1. A cost-based framework for analysis of denial of service in networks
- Author
-
Catherine Meadows
- Subjects
Authentication ,Cryptographic primitive ,Computer Networks and Communications ,Computer science ,business.industry ,Cryptography ,Cryptographic protocol ,Computer security ,computer.software_genre ,Hardware and Architecture ,Server ,Strong authentication ,Safety, Risk, Reliability and Quality ,business ,Communications protocol ,computer ,Software ,Computer network ,Vulnerability (computing) - Abstract
Denial of service is becoming a growing concern. As computer systems communicate more and more with others that they know less and less, they become increasingly vulnerable to hostile intruders who may take advantage of the very protocols intended for the establishment and authentication of communication to tie up resources and disable servers. This paper shows how some principles that have already been used to make cryptographic protocols more resistant to denial of service by trading off the cost to defender against the cost to the attacker can be formalized based on a modification of the Gong-Syverson fail-stop model of cryptographic protocols, and indicates the ways in which existing cryptographic protocol analysis tools could be modified to operate within this formal framework. We also indicate how this framework could be extended to protocols that do not make use of strong authentication.
- Published
- 2001