Your search keyword '"COMPUTER network protocols"' showing total 9 results

1. Fully Deniable Message Authentication Protocols Preserving Confidentiality.

Author

Harn, Lein, Lee, Chia-Yin, Lin, Changlu, and Chang, Chin-Chen

Subjects

*COMPUTER network security, *MESSAGE theory (Communication), *COMPUTER network protocols, *CONFIDENTIAL communications, *CRYPTOGRAPHY, *COMPUTER security

Abstract

Although the objective of secure communication can be achieved by using cryptographic tools, the undeniability that results from cryptographic properties may create a potential threat to the sender of the message. Unfortunately, most existing deniable protocols only provide 1-out-of-2 deniability. When both parties (the sender and the receiver) are allowed to deny generating the message, a dispute might occur between these two parties. The 1-out-of-2 deniable protocol can result in an unfair resolution of the dispute. Therefore, we propose a new model of deniability, called 1-out-of-∞ deniability, that can provide full deniability. The 1-out-of-∞ deniability protocol allows the originator of the message to deny that he or she generated the message, since there are an infinite number of possible message generators; at the same time, all transmitted messages can be protected and authenticated between the sender and the intended receiver. Our design can be implemented by using any public-key cryptography technique. We also analyze the correctness of the proposed protocols based on logical rules, and two practical examples are given to illustrate our design. [ABSTRACT FROM AUTHOR]

Published

2011

2. Vulnerability of two multiple-key agreement protocols

Author

Farash, Mohammad Sabzinejad, Bayat, Majid, and Attari, Mahmoud Ahmadian

Subjects

*COMPUTER network protocols, *ELLIPTIC curves, *CRYPTOGRAPHY, *IMPERSONATION, *CYBERTERRORISM, *FORGERY, *COMPUTER security, *COMPUTER network security

Abstract

Abstract: In 2008, Lee et al. proposed two multiple-key agreement protocols, first one based on elliptic curve cryptography (ECC) and the other one, based on bilinear pairings. Shortly after publication, Vo et al. showed that the Lee–Wu–Wang’s pairing-based protocol is vulnerable to impersonation attack then for removing the problem, they proposed an improved protocol. In this paper, first We show that the Lee–Wu–Wang’s ECC-based protocol is insecure against forgery attack and also, if long-term private keys of two entities and one key of the session keys are revealed, the other session keys are exposed too. Then, we demonstrate that the Vo–Lee–Yeun–Kim’s protocol is vulnerable to another kind of forgery attacks and a reflection attack. [Copyright &y& Elsevier]

Published

2011

3. Strongly secure identity-based authenticated key agreement protocols

Author

Ni, Liang, Chen, Gongliang, Li, Jianhua, and Hao, Yanyan

Subjects

*COMPUTER network protocols, *COMPUTER simulation, *COMPUTER security, *AUTHENTICATION (Law), *ORACLE software, *COMPUTER network security, *DATA protection, *DATA security, *CRYPTOGRAPHY

Abstract

Abstract: In this paper, we present a strongly secure identity-based (ID-based) two-party authenticated key agreement (AKA) protocol, which captures all basic desirable security properties including master key forward secrecy, ephemeral secrets reveal resistance and so on, and is provably secure in the extended Canetti–Krawczyk (eCK) model. The security of the protocol can be reduced to the standard Computational Bilinear Diffie–Hellman assumption in the random oracle model. Our scheme is secure as long as each party has at least one uncompromised secret. Also, we give a strongly secure variant of the protocol. The variant has a much lower computational overhead than the original scheme, while its security relies on the Gap Bilinear Diffie–Hellman assumption. Currently, there are few ID-based AKA protocols that are provably secure in the strong eCK model. Compared with previous ID-based AKA schemes, our protocols have advantages over them in security or efficiency. [Copyright &y& Elsevier]

Published

2011

4. P2P Reputation Management Using Distributed Identities and Decentralized Recommendation Chains.

Author

Dewan, Prashant and Dasgupta, Partha

Subjects

*PEER-to-peer architecture (Computer networks), *COMPUTER network security, *COMPUTER security, *CLIENT/SERVER computing, *COMPUTER network protocols, *CRYPTOGRAPHY

Abstract

Peer-to-peer (P2P) networks are vulnerable to peers who cheat, propagate malicious code, leech on the network, or simply do not cooperate. The traditional security techniques developed for the centralized distributed systems like client-server networks are insufficient for P2P networks by the virtue of their centralized nature. The absence of a central authority in a P2P network poses unique challenges for reputation management in the network. These challenges include identity management of the peers, secure reputation data management, Sybil attacks, and above all, availability of reputation data. In this paper, we present a cryptographic protocol for ensuring secure and timely availability of the reputation data of a peer to other peers at extremely low costs. The past behavior of the peer is encapsulated in its digital reputation, and is subsequently used to predict its future actions. As a result, a peer's reputation motivates it to cooperate and desist from malicious activities. The cryptographic protocol is coupled with self-certification and cryptographic mechanisms for identity management and countering Sybil attack. We illustrate the security and the efficiency of the system analytically and by means of simulations in a completely decentralized Gnutella-like P2P network. [ABSTRACT FROM AUTHOR]

Published

2010

5. A new multi-tier adaptive military MANET security protocol using hybrid cryptography and signcryption.

Author

YAVUZ, Attila A., ALAGÖZ, Fatih, and ANARIM, Emin

Subjects

*COMPUTER network security, *DATA encryption, *COMPUTER security, *COMPUTER network protocols, *CRYPTOGRAPHY, *MOBILE communication systems

Abstract

Mobile Ad-hoc NETworks (MANETs) are expected to play an important role in tactical military networks by providing infrastructureless communication. However, maintaining secure and instant information sharing is a difficult task especially for highly dynamic military MANETs. To address this requirement, we propose a new multi-tier adaptive military MANET security protocol using hybrid cryptography and signcryption. In our protocol, we bring novelties to secure military MANET communication for three main points: Cryptographic methods used in MANETs, hybrid key management protocols and structural organization of the military MANETs. As a new approach, we use hybrid cryptography mechanisms and Elliptic Curve Pintsov-Vanstone Signature Scheme (ECPVS8) that provide security and performance advantages when compared to some traditional cryptographic methods. Furthermore, multi-leveled security approach of our protocol provides adaptive solutions according to the requirements of different military units in the MANET. We also use a hybrid key management technique that combines the benefits of both decentralized protocols with single point of failure resistivity and centralized protocols with low rekeying cost. Last, the proposed network structure facilitates certification and key management for the MANET by providing flexibility for Mobile Backbone Network (MBN) tiers. [ABSTRACT FROM AUTHOR]

Published

2010

6. Abstraction and resolution modulo AC: How to verify Diffie–Hellman-like protocols automatically

Author

Goubault-Larrecq, Jean, Roger, Muriel, and Verma, Kumar Neeraj

Subjects

*CRYPTOGRAPHY, *DATA encryption, *CRYPTOGRAMS, *COMPUTER network protocols, *COMPUTER security, *SECURITY systems, *COMPUTER network security

Abstract

Abstract: We show how cryptographic protocols using Diffie–Hellman primitives, i.e., modular exponentiation on a fixed generator, can be encoded in Horn clauses modulo associativity and commutativity. In order to obtain a sufficient criterion of security, we design a complete (but not sound in general) resolution procedure for a class of flattened clauses modulo simple equational theories, including associativity–commutativity. We report on a practical implementation of this algorithm in the MOP modular platform for automated proving; in particular, we obtain the first fully automated proof of security of the IKA.1 initial key agreement protocol in the so-called pure eavesdropper model. [Copyright &y& Elsevier]

Published

2005

7. Non‐interference proof techniques for the analysis of cryptographic protocols.

Author

Bugliesi, Michele and Rossi, Sabina

Subjects

*DATA encryption, *CRYPTOGRAPHY, *COMPUTER security, *COMPUTER network security, *COMPUTER network protocols

Abstract

Non‐interference has been advocated by various authors as a uniform framework for the formal specification of security properties in cryptographic protocols. Unfortunately, specifications based on non‐interference are often non‐effective, as they require protocol analyses in the presence of all possible intruders. This paper develops new characterizations of non‐interference that rely on a finitary representation of intruders. These characterizations draw on equivalence relations built on top of labelled transition systems in which the presence of intruders is accounted for, indirectly, in terms of their (the intruders') knowledge of the protocols' initial data. The new characterizations apply uniformly to trace and bisimulation non‐interference, yielding proof techniques for the analysis of various security properties. We demonstrate the effectiveness of such techniques in the analysis of different properties of a fair exchange protocol. [ABSTRACT FROM AUTHOR]

Published

2005

8. Cryptanalysis of the application secure alternative to SNMP (APSSNMP)

Author

Phan, Raphael C.-W.

Subjects

*SIMPLE Network Management Protocol (Computer network protocol), *CRYPTOGRAPHY, *COMPUTER network security, *TCP/IP, *DATA protection, *COMPUTER security, *DISTRIBUTED computing, *COMPUTER network protocols

Abstract

Abstract: The APSSNMP network management protocol was proposed as a secure alternative to the Simple Network Management Protocol (SNMP) used in the TCP/IP suite. The designers claimed that it resists meet-in-the-middle (MITM) attacks. In this paper, we present an advanced MITM attack on the APSSNMP and hence show that it fails to achieve its design objective of providing better security against MITM attacks. Since the APSSNMP has been presented in several journals, and IEEE and IASTED conferences, our result is important to highlight to network implementers and users of distributed systems that the APSSNMP is not secure for practical deployment. [Copyright &y& Elsevier]

Published

2009

9. Cyberspace Security via Quantum Encryption.

Author

Hughes, David H.

Subjects

*COMPUTER network protocols, *DATA encryption, *CRYPTOGRAPHY, *DATA protection, *COMPUTER security, *COMPUTER network security

Abstract

The article provides a description of Keyed Communication in Quantum Noise (KCQ), a cryptographic protocol demonstrating perfect or near-perfect security before addressing a new quantum data encryption protocol that uses quantum noise of light. Representations of KCQ related to ultra-secure data encryption at the physical layer are called AlphaEta protocol in the U.S. AlphaEta protocol employs either polarization states of light or temporal phase of light to encode logical bits. INSET: Mils Electronic Strong Encryption for Highly Confidential….

Published

2007