An Extensive Formal Analysis of Multi-factor Authentication Protocols

Passwords are still the most widespread means for authenticating users, even though they have been shown to create huge security problems. This motivated the use of additional authentication mechanisms in so-called multi-factor authentication protocols. In this article, we define a detailed threat model for this kind of protocol: While in classical protocol analysis attackers control the communication network, we take into account that many communications are performed over TLS channels, that computers may be infected by different kinds of malware, that attackers could perform phishing, and that humans may omit some actions. We formalize this model in the applied pi calculus and perform an extensive analysis and comparison of several widely used protocols—variants of Google 2-step and FIDO’s U2F (Yubico’s Security Key token). The analysis is completely automated, generating systematically all combinations of threat scenarios for each of the protocols and using the P ROVERIF tool for automated protocol analysis. To validate our model and attacks, we demonstrate their feasibility in practice, even though our experiments are run in a laboratory environment. Our analysis highlights weaknesses and strengths of the different protocols. It allows us to suggest several small modifications of the existing protocols that are easy to implement, as well as an extension of Google 2-step that improves security in several threat scenarios.

Download Full-text

Formal Analysis of Selective Disclosure Attribute-Based Credential System in Applied Pi Calculus

2016 IEEE Trustcom/BigDataSE/ISPA ◽

10.1109/trustcom.2016.0044 ◽

2016 ◽

Cited By ~ 1

Author(s):

Caimei Wang ◽

Yan Xiong ◽

Wenchao Huang ◽

Huihua Xia ◽

Jianmeng Huang

Keyword(s):

Formal Analysis ◽

Pi Calculus ◽

Selective Disclosure

Download Full-text

Formal analysis of security protocols for wireless sensor networks

Tatra Mountains Mathematical Publications ◽

10.2478/v10127-010-0032-7 ◽

2010 ◽

Vol 47 (1) ◽

pp. 81-97 ◽

Cited By ~ 2

Author(s):

Marián Novotný

Keyword(s):

Sensor Networks ◽

Formal Model ◽

Formal Analysis ◽

Security Protocols ◽

Data Integrity ◽

Wireless Sensor ◽

Semantic Model ◽

Communication Graph ◽

Pi Calculus ◽

Security Properties

Abstract Design of security protocols is notoriously error-prone. For this reason, it is required to use formal methods to analyze their security properties. In the paper we present a formal analysis of the Canvas protocol. The Canvas protocol was developed by Harald Vogt and should provide data integrity inWireless Sensor Networks. However, Dieter Gollmann published an attack on the protocol. We consider the fallacy of the Canvas scheme in different models of the attacker and present a solution for correcting the scheme.We propose a formal model of the fixed Canvas protocol in the applied pi-calculus. This model includes a model of the network topology, communication channels, captured nodes, and capabilities of the attacker. Moreover, we formulate and analyze the data integrity property of the scheme in the semantic model of the applied pi-calculus. We prove that the fixed Canvas scheme, in the presence of an active adversary, provides data integrity of messages assuming that captured nodes are not direct neighbors in the communication graph of a sensor network. Finally, we discuss the applicability of the proposed formal model for analysis of other WSN security protocols.

Download Full-text

Formal modeling of combat under satellite communication network support based on pi-calculus

2016 First IEEE International Conference on Computer Communication and the Internet (ICCCI) ◽

10.1109/cci.2016.7778877 ◽

2016 ◽

Author(s):

Lin Zhu ◽

Shengliang Fang

Keyword(s):

Communication Network ◽

Satellite Communication ◽

Formal Modeling ◽

Network Support ◽

Pi Calculus

Download Full-text

On the formal analysis of PKCS authentication protocols

Advances in Cryptology — AUSCRYPT '90 - Lecture Notes in Computer Science ◽

10.1007/bfb0030355 ◽

2006 ◽

pp. 105-121 ◽

Cited By ~ 9

Author(s):

Klaus Gaarder ◽

Einar Snekkenes

Keyword(s):

Formal Analysis ◽

Authentication Protocols

Download Full-text

Cirrus: an automated protocol analysis tool

Proceedings of the Fourth International Workshop on MACHINE LEARNING ◽

10.1016/b978-0-934613-41-5.50025-8 ◽

1987 ◽

pp. 205-217 ◽

Cited By ~ 4

Author(s):

KURT VANLEHN ◽

STEVE GARLICK

Keyword(s):

Protocol Analysis ◽

Analysis Tool ◽

Automated Protocol

Download Full-text

The study on the application of BAN logic in formal analysis of authentication protocols

Proceedings of the 7th international conference on Electronic commerce - ICEC '05 ◽

10.1145/1089551.1089685 ◽

2005 ◽

Cited By ~ 11

Author(s):

Jinghua Wen ◽

Mei Zhang ◽

Xiang Li

Keyword(s):

Formal Analysis ◽

Ban Logic ◽

Authentication Protocols

Download Full-text

A Protocol Analysis Platform for the WTB Redundancy in Train Communication Network(TCN)

The Transactions of the Korean Institute of Electrical Engineers P ◽

10.5370/kieep.2013.62.1.023 ◽

2013 ◽

Vol 62 (1) ◽

pp. 23-29

Author(s):

Seok-In Choi ◽

Jin-Geun Shon

Keyword(s):

Communication Network ◽

Protocol Analysis ◽

Analysis Platform ◽

Train Communication Network

Download Full-text

Proving authentication property of PUF-based mutual authentication protocol based on logic of events

Soft Computing ◽

10.1007/s00500-021-06163-9 ◽

2021 ◽

Author(s):

Jiawen Song ◽

Meihua Xiao ◽

Tong Zhang ◽

Haoyang Zhou

Keyword(s):

Protocol Analysis ◽

Mutual Authentication ◽

Hardware Security ◽

Authentication Protocol ◽

Interaction Process ◽

Authentication Protocols ◽

Analysis Process ◽

Security Properties ◽

And Behavior ◽

Mutual Authentication Protocol

AbstractPUF (Physical unclonable function) is a new hardware security primitive, and the research on PUFs is one of the emerging research focuses. For PUF-based mutual authentication protocols, a method to abstract the security properties of hardware by using logic of events is proposed, and the application aspects of logic of events are extended to protocols based on hardware security. With the interaction of PUF-based mutual authentication protocol formally described by logic of events, the basic sequences are constructed and the strong authentication property in protocol interaction process is verified. Based on the logic of events, the freshness of nonces is defined, and the persist rule is proposed according to the concept of freshness, which ensures the consistency of the protocol state and behavior predicate in the proof process, and reduces the complexity and redundancy in the protocol analysis process. Under reasonable assumptions, the security of the protocol is proven, and the fact that logic of events applies to PUF-based mutual authentication protocols is shown.

Download Full-text