Abstract | ||
---|---|---|
Availability is a critical issue in modern distributed systems. While many techniques and protocols for preventing denial of service (DoS) attacks have been proposed and deployed in recent years, formal methods for analyzing and proving them correct have not kept up with the state of the art in DoS prevention. This paper proposes a new protocol for preventing malicious bandwidth consumption, and demonstrates how game-based formal methods can be successfully used to verify availability-related security properties of network protocols. We describe two classes of DoS attacks aimed at bandwidth consumption and resource exhaustion, respectively. We then propose our own protocol, based on a variant of client puzzles, to defend against bandwidth consumption, and use the JFKr key exchange protocol as an example of a protocol that defends against resource exhaustion attacks. We specify both protocols as alternating transition systems (ATS), state their security properties in alternating-time temporal logic (ATL) and verify them using MOCHA, a model checker that has been previously used to analyze fair exchange protocols. |
Year | DOI | Venue |
---|---|---|
2005 | 10.1109/CSFW.2005.18 | CSFW |
Keywords | Field | DocType |
formal method,new protocol,bandwidth consumption,own protocol,denial-of-service prevention protocols,availability-related security property,network protocol,malicious bandwidth consumption,dos prevention,fair exchange protocol,game-based analysis,jfkr key exchange protocol,network protocols,col,dos attacks,distributed computing,key exchange,denial of service,availability,dos attack,formal verification,temporal logic,protocols,bandwidth,logic | Model checking,Denial-of-service attack,Key exchange,Computer science,Computer security,Computer network,Bandwidth (signal processing),Temporal logic,Formal methods,Communications protocol,Formal verification,Distributed computing | Conference |
ISSN | ISBN | Citations |
1063-6900 | 0-7695-2340-4 | 29 |
PageRank | References | Authors |
1.12 | 40 | 2 |
Name | Order | Citations | PageRank |
---|---|---|---|
Ajay Mahimkar | 1 | 206 | 17.45 |
Vitaly Shmatikov | 2 | 4560 | 215.44 |