research-article

An updated threat model for security ceremonies

Authors:

Marcelo Carlomagno Carlos,

Jean Everson Martina,

Ricardo Felipe CustódioAuthors Info & Claims

SAC '13: Proceedings of the 28th Annual ACM Symposium on Applied Computing

Pages 1836 - 1843

https://doi.org/10.1145/2480362.2480705

Published: 18 March 2013 Publication History

Abstract

Since Needham and Schroeder introduced the idea of an active attacker, a lot of research has been made in the protocol design and analysis area in order to verify the protocols' claims against this type of attacker. Nowadays, the Dolev-Yao threat model is the most widely accepted attacker model in the analysis of security protocols. Consequently, there are several security protocols considered secure against an attacker under Dolev-Yao's assumptions. With the introduction of the concept of ceremonies, which extends protocol design and analysis to include human peers, we can potentially find and solve security flaws that were previously not detectable. In this paper, we discuss that even though Dolev-Yao's threat model can represent the most powerful attacker possible in a ceremony, the attacker in this model is not realistic in certain scenarios, especially those related to the human peers. We propose a dynamic threat model that can be adjusted according to each ceremony, and consequently adapt the model and the ceremony analysis to realistic scenarios without degrading security and improving usability.

References

[1]

R. D. Alexander. The evolution of social behavior. Annual Review of Ecology and Systematics, 5, 1974.

[2]

R. Anderson and R. Needham. Robustness principles for public key protocols. In CRYPTO '95. Springer-Verlag, 1995.

Digital Library

[3]

W. Arsac, G. Bella, X. Chantry, and L. Compagna. Multi-attacker protocol validation. Journal of Automated Reasoning, 46(3-4), Apr. 2011.

Digital Library

[4]

D. Balfanz, D. K. Smetters, P. Stewart, and H. C. Wong. Talking to strangers: Authentication in ad-hoc wireless networks. In NDSS'02, San Diego, 2002.

[5]

G. Bella. Formal Correctness of Security Protocols. Information Security and Cryptography. Springer Berlin Heidelberg, New York, 2007.

Digital Library

[6]

G. Bella, S. Bistarelli, and F. Massacci. Retaliation: Can we live with flaws? In IACS, volume 6. IOS Press, 2006.

[7]

M. Bellare and P. Rogaway. Entity authentication and key distribution. In CRYPTO' 93, volume 773 of LNCS. Springer, 1994.

Digital Library

[8]

Bluetooth Special Interest Group. Bluetooth specifications 1.0--2.1+EDR. Technical specifications, http://www.bluetooth.com, 1999--2007.

[9]

Bluetooth Special Interest Group. Simple pairing whitepaper v10r00. Technical report, Aug. 2006.

[10]

M. C. Carlos, J. E. Martina, G. Price, and R. F. Custodio. A proposed framework for analysing security ceremonies. In SECRYPT'12. SciTePress, July 2012.

[11]

R. Chang and V. Shmatikov. Formal analysis of authentication in bluetooth device pairing. In FCS-ARSPA'07, 2007.

[12]

S. Creese, M. Goldsmith, A. W. Roscoe, and I. Zakiuddin. The attacker in ubiquitous computing environments: formalising the threat model. In FAST'03, 2003.

[13]

R. Dhamija, J. D. Tygar, and M. Hearst. Why phishing works. In SIGCHI'06, New York, 2006. ACM.

Digital Library

[14]

D. Dolev and A. C. Yao. On the security of public key protocols. IEEE Trans. on Inform. Theory, 29, 1983.

Digital Library

[15]

C. Ellison. Ceremony Design and Analysis. Cryptology ePrint Archive, Report 2007/399, Oct. 2007.

[16]

K. Haataja and P. Toivanen. Practical man-in-the-middle attacks against bluetooth secure simple pairing. In WiCOM '08, oct 2008.

[17]

M. Jakobsson. The human factor in phishing. In Priv. & Sec. of Consumer Information '07, 2007.

[18]

M. Jakobsson and S. Wetzel. Security weaknesses in bluetooth. In CT-RSA 2001, volume 2020 of LNCS. Springer, 2001.

Digital Library

[19]

R. M. Needham and M. D. Schroeder. Using encryption for authentication in large networks of computers. Comm. of ACM, 21(12), 1978.

Digital Library

[20]

G. Parker. Assessment strategy and the evolution of fighting behaviour. Journal of Theoretical Biology, 47(1), 1974.

[21]

P. Ryan and S. Schneider. Modelling and analysis of security protocols. Addison Wesley, 1 edition, 2001.

Digital Library

[22]

Y. Shaked and A. Wool. Cracking the bluetooth pin. In MobiSys '05s, New York, USA, 2005. ACM.

Digital Library

[23]

F. L. Wong and F. Stajano. Multichannel security protocols. IEEE Pervasive Computing, 6(4), Oct. 2007.

Digital Library

Cited By

Alsaeed NNadeem FAlbalwy F(2024)A scalable and lightweight group authentication framework for Internet of Medical Things using integrated blockchain and fog computingFuture Generation Computer Systems10.1016/j.future.2023.09.032151:C(162-181)Online publication date: 1-Feb-2024
https://dl.acm.org/doi/10.1016/j.future.2023.09.032
Yin H(2023)Security analysis of Bluetooth Secure Simple Pairing protocols with extended threat modelJournal of Information Security and Applications10.1016/j.jisa.2022.10338572(103385)Online publication date: Feb-2023
https://doi.org/10.1016/j.jisa.2022.103385
Fröhlich AHorstmann LHoffmann J(2023)A Secure IIoT Gateway Architecture based on Trusted Execution EnvironmentsJournal of Network and Systems Management10.1007/s10922-023-09723-631:2Online publication date: 3-Feb-2023
https://dl.acm.org/doi/10.1007/s10922-023-09723-6
Show More Cited By

Index Terms

An updated threat model for security ceremonies

Recommendations

An adaptive threat model for security ceremonies

Ever since Needham and Schroeder introduced the notion of an active attacker, significant research has been conducted regarding protocol design and analysis to verify that the protocols' goals are robust against this type of attacker. Nowadays, the ...
Know Your Enemy: Compromising Adversaries in Protocol Analysis

We present a symbolic framework, based on a modular operational semantics, for formalizing different notions of compromise relevant for the design and analysis of cryptographic protocols. The framework’s rules can be combined to specify different ...
Design guidelines for security protocols to prevent replay & parallel session attacks

This work is concerned with the design of security protocols. These protocols are susceptible to intruder attacks and their security compromised if weaknesses in the protocols' design are evident. In this paper a new analysis is presented on the reasons ...

Comments

Information & Contributors

Information

Published In

cover image ACM Conferences

SAC '13: Proceedings of the 28th Annual ACM Symposium on Applied Computing

March 2013

2124 pages

ISBN:9781450316569

DOI:10.1145/2480362

Conference Chairs:
Sung Y. Shin
South Dakota State University, United States
,
José Carlos Maldonado
ICMC - University of São Paulo, Brazil

Copyright © 2013 ACM.

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Sponsors

SIGAPP: ACM Special Interest Group on Applied Computing

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 18 March 2013

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Research-article

Funding Sources

Conselho Nacional de Desenvolvimento Científico e Tecnológico

Conference

SAC '13

Sponsor:

SIGAPP

SAC '13: SAC '13

March 18 - 22, 2013

Coimbra, Portugal

Acceptance Rates

SAC '13 Paper Acceptance Rate 255 of 1,063 submissions, 24%;

Overall Acceptance Rate 1,650 of 6,669 submissions, 25%

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

18
Total Citations
View Citations
317
Total Downloads

Downloads (Last 12 months)27
Downloads (Last 6 weeks)5

Reflects downloads up to 14 Sep 2024

Other Metrics

View Author Metrics

Citations

Cited By

Alsaeed NNadeem FAlbalwy F(2024)A scalable and lightweight group authentication framework for Internet of Medical Things using integrated blockchain and fog computingFuture Generation Computer Systems10.1016/j.future.2023.09.032151:C(162-181)Online publication date: 1-Feb-2024
https://dl.acm.org/doi/10.1016/j.future.2023.09.032
Yin H(2023)Security analysis of Bluetooth Secure Simple Pairing protocols with extended threat modelJournal of Information Security and Applications10.1016/j.jisa.2022.10338572(103385)Online publication date: Feb-2023
https://doi.org/10.1016/j.jisa.2022.103385
Fröhlich AHorstmann LHoffmann J(2023)A Secure IIoT Gateway Architecture based on Trusted Execution EnvironmentsJournal of Network and Systems Management10.1007/s10922-023-09723-631:2Online publication date: 3-Feb-2023
https://dl.acm.org/doi/10.1007/s10922-023-09723-6
de Lucena MFrohlich A(2022)Security and Effectiveness Analysis of the Gateway Integrity Checking ProtocolIEEE Transactions on Dependable and Secure Computing10.1109/TDSC.2021.305805719:4(2396-2404)Online publication date: 1-Jul-2022
https://doi.org/10.1109/TDSC.2021.3058057
Viganò L(2022)Formal Methods for Socio-technical SecurityCoordination Models and Languages10.1007/978-3-031-08143-9_1(3-14)Online publication date: 14-Jun-2022
https://doi.org/10.1007/978-3-031-08143-9_1
González-Burgueño AÖlveczky P(2021)Formalizing and analyzing security ceremonies with heterogeneous devices in ANP and PDLJournal of Logical and Algebraic Methods in Programming10.1016/j.jlamp.2021.100685122(100685)Online publication date: Aug-2021
https://doi.org/10.1016/j.jlamp.2021.100685
Kacsmar BKomlo CKerschbaum FGoldberg I(2020)Mind the Gap: Ceremonies for Applied Secret SharingProceedings on Privacy Enhancing Technologies10.2478/popets-2020-00332020:2(397-415)Online publication date: 8-May-2020
https://doi.org/10.2478/popets-2020-0033
Sethi MPeltonen AAura TGalbraith SRussello GSusilo WGollmann DKirda ELiang Z(2019)Misbinding Attacks on Secure Device Pairing and BootstrappingProceedings of the 2019 ACM Asia Conference on Computer and Communications Security10.1145/3321705.3329813(453-464)Online publication date: 2-Jul-2019
https://dl.acm.org/doi/10.1145/3321705.3329813
Martimiano TMartina J(2018)Daemones Non Operantur Nisi Per ArtemSecurity Protocols XXVI10.1007/978-3-030-03251-7_11(96-105)Online publication date: 24-Nov-2018
https://doi.org/10.1007/978-3-030-03251-7_11
Kiayias AZacharias TZhang B(2017)Ceremonies for End-to-End Verifiable ElectionsProceedings, Part II, of the 20th IACR International Conference on Public-Key Cryptography --- PKC 2017 - Volume 1017510.1007/978-3-662-54388-7_11(305-334)Online publication date: 28-Mar-2017
https://dl.acm.org/doi/10.1007/978-3-662-54388-7_11
Show More Cited By

View Options

Get Access

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Media

Figures

Other

Tables

View Table of Contents