Towards a Framework for Autonomic Security Protocols

Foley, Simon N.; Zhou, Hongbin

doi:10.1007/11542322_8

Simon N. Foley¹⁹ &
Hongbin Zhou¹⁹

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 3364))

Included in the following conference series:

International Workshop on Security Protocols

714 Accesses

Abstract

This paper proposes a belief logic based approach that allows principals to negotiate and on-the-fly generate security protocols. When principals wish to interact then, rather than offering each other a fixed menu of ‘known’ protocols, they negotiate and generate a new protocol that is tailored specifically to their current security environment and requirements. This approach provides a basis for autonomic security protocols. Such protocols are self-configuring since only principal assumptions and protocol goals need to be a-priori configured. The approach has the potential to survive security compromises that can be modelled as changes in the beliefs of the principals. A compromise of a key or a change in the trust relationships between principals can result in a principal self-healing and synthesising a new protocol to survive the event.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 39.99; Price excludes VAT (USA)

Softcover Book: USD 54.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

References

Abadi, M., Gordon, A.D.: A calculus for cryptographic protocols: The spi calculus. In: Fourth ACM Conference on Computer and Communications Security, pp. 36–47. ACM Press, New York (1997)
Chapter Google Scholar
Ganek, A.G., Corbi, T.A.: The dawning of the autonomic computing era. IBM Systems Journal 42(1), 5–18 (2003)
Article Google Scholar
Aura, T.: Strategies against replay attacks. In: Computer Security Foundations Workshop, pp. 29–68 (1997)
Google Scholar
Buttyán, L., Staamann, S., Wilhelm, U.: A simple logic for authentication protocol design. In: Proceedings of the 11th IEEE Computer Security Foundations Workshop (CSFW 1998), Washington - Brussels - Tokyo, June 1998, pp. 153–163. IEEE, Los Alamitos (1998)
Google Scholar
Clark, J.A., Jacob, J.L.: Searching for a solution: Engineering tradeoffs and the evolution of provably secure protocols. In: Proceedings of 2000 IEEE Symposium on Security and Privacy (SP 2000), pp. 82–95. IEEE Computer Society, Los Alamitos (2000)
Google Scholar
Gong, L., Needham, R., Yahalom, R.: Reasoning About Belief in Cryptographic Protocols. In: Cooper, D., Lunt, T. (eds.) Proceedings 1990 IEEE Symposium on Research in Security and Privacy, pp. 234–248. IEEE Computer Society, Los Alamitos (1990)
Chapter Google Scholar
Guttman, J.D.: Security protocol design via authentication tests. In: Proceedings of 15th IEEE Computer Security Foundations Workshop (CSFW 2002), pp. 92–103. IEEE Computer Society, Los Alamitos (2002)
Chapter Google Scholar
Sun Microsystem Inc. Jini technology core platform specification version 1.2 (November 2001), http://www.jini.org
Kindred, D., Wing, J.M.: Theory generation for security protocols. In: ACM TOPLAS (July 1999)
Google Scholar
O’Crualaoich, D., Foley, S.N.: Theory generation for the simple logic. Technical report, University College Cork (in preparation)
Google Scholar
Perrig, A., Song, D.: Looking for diamonds in the desert — extending automatic protocol generation to three-party authentication and key agreement protocols. In: Proceedings of the 13th IEEE Computer Security Foundations Workshop, pp. 64–76. IEEE Computer Society, Los Alamitos (2000)
Chapter Google Scholar
Song, D., Perrig, A., Phan, D.: Agvi–automatic generation, verification, and implementation of security protocols. In: Berry, G., Comon, H., Finkel, A. (eds.) CAV 2001. LNCS, vol. 2102, pp. 241–245. Springer, Heidelberg (2001)
Chapter Google Scholar
Zhou, H., Foley, S.N.: Fast automatic synthesis of security protocols using backward search. In: ACM Workshop on Formal Methods for Security Engineering, Washington, DC, USA (2003)
Google Scholar

Download references

Author information

Authors and Affiliations

Boole Centre for Research in Informatics, Department of Computer Science, University College, Cork, Ireland
Simon N. Foley & Hongbin Zhou

Authors

Simon N. Foley
View author publications
You can also search for this author in PubMed Google Scholar
Hongbin Zhou
View author publications
You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

Computer Systems Group, Vrije Universiteit, Amsterdam, The Netherlands
Bruno Crispo
Georgia Institute of Technology, Atlanta, GA
James A. Malcolm
Microsoft Research, Cambridge, UK
Michael Roe

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Foley, S.N., Zhou, H. (2005). Towards a Framework for Autonomic Security Protocols. In: Christianson, B., Crispo, B., Malcolm, J.A., Roe, M. (eds) Security Protocols. Security Protocols 2003. Lecture Notes in Computer Science, vol 3364. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11542322_8

Download citation

DOI: https://doi.org/10.1007/11542322_8
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-28389-8
Online ISBN: 978-3-540-31836-1
eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics