Preventing DoS Attack on Hidden Credentials
ISDPE '07 Proceedings of the The First International Symposium on Data, Privacy, and E-Commerce(2007)
摘要
Using hidden credentials, strangers in open environments can establish trust without actually disclosing credentials and policies. However, traditional negotiation protocols with hidden credentials are not satisfactory in that they can't prevent malicious users from tampering negotiation messages or flooding error messages to the recipient. Both of these efforts add the recipient's computational overhead and can cause denial of service (DoS) attack. In this paper we analyze the weaknesses of a single round protocol using hidden credentials and propose an improved trust negotiation protocol to defense against DoS attack on hidden credentials. The proposed protocol can help the recipient to recognize modified messages and authenticate the sender. We also present detailed security analysis for our protocol, and show that our protocol is secure against tampering and flooding aggression.
更多查看译文
关键词
improved trust negotiation protocol,protocols,denial of service attack,hidden credential,dos attack,single round protocol,error message,negotiation message,preventing dos attack,computational overhead,trust negotiation protocol,hidden credentials,malicious user,proposed protocol,traditional negotiation protocol,security of data,denial of service,security analysis
AI 理解论文
溯源树
样例
生成溯源树,研究论文发展脉络
Chat Paper
正在生成论文摘要