Security Protocol Design via Authentication Tests

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Joshua D. Guttman

15th IEEE Computer Security Foundations Workshop (CSFW'02)

Cape Breton, Nova Scotia, Canada

June 24-June 26

ISBN: 0-7695-1689-0

	ASCII Text	x
	Joshua D. Guttman, "Security Protocol Design via Authentication Tests," Computer Security Foundations Workshop, IEEE, pp. 92, 15th IEEE Computer Security Foundations Workshop (CSFW'02), 2002.

	BibTex	x
	@article{ 10.1109/CSFW.2002.1021809, author = {Joshua D. Guttman}, title = {Security Protocol Design via Authentication Tests}, journal ={Computer Security Foundations Workshop, IEEE}, volume = {0}, year = {2002}, issn = {1063-6900}, pages = {92}, doi = {http://doi.ieeecomputersociety.org/10.1109/CSFW.2002.1021809}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computer Security Foundations Workshop, IEEE TI - Security Protocol Design via Authentication Tests SN - 1063-6900 SP EP A1 - Joshua D. Guttman, PY - 2002 KW - null VL - 0 JA - Computer Security Foundations Workshop, IEEE ER -

Joshua D. Guttman, The MITRE Corporation

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/CSFW.2002.1021809

We describe a protocol design process, and illustrate its use by creating ATSPEC, an Authentication Test-based Secure Protocol for Electronic Commerce Transactions. The design process is organized around the authentication tests, a method for protocol verification based on the strand space theory. The authentication tests dictate how randomly generated values such as nonces may be combined with encryption to achieve authentication and freshness.

ATSPEC offers functionality and security guarantees akin to the purchase request, payment authorization, and payment capture phases of SET, the secure electronic transaction standard created by the major credit card firms.

Citation:

Joshua D. Guttman, "Security Protocol Design via Authentication Tests," csfw, pp.92, 15th IEEE Computer Security Foundations Workshop (CSFW'02), 2002

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.