A Demonstration of Some Attacks on Security Protocols
Tez Türü: Yüksek Lisans
Tezin Yürütüldüğü Kurum: University of Surrey, School of Electronics and Physical Sciences, Computer Science, İngiltere
Tez Danışmanı: Assoc. Prof. Dr. James Heather
Tezin Onay Tarihi: 2003
Tezin Dili: İngilizce
Desteklendiği Program: Diğer
Özet:
The aim of the research was to design a demonstration of some attacks on security protocols on wired or wireless network.
This was achieved through analysing some of the existent security and authentication protocols and examining some type of attacks on these protocols.
The main findings were as follows:
x
x x x
x
Security protocols are a set of rules, for exchanging series of messages between a set of users, processes or machines.
Security protocols agree upon a cryptographic key for achieving authentication.
In cryptographic protocols, whole or part of messages are encrypted.
Attacks on protocols are either impersonating the agents or changing the contents of exchanging messages.
The design implementation is based on public-key authentication protocol and attacks on it.
The significance of these findings is as follows:
x
x
x
x
It was found that, although there are principles to avoid attacks, still there are incorrect design protocols.
There are some features of the similarities and differences between protocol principles that are difficult to analyse.
The design implementation is not a solution to avoid attacks on protocols. It is only a demonstration of how attacks are made on the public-key authentication protocol. As well, the design shows the network connections between two clients and server and tries to find the solution for demonstration of attacks on the protocols.
To explain how the theory of attack works in practice, the design demonstration is more effective than using mathematical methods, because it helps users, who are not familiar with the topic, to understand attack better.