Skip to main content
Springer Nature Link
Log in

Redesigning Secure Protocols to Compel Security Checks

  • Conference paper
  • First Online:
Security Protocols XXIII (Security Protocols 2015)

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 9379))

Included in the following conference series:

  • 752 Accesses

Abstract

In the study of secure protocols, we must both ensure that the design of the protocol is secure and that the implementation is correct. One implementation problem which has frequently occurred is that implementations fail to implement some of the checks which are needed for the protocol to be secure. For example, implementations may fail to validate certificates or fail to validate all aspects of the certificate. In this paper, we demonstrate that it is possible to change the design of a protocol to compel the implementation to carry out the checks. We assume that programmers will always do at least what is necessary to read and produce properly formatted messages. Then we use some simple cryptography to ensure that reading properly formatted messages essentially requires checking the parameters.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Subscribe and save

Springer+ Basic
$34.99 /Month
  • Get 10 units per month
  • Download Article/Chapter or eBook
  • 1 Unit = 1 Article or 1 Chapter
  • Cancel anytime
Subscribe now

Buy Now

Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Similar content being viewed by others

References

  1. Georgiev, M., Iyengar, S., Jana, S., Anubhai, R., Boneh, D., Shmatikov, V.: The most dangerous code in the world: validating SSL certificates in non-browser software. In: Proceedings of the 2012 ACM Conference on Computer and Communications Security, CCS 2012, pp. 38–49. ACM, New York (2012)

    Google Scholar 

  2. marcan and bushing. Console hacking 2008: Wii fail. In: 25th Chaos Communication Congress, 25C3. Chaos Computer Club (2008)

    Google Scholar 

  3. Matyas, S., Abraham, D., Johnson, D., Karne, R., Le, A., Prymak, R., Thomas, J., Wilkins, J., Yeh, P.: Data cryptography operations using control vectors in a data processing system, 17 April 1990. US Patent 4,918,728

    Google Scholar 

  4. Smid, M.E.: A key notarization system for computer networks. Number 54. US Dept. of Commerce, National Bureau of Standards: for sale by the Supt. of Docs., US Govt. Print. Off., (1979)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Winston Salem Sate University, Winston-Salem, USA

    Keith Irwin

Authors
  1. Keith Irwin
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Keith Irwin .

Editor information

Editors and Affiliations

  1. University of Hertfordshire, Hatfield, United Kingdom

    Bruce Christianson

  2. Faculty of Informatics, Masaryk University, Brno, Czech Republic

    Petr Å venda

  3. Faculty of Informatics, Masaryk University, Brno, Czech Republic

    Vashek Matyáš

  4. University of Hertfordshire, Hatfield, United Kingdom

    James Malcolm

  5. University of Cambridge, Cambridge, United Kingdom

    Frank Stajano

  6. Memorial University of Newfoundland, St. John's, Newfoundland and Labrador, Canada

    Jonathan Anderson

Rights and permissions

Reprints and permissions

Copyright information

© 2015 Springer International Publishing Switzerland

About this paper

Cite this paper

Irwin, K. (2015). Redesigning Secure Protocols to Compel Security Checks. In: Christianson, B., Švenda, P., Matyáš, V., Malcolm, J., Stajano, F., Anderson, J. (eds) Security Protocols XXIII. Security Protocols 2015. Lecture Notes in Computer Science(), vol 9379. Springer, Cham. https://doi.org/10.1007/978-3-319-26096-9_3

Download citation

  • DOI: https://doi.org/10.1007/978-3-319-26096-9_3

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-319-26095-2

  • Online ISBN: 978-3-319-26096-9

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics