Confidentiality levels and deliberate/indeliberate protocol attacks. Bella, G. & Bistarelli, S. 2004. doi abstract bibtex A formal definition of confidentiality is developed using soft (rather than crisp) constraints. The goal is no longer considered as a mere yes/no property as in the existing literature, but gains an extra parameter, the security level. The higher the security level, the stronger the goal. For example, different messages may enjoy different levels of confidentiality, and the same message may enjoy different levels of confidentiality for different principals. On this basis, the notion of indeliberate confidentiality attack can be captured, whereby a principal learns some message not meant for him because of someone else's tampering. The analysis of Lowe's attack on the Needham-Schroeder protocol reveals a new weakness.
@conference{
11391_142686,
author = {Bella, Giampaolo and Bistarelli, Stefano},
title = {Confidentiality levels and deliberate/indeliberate protocol attacks},
year = {2004},
publisher = {Springer},
journal = {LECTURE NOTES IN COMPUTER SCIENCE},
volume = {2845},
booktitle = {Security Protocols, 10th International Workshop, Revised Papers},
abstract = {A formal definition of confidentiality is developed using soft (rather than crisp) constraints. The goal is no longer considered as a mere yes/no property as in the existing literature, but gains an extra parameter, the security level. The higher the security level, the stronger the goal. For example, different messages may enjoy different levels of confidentiality, and the same message may enjoy different levels of confidentiality for different principals. On this basis, the notion of indeliberate confidentiality attack can be captured, whereby a principal learns some message not meant for him because of someone else's tampering. The analysis of Lowe's attack on the Needham-Schroeder protocol reveals a new weakness.},
doi = {10.1007/978-3-540-39871-4_10},
pages = {104--119}
}
Downloads: 0
{"_id":"FwEFr29JyCw7PmyCE","bibbaseid":"bella-bistarelli-confidentialitylevelsanddeliberateindeliberateprotocolattacks-2004","author_short":["Bella, G.","Bistarelli, S."],"bibdata":{"bibtype":"conference","type":"conference","author":[{"propositions":[],"lastnames":["Bella"],"firstnames":["Giampaolo"],"suffixes":[]},{"propositions":[],"lastnames":["Bistarelli"],"firstnames":["Stefano"],"suffixes":[]}],"title":"Confidentiality levels and deliberate/indeliberate protocol attacks","year":"2004","publisher":"Springer","journal":"LECTURE NOTES IN COMPUTER SCIENCE","volume":"2845","booktitle":"Security Protocols, 10th International Workshop, Revised Papers","abstract":"A formal definition of confidentiality is developed using soft (rather than crisp) constraints. The goal is no longer considered as a mere yes/no property as in the existing literature, but gains an extra parameter, the security level. The higher the security level, the stronger the goal. For example, different messages may enjoy different levels of confidentiality, and the same message may enjoy different levels of confidentiality for different principals. On this basis, the notion of indeliberate confidentiality attack can be captured, whereby a principal learns some message not meant for him because of someone else's tampering. The analysis of Lowe's attack on the Needham-Schroeder protocol reveals a new weakness.","doi":"10.1007/978-3-540-39871-4_10","pages":"104–119","bibtex":"@conference{\n\t11391_142686,\n\tauthor = {Bella, Giampaolo and Bistarelli, Stefano},\n\ttitle = {Confidentiality levels and deliberate/indeliberate protocol attacks},\n\tyear = {2004},\n\tpublisher = {Springer},\n\tjournal = {LECTURE NOTES IN COMPUTER SCIENCE},\n\tvolume = {2845},\n\tbooktitle = {Security Protocols, 10th International Workshop, Revised Papers},\n\tabstract = {A formal definition of confidentiality is developed using soft (rather than crisp) constraints. The goal is no longer considered as a mere yes/no property as in the existing literature, but gains an extra parameter, the security level. The higher the security level, the stronger the goal. For example, different messages may enjoy different levels of confidentiality, and the same message may enjoy different levels of confidentiality for different principals. On this basis, the notion of indeliberate confidentiality attack can be captured, whereby a principal learns some message not meant for him because of someone else's tampering. The analysis of Lowe's attack on the Needham-Schroeder protocol reveals a new weakness.},\n\tdoi = {10.1007/978-3-540-39871-4_10},\t\n\tpages = {104--119}\n}\n","author_short":["Bella, G.","Bistarelli, S."],"key":"11391_142686","id":"11391_142686","bibbaseid":"bella-bistarelli-confidentialitylevelsanddeliberateindeliberateprotocolattacks-2004","role":"author","urls":{},"metadata":{"authorlinks":{}},"downloads":0,"html":""},"bibtype":"conference","biburl":"http://www.dmi.unipg.it/~bista/papers/pubblicazioni.bib","dataSources":["GhB5rb8JzW6az3exo"],"keywords":[],"search_terms":["confidentiality","levels","deliberate","indeliberate","protocol","attacks","bella","bistarelli"],"title":"Confidentiality levels and deliberate/indeliberate protocol attacks","year":2004}