Probabilistic attack scenarios to evaluate policies over communication protocols

Journal of Software

Volumn 7, Issue 7, 2012, Pages 1488-1495

  Ouchani, Samir ^a   Jarraya, Yosr ^a   Mohamed, Otmane Ait ^a   Debbabi, Mourad ^a  

^a Dept of Electrical and Computer Engineering   (Canada)

Author keywords

[No Author keywords available]

Indexed keywords

ATTACK SCENARIOS; MODEL CHECKER; NON-FUNCTIONAL REQUIREMENTS; PROBABILISTIC MODEL-CHECKING; QUALITATIVE AND QUANTITATIVE ANALYSIS; QUALITATIVE ASSESSMENTS; SECURE REAL-TIME TRANSPORT PROTOCOLS; SECURITY AND PERFORMANCE; SECURITY ATTACKS; SECURITY THREATS; STREAMING PROTOCOLS; SYSTEM MODELS;

ARTIFICIAL INTELLIGENCE; SOFTWARE ENGINEERING;

MODEL CHECKING;

EID: 84865127157     PISSN: 1796217X     EISSN: None     Source Type: Journal    
DOI: 10.4304/jsw.7.7.1488-1495     Document Type: Article

References (20)

1. G. J. Holzmann, Design and Validation of Computer Protocols. Upper Saddle River, NJ, USA: Prentice-Hall, Inc., 1991.
2. C. Perkins, Rtp: audio and video for the internet. Addison-Wesley Professional, 2003.
3. L. OGorman, "Comparing Passwords, Tokens, and Biometrics for User Authentication, " Proceedings of the IEEE, vol. 91, no. 12, pp. 2021-2040, 2003.
4. E. M. C. Jr., O. Grumberg, and D. A. Peled, Model Checking. The MIT Press, 1999.
5. C. Baier and J.-P. Katoen, Principles of Model Checking. The MIT Press, may 2008.
6. P. Team, "PRISM-Probabilistic Symbolic Model Checker, " http://www.prismmodelchecker.org, last visited: June 2011.
7. M. Kwiatkowska, G. Norman, R. Segala, and J. Sproston, "Automatic verification of real-time systems with discrete probability distributions, " Theor. Comput. Sci., vol. 282, no. 1, pp. 101-150, 2002.
8. S. Chaki and A. Datta, "Aspier: An automated framework for verifying security protocol implementations, " in Computer Security Foundations Workshop, 2009, pp. 172-185.
9. E. M. Clarke, S. Jha, and W. Marrero, "Verifying security protocols with brutus, " ACM Trans. Softw. Eng. Methodol., vol. 9, pp. 443-487, October 2000.
10. M. Akbarzadeh and M. Azgomi, "A framework for probabilistic model checking of security protocols using coloured stochastic activity networks and pdetool, " in Telecommunications (IST), 2010 5th International Symposium on, dec. 2010, pp. 210-215.
11. G. Norman and V. Shmatikov, "Analysis of probabilistic contract signing, " Journal of Computer Security, vol. 14, no. 6, pp. 561-589, 2006.
12. Y. Xin, Y. Shao-hua, L. Yan, and M. Jian-hua, "Streaming media intrusion detection through interacting protocol state machines, " Future Generation Communication and Networking, vol. 1, pp. 441-444, 2008.
13. C. Lei and Y. Dejian, "Dos and ddos attack's possibility verification on streaming media application, " Information Science and Engieering, International Symposium on, vol. 2, pp. 63-67, 2008.
14. J. Bilien, E. Eliasson, J. Orrblad, and J. olov Vatn, "Secure voip: call establishment and media protection, " in In 2nd Workshop on Securing Voice over IP, 2005.
15. U. Team, "UPPAAL-, " http://http://www.uppaal.org, last visited: June 2011.
16. M. D. Abrams, "Nims information security threat methodology, " MITRE, Center for Advanced Aviation System Development, McLean, Virgini, Mitre Technical Report MTR 98 W000009, August 1998.
17. D. P. Bertsekas and J. N. Tsitsiklis, "An analysis of stochastic shortest path problems, " Math. Oper. Res., vol. 16, pp. 580-595, August 1991.
18. V. Forejt, M. Kwiatkowska, G. Norman, and D. Parker, "Automated Verification Techniques for Probabilistic Systems, " in Formal Methods for Eternal Networked Software Systems (SFM'11), ser. LNCS, M. Bernardo and V. Issarny, Eds. Springer, 2011, to appear.
19. H. Schulzrinne, A. Rao, and R. Lanphier, Real Time Streaming Protocol (RTSP), United States, 1998.
20. M. Baugher, D. McGrew, M. Naslund, E. Carrara, and K. Norrman, The Secure Real-time Transport Protocol (SRTP), United States, 2004.