# Time, Computational Complexity, and Probability in the Analysis of   Distance-Bounding Protocols

**Authors:** Max Kanovich, Tajana Ban Kirigin, Vivek Nigam, Andre Scedrov and, Carolyn Talcott

arXiv: 1702.03504 · 2017-10-05

## TL;DR

This paper explores the impact of time modeling choices on the security analysis of Distance Bounding Protocols, revealing attacks possible with dense time models but not with discrete time, and introduces a formal cyber-physical analysis framework.

## Contribution

It introduces a novel attack exploiting instruction delay in distance bounding protocols and proposes a dense time multiset rewriting model with Circle-Configurations for formal analysis.

## Key findings

- Dense time models can reveal attacks not detectable with discrete time.
- A new attack exploits instruction delay to deceive verifiers about location.
- The proposed model is implemented in Maude for automated attack detection.

## Abstract

Many security protocols rely on the assumptions on the physical properties in which its protocol sessions will be carried out. For instance, Distance Bounding Protocols take into account the round trip time of messages and the transmission velocity to infer an upper bound of the distance between two agents. We classify such security protocols as Cyber-Physical. Time plays a key role in design and analysis of many of these protocols. This paper investigates the foundational differences and the impacts on the analysis when using models with discrete time and models with dense time. We show that there are attacks that can be found by models using dense time, but not when using discrete time. We illustrate this with a novel attack that can be carried out on most Distance Bounding Protocols. In this attack, one exploits the execution delay of instructions during one clock cycle to convince a verifier that he is in a location different from his actual position. We additionally present a probabilistic analysis of this novel attack. As a formal model for representing and analyzing Cyber-Physical properties, we propose a Multiset Rewriting model with dense time suitable for specifying cyber-physical security protocols. We introduce Circle-Configurations and show that they can be used to symbolically solve the reachability problem for our model, and show that for the important class of balanced theories the reachability problem is PSPACE-complete. We also show how our model can be implemented using the computational rewriting tool Maude, the machinery that automatically searches for such attacks.

## Full text

_Full body text omitted from this summary view._ Fetch the complete paper as Markdown: https://tomesphere.com/paper/1702.03504/full.md

## Figures

42 figures with captions in the complete paper: https://tomesphere.com/paper/1702.03504/full.md

## References

43 references — full list in the complete paper: https://tomesphere.com/paper/1702.03504/full.md

---
Source: https://tomesphere.com/paper/1702.03504