Embedding agents within the intruder to detect parallel attacks

P.J. Broadfoot; A.W. Roscoe

首页> 外文期刊>Journal of computer security >Embedding agents within the intruder to detect parallel attacks

【24h】

Embedding agents within the intruder to detect parallel attacks

机译：在入侵者中嵌入代理以检测并行攻击

获取原文

获取原文并翻译 | 示例

掌桥外文数据库（机构版） >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

We carry forward the work described in our previous papers on the application of data independence to the model checking of security protocols using CSP and FDR. In particular, we showed how techniques based on data independence could be used to justify, by means of a finite FDR check, systems where agents can perform an unbounded number of protocol runs. Whilst this allows for a more complete analysis, there was one significant incompleteness in the results we obtained: while each individual identity could perform an unlimited number of protocol runs sequentially, the degree of parallelism remained bounded (and small to avoid state space explosion). In this paper, we report significant progress towards the solution of this problem, by means anticipated in [5], namely by "internalising" protocol roles within the "intruder" process. The internalisation of protocol roles (initially only server-type roles) was introduced in [20] as a state-space reduction technique (for which it is usually spectacularly successful). It was quickly noticed that this had the beneficial side-effect of making the internalised server arbitrarily parallel, at least in cases where it did not generate any new values of data independent type. We now consider the case where internal roles do introduce fresh values and address the issue of capturing their state of mind (for the purposes of analysis).

机译：我们继续进行先前论文中描述的有关将数据独立性应用于使用CSP和FDR的安全协议的模型检查的工作。特别是，我们展示了如何使用基于数据独立性的技术通过有限的FDR检查来证明代理可以执行无数次协议运行的系统是合理的。尽管这可以进行更完整的分析，但我们获得的结果中存在一个显着的不完整之处：尽管每个个体标识都可以按顺序执行无限数量的协议运行，但是并行度仍然有限（并且很小，可以避免状态空间爆炸）。在本文中，我们通过[5]中预期的方法，即通过“入侵者”过程中的“内部化”协议角色，报告了解决该问题的重要进展。协议角色的内部化（最初仅是服务器类型的角色）是在[20]中作为状态空间缩减技术引入的（通常对此非常成功）。很快就注意到，这至少在没有生成任何新的数据独立类型值的情况下，具有使内部化服务器任意并行的有益副作用。现在，我们考虑内部角色确实引入新价值并解决捕获其心态问题的情况（出于分析目的）。

著录项

来源
《Journal of computer security》 |2004年第4期|p.379-408|共30页
作者
P.J. Broadfoot; A.W. Roscoe;
展开▼
作者单位

Oxford University Computing Laboratory, Wolfson Building, Parks Road, Oxford OK1 3QD, UK;

展开▼
收录信息美国《工程索引》(EI);
原文格式 PDF
正文语种 eng
中图分类计算技术、计算机技术;
关键词

相似文献

外文文献
中文文献
专利

1. Mobile Agents for Detecting Network Attacks Using Timing Covert Channels [J] . J?drzej Bieniasz, Monika St?pkowska, Artur Janicki, Journal of Universal Computer Science . 2019,第9期

机译：使用定时隐蔽通道检测网络攻击的移动代理
2. Mobile Agents for Detecting Network Attacks Using Timing Covert Channels [J] . J?drzej Bieniasz, Monika St?pkowska, Artur Janicki, Journal of Universal Computer Science . 2019,第9期

机译：使用定时隐蔽通道检测网络攻击的移动代理
3. AgentTab: An Agent Based Approach to Detect Tabnabbing Attack [J] . S. Sarika, Varghese Paul Procedia Computer Science . 2015,第1期

机译：AgentTab：一种基于代理的检测Tabbabbing攻击的方法
4. DEVELOPING A MOBILE APP THAT USES THE ROUTING CACHE TABLE TO DETECT BRUTE FORCE SECURE SHELL ATTACKS NOT DETECTED BY THE INTRUDER DETECTION SYSTEM [C] . Raqeeb Abdul, Laura Lebentritt, DENNIS GUSTER Annual midwest instruction and computing symposium . 2016

机译：开发使用路由缓存表的移动应用程序，以检测入侵检测系统未检测到的蛮力安全壳攻击
5. Detecting heat exchanger fouling automatically with an embedded data-driven agent using expert signature maps [D] . Veronica, Daniel Alexander 2008

机译：使用专家签名图，使用嵌入式数据驱动代理自动检测热交换器结垢
6. The Sensitivity of Massively Parallel Sequencing for Detecting Candidate Infectious Agents Associated with Human Tissue [O] . Richard A. Moore, René L. Warren, J. Douglas Freeman, 2011

机译：大规模并行测序检测与人类组织相关的候选传染原的敏感性。
7. Embedding agents within the intruder to detect parallel attacks [O] . P. J. Broadfoot, A. W. Roscoe 2004

机译：在入侵者中嵌入代理以检测并行攻击

Embedding agents within the intruder to detect parallel attacks

摘要

著录项

相似文献

相关主题

期刊订阅