Ceremony Analysis: Strengths and Weaknesses

Kenneth Radke; Colin Boyd; Juan Gonzalez Nieto; Margot Brereton

doi:10.1007/978-3-642-21424-0_9

Conference papers

Ceremony Analysis: Strengths and Weaknesses

Kenneth Radke ¹ Colin Boyd ¹ Juan Gonzalez Nieto ¹ Margot Brereton ¹

1 QUT - Queensland University of Technology [Brisbane]

Abstract : We investigate known security flaws in the context of security ceremonies to gain an understanding of the ceremony analysis process. The term security ceremonies is used to describe a system of protocols and humans which interact for a specific purpose. Security ceremonies and ceremony analysis is an area of research in its infancy, and we explore the basic principles involved to better understand the issues involved.We analyse three ceremonies, HTTPS, EMV and Opera Mini, and use the information gained from the experience to establish a list of typical flaws in ceremonies. Finally, we use that list to analyse a protocol proven secure for human use. This leads to a realisation of the strengths and weaknesses of ceremony analysis.

Keywords : Ceremony EMV HTTPS Opera Mini security privacy provable security humans

Document type :

Conference papers

Domain :

Computer Science [cs]

Complete list of metadata

Cited literature [17 references] Display Hide Download

https://hal.inria.fr/hal-01567584
Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Monday, July 24, 2017 - 10:40:08 AM
Last modification on : Monday, July 24, 2017 - 10:42:16 AM

Ceremony Analysis: Strengths and Weaknesses

File

Licence

Identifiers

Collections

Citation

Export

Metrics

70

99

Contact Legal Notice Personal Data

Ceremony Analysis: Strengths and Weaknesses

File

Licence

Identifiers

Collections

Citation

Export

Share

Metrics

70

99

Contact Legal Notice Personal Data