A Formal Framework and Evaluation Method for Protocol Denial of Service
Page Content
 |
Catherine Meadows - Naval Research Laboratory
Oct 08, 1999
Abstract
Denial of service is becoming a growing concern. As our systems communicate more and more with others that we know less and less, they become increasingly vulnerable to hostile intruders who may take advantage of the very protocols intended for the establishment and authentication of communication to tie up our resources and disable our servers. Since these attacks occur before parties are authenticated to each other, we cannot rely upon enforcement of the appropriate access control policy to protect us. Instead we must build our defenses, as much as possible, into the protocols themselves. This talk shows how some principles that have already been used to make protocols more resistant to denial of service can be formalized, and indicates the ways in which existing cryptographic protocol analysis tools could be modified to operate within this framework.About the Speaker
Catherine Meadows is head of the Formal Methods Section in the Center for High Assurance Computer Systems at the Naval Research Laboratory She has published more than 50 papers on formal methods, cryptography, and security. Her research interests include the application of formal methods to computer security, in particular to the evaluation of cryptographic protocols and distributed systems. She has also been involved in the organization of numerous conferences on security and reliability, having been program chair of the Computer Security Foundations Workshop, the IEEE Symposium on Security and Privacy, the IEEE Symposium on High Assurance System Engineering, and the Sixth IFIP Working Conference on Dependable Computing for Critical Applications. She is also a founding member of IFIP Working Group 1.7 on Foundations of Security Analysis and Design. Prior to coming to NRL, she was an assistant professor of mathematics at Texas A&M University from 1981-1985. Dr. Meadows received a B.A. in mathematics from the University of Chicago in 1975 and a Ph.D. in mathematics from the University of Illinois in 1981.© 1999-2013 Purdue University. All rights reserved.
Use/Reuse Guidelines
CERIAS Seminar materials are intended for educational, non-commercial use only and any or all commercial use is prohibited. Any use must attribute "The CERIAS Seminar at Purdue University." Opinions expressed in the recordings are not necessarily representative of the views of CERIAS or of Purdue University.
Footer
RSS Feeds
Combined XML Feed
News XML Feed Events XML Feed Weblogs XML Feed Security Seminar Podcast
Twitter: @cerias, @ceriasarchive, #cerias
CERIAS, Purdue University / Recitation Building / 656 Oval Drive / West Lafayette IN 47907-2086
phone (765)494-7841 / fax (765)496-3181
Copyright © 2013, Purdue University, all rights reserved. Purdue University is an equal access/equal opportunity university.
If you have trouble accessing this page because of a disability, please contact the CERIAS webmaster at webmaster@cerias.purdue.edu. Some content on this site may require the use of a special plug-in or application. Please visit our plug-ins page for links to download these applications.
Privacy Policy
