-14. IEEE Computer Society, 2001.
21. Vitaly Shmatikov and Ming-Hsiu Wang. Secure verification of location claims with simultaneous distance modification. In Iliano Cervesato, editor, ASIAN, volume 4846 of Lecture Notes in Computer Science, pages 181-195. Springer, 2007.
22. Dave Singelée and Bart Preneel. Location verification using secure distance bounding protocols. In Proceedings of the 2005 IEEE International Workshop on Wireless and Sensor Networks Security, pages 834-840, Washington DC, USA, November 2005. IEEE Computer Society.
23. Yu-Ju Tu and Selwyn Piramuthu. RFID Distance Bounding Protocols. In First International EURASIP Workshop on RFID Technology, Vienna, Austria, September 2007.
24. Haidong Xia and José Carlos Brustoloni. Hardening web browsers against man-in-the-middle and eavesdropping attacks. In WWW '05: Proceedings of the 14th international conference on World Wide Web, pages 489-498, New York, NY, USA, 2005. ACM.