loading...
 This Article 
   
 Share 
   
 Bibliographic References 
   
 Add to: 
 
Digg
Furl
Spurl
Blink
Simpy
Google
Del.icio.us
Y!MyWeb
 
 Search 
   
10th Asia-Pacific Software Engineering Conference (APSEC'03)
Formal Verification of Type Flaw Attacks in Security Protocols
Chiang Mai, Thailand
December 10-December 12
ISBN: 0-7695-2011-1
ASCII Text
x 
 
Benjamin W. Long, "Formal Verification of Type Flaw Attacks in Security Protocols," Asia-Pacific Software Engineering Conference, pp. 415, 10th Asia-Pacific Software Engineering Conference (APSEC'03), 2003.
 
 
BibTex
x
 
@article{ 10.1109/APSEC.2003.1254397,
author = {Benjamin W. Long},
title = {Formal Verification of Type Flaw Attacks in Security Protocols},
journal ={Asia-Pacific Software Engineering Conference},
volume = {0},
year = {2003},
isbn = {0-7695-2011-1},
pages = {415},
doi = {http://doi.ieeecomputersociety.org/10.1109/APSEC.2003.1254397},
publisher = {IEEE Computer Society},
address = {Los Alamitos, CA, USA},
}
 
 
RefWorks Procite/RefMan/Endnote
x 
 
TY - CONF
JO - Asia-Pacific Software Engineering Conference
TI - Formal Verification of Type Flaw Attacks in Security Protocols
SN - 0-7695-2011-1
SP
EP
A1 - Benjamin W. Long,
PY - 2003
KW - null
VL - 0
JA - Asia-Pacific Software Engineering Conference
ER -
 
Benjamin W. Long, The University of Queensland, Brisbane, Australia
Security protocols are often modelled at a high level of abstraction, potentially overlooking implementation-dependent vulnerabilities. Here we use the Z specification language's rich set of data structures to formally model potentially ambiguous messages that may be exploited in a 'type flaw' attack. We then show how to formally verify whether or not such an attack is actually possible in a particular protocol using Z's schema calculus.
Citation:
Benjamin W. Long, "Formal Verification of Type Flaw Attacks in Security Protocols," apsec, pp.415, 10th Asia-Pacific Software Engineering Conference (APSEC'03), 2003
Usage of this product signifies your acceptance of the Terms of Use.