some improvements to the cost-based framework for analyzing denial of service attacks

ISCAS OpenIR

	some improvements to the cost-based framework for analyzing denial of service attacks
	Yue Qinggang; Liu Feng; Xue Rui
	2012
会议名称	Trusted Systems Third International Conference, INTRUST 2011
会议录名称	Trusted Systems
页码	84-101
会议日期	2011
会议地点	Beijing China
收录类别	SPRINGER ; EI
ISSN	0302-9743
ISBN	978-3-642-32297-6
部门归属	The State Key Laboratory of Information Security Institute of Software Chinese Academy of Sciences Beijing 100190 China
摘要	Recently, people are paying more attention to formalizing and analyzing Denial of Service (DoS) attacks, but the known analysis models are either not precise enough or not readily used in an automatic way. In this paper, we make some improvements to the cost-based framework proposed by Meadows that aims to formalize DoS attacks. After improvement, the framework models intruders and protocols faithfully in CoreASM, and in a more accurate way in specification. Besides, the analysis can be performed automatically. In the improvements, a more flexible tolerance relation is defined so that the analysis result is in a broad form rather than merely binary as in previous works. Also, concrete values are used for representing the operational costs so as to make cost functions more precise and flexible in analysis. In this paper, the JFKi protocol is automatically analyzed as an indication of the advantages of the improvements. It explores the vulnerability that was previously found manually. The discussion on the JFKi protocol shows some difficulties in designing and analyzing DoS-resistent protocols.; Recently, people are paying more attention to formalizing and analyzing Denial of Service (DoS) attacks, but the known analysis models are either not precise enough or not readily used in an automatic way. In this paper, we make some improvements to the cost-based framework proposed by Meadows that aims to formalize DoS attacks. After improvement, the framework models intruders and protocols faithfully in CoreASM, and in a more accurate way in specification. Besides, the analysis can be performed automatically. In the improvements, a more flexible tolerance relation is defined so that the analysis result is in a broad form rather than merely binary as in previous works. Also, concrete values are used for representing the operational costs so as to make cost functions more precise and flexible in analysis. In this paper, the JFKi protocol is automatically analyzed as an indication of the advantages of the improvements. It explores the vulnerability that was previously found manually. The discussion on the JFKi protocol shows some difficulties in designing and analyzing DoS-resistent protocols.
关键词	Denial Of Service &#8211 Formal Modeling &#8211 Cost Based Framework &#8211 Jfki Protocol
主办者	Beijing Institute of Technology; ONETS Wireless and Internet Security Company; Singapore Management University; Administrative Committee of Zhongguangcun Haidian Science Park
语种	英语
内容类型	会议论文
URI标识	http://ir.iscas.ac.cn/handle/311060/15738
专题	中国科学院软件研究所
推荐引用方式 GB/T 7714	Yue Qinggang,Liu Feng,Xue Rui. some improvements to the cost-based framework for analyzing denial of service attacks[C],2012:84-101.