Implementing Security Protocol Monitors

Yannick Chevalier (Irit; Universit\'e de Toulouse); Micha\"el; Rusinowitch (Lorraine University; Cnrs; Inria)

arXiv:2109.02802·cs.CR·September 8, 2021·SCSS

Implementing Security Protocol Monitors

Yannick Chevalier (Irit, Universit\'e de Toulouse), Micha\"el, Rusinowitch (Lorraine University, Cnrs, Inria)

PDF

Open Access

TL;DR

This paper proposes a method to compile attack narrations into executable tests for monitors, enhancing security by enabling detection of malicious protocol executions in cryptographic systems.

Contribution

It introduces a novel approach to transform attack descriptions into practical monitoring tests for cryptographic protocols.

Findings

01

Tests can effectively detect malicious protocol executions

02

Method can be integrated into existing implementations

03

Enhances security by preventing rogue behaviors

Abstract

Cryptographic protocols are often specified by narrations, i.e., finite sequences of message exchanges that show the intended execution of the protocol. Another use of narrations is to describe attacks. We propose in this paper to compile, when possible, attack describing narrations into a set of tests that honest participants can perform to exclude these executions. These tests can be implemented in monitors to protect existing implementations from rogue behaviour.

Peer Reviews

No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.

Videos

No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.

Taxonomy

TopicsAdvanced Malware Detection Techniques · User Authentication and Security Systems · Network Security and Intrusion Detection