FRINK Linked Data Fragments server

Matches in SemOpenAlex for { <https://semopenalex.org/work/W1518401470> ?p ?o ?g. }

• W1518401470 abstract "In 2000, Bond and Anderson exposed a new family of attacks on application programming interfaces (APIs) of security modules. These attacks elicit compromising behaviors using an unexpected sequence of legal calls to the module, uncovering severe security flaws even in widely-deployed cryptographic hardware. Because these attacks do not depend on the underlying cryptographic mechanisms, they often succeed even under the assumption of ideal cryptographic primitives. This thesis presents a methodology for the automatic detection of API attacks. Taking a cue from previous work on the formal analysis of security protocols and noting these attacks’ independence from precise cryptographic mechanisms, we model APIs opaquely, purely according to specifications. We use a theorem prover tool and adapt it to the security API context. Several specifications of Cryptographic APIs are implemented for analysis using a theorem prover known as Otter . These implementations successfully found known attacks, and provide evidence that Otter will also be able to find new attacks, and perhaps eventually verify security in arbitrary Cryptographic APIs. Based on these implementations, various strategies, potential problems, and solutions are discussed that can be applied towards the formal analysis of Cryptographic APIs. We detail how, using these formalization and automation techniques, we have confirmed a number of known attacks and exposed an undocumented behavior of the IBM 4758 CCA, a hardware add-on crucial to a large portion of banking transactions worldwide. We show how the confirmed attacks’ complexity and unintuitiveness make a very strong case for continued focus on automated formal verification of cryptographic APIs. Thesis Supervisor: Ronald Rivest Title: Professor" @default.
• W1518401470 created "2016-06-24" @default.
• W1518401470 creator A5052658654 @default.
• W1518401470 date "2004-01-01" @default.
• W1518401470 modified "2023-10-12" @default.
• W1518401470 title "The analysis of cryptographic APIs using the theorem prover Otter" @default.
• W1518401470 cites W1514302123 @default.
• W1518401470 cites W1555053410 @default.
• W1518401470 cites W1588182391 @default.
• W1518401470 cites W1597184376 @default.
• W1518401470 cites W1661099014 @default.
• W1518401470 cites W1790240185 @default.
• W1518401470 cites W2010939995 @default.
• W1518401470 cites W2012170877 @default.
• W1518401470 cites W2034796080 @default.
• W1518401470 cites W2036475963 @default.
• W1518401470 cites W2058514808 @default.
• W1518401470 cites W2065207200 @default.
• W1518401470 cites W2104655005 @default.
• W1518401470 cites W2105060599 @default.
• W1518401470 cites W2105750191 @default.
• W1518401470 cites W2109266092 @default.
• W1518401470 cites W2125894704 @default.
• W1518401470 cites W2141420453 @default.
• W1518401470 cites W2146973388 @default.
• W1518401470 cites W2169908972 @default.
• W1518401470 cites W2783610348 @default.
• W1518401470 cites W3013607954 @default.
• W1518401470 cites W35731320 @default.
• W1518401470 cites W52284784 @default.
• W1518401470 hasPublicationYear "2004" @default.
• W1518401470 type Work @default.
• W1518401470 sameAs 1518401470 @default.
• W1518401470 citedByCount "8" @default.
• W1518401470 countsByYear W15184014702014 @default.
• W1518401470 crossrefType "dissertation" @default.
• W1518401470 hasAuthorship W1518401470A5052658654 @default.
• W1518401470 hasConcept C111498074 @default.
• W1518401470 hasConcept C15927051 @default.
• W1518401470 hasConcept C165751822 @default.
• W1518401470 hasConcept C178489894 @default.
• W1518401470 hasConcept C199360897 @default.
• W1518401470 hasConcept C206880738 @default.
• W1518401470 hasConcept C33884865 @default.
• W1518401470 hasConcept C38652104 @default.
• W1518401470 hasConcept C41008148 @default.
• W1518401470 hasConcept C80444323 @default.
• W1518401470 hasConceptScore W1518401470C111498074 @default.
• W1518401470 hasConceptScore W1518401470C15927051 @default.
• W1518401470 hasConceptScore W1518401470C165751822 @default.
• W1518401470 hasConceptScore W1518401470C178489894 @default.
• W1518401470 hasConceptScore W1518401470C199360897 @default.
• W1518401470 hasConceptScore W1518401470C206880738 @default.
• W1518401470 hasConceptScore W1518401470C33884865 @default.
• W1518401470 hasConceptScore W1518401470C38652104 @default.
• W1518401470 hasConceptScore W1518401470C41008148 @default.
• W1518401470 hasConceptScore W1518401470C80444323 @default.
• W1518401470 hasLocation W15184014701 @default.
• W1518401470 hasOpenAccess W1518401470 @default.
• W1518401470 hasPrimaryLocation W15184014701 @default.
• W1518401470 hasRelatedWork W1498404765 @default.
• W1518401470 hasRelatedWork W1514302123 @default.
• W1518401470 hasRelatedWork W1563545523 @default.
• W1518401470 hasRelatedWork W1570101401 @default.
• W1518401470 hasRelatedWork W1597184376 @default.
• W1518401470 hasRelatedWork W1883741360 @default.
• W1518401470 hasRelatedWork W2016321105 @default.
• W1518401470 hasRelatedWork W2071770820 @default.
• W1518401470 hasRelatedWork W2077610397 @default.
• W1518401470 hasRelatedWork W2099537756 @default.
• W1518401470 hasRelatedWork W2109266092 @default.
• W1518401470 hasRelatedWork W2139017685 @default.
• W1518401470 hasRelatedWork W2237653119 @default.
• W1518401470 hasRelatedWork W2337586789 @default.
• W1518401470 hasRelatedWork W2400049039 @default.
• W1518401470 hasRelatedWork W2509928903 @default.
• W1518401470 hasRelatedWork W2576158814 @default.
• W1518401470 hasRelatedWork W2783610348 @default.
• W1518401470 hasRelatedWork W2949311456 @default.
• W1518401470 hasRelatedWork W2997728681 @default.
• W1518401470 isParatext "false" @default.
• W1518401470 isRetracted "false" @default.
• W1518401470 magId "1518401470" @default.
• W1518401470 workType "dissertation" @default.