How to prevent type flaw attacks on security protocols
- 1 January 2003
- conference paper
- Published by Institute of Electrical and Electronics Engineers (IEEE)
- No. 10636900,p. 255-268
- https://doi.org/10.1109/csfw.2000.856942
Abstract
A type flaw attack on a security protocol is an attack where a field that was originally intended to have one type is subsequently interpreted as having another type. A number of type flaw attacks have appeared in the academic literature. In this paper we prove that type flaw attacks can be prevented using a simple technique of tagging each field with some information indicating its intended type.Keywords
This publication has 8 references indexed in Scilit:
- Mixed strand spacesPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2003
- Strand spaces: proving security protocols correctJournal of Computer Security, 1999
- Verifying authentication protocols in CSPIEEE Transactions on Software Engineering, 1998
- The inductive approach to verifying cryptographic protocolsJournal of Computer Security, 1998
- Analyzing the Needham-Schroeder public key protocol: A comparison of two approachesPublished by Springer Nature ,1996
- Prudent engineering practice for cryptographic protocolsIEEE Transactions on Software Engineering, 1996
- A lesson on authentication protocol designACM SIGOPS Operating Systems Review, 1994
- Using encryption for authentication in large networks of computersCommunications of the ACM, 1978