English

Automated Attacker Synthesis for Distributed Protocols

Cryptography and Security 2022-04-13 v4 Formal Languages and Automata Theory

Abstract

Distributed protocols should be robust to both benign malfunction (e.g. packet loss or delay) and attacks (e.g. message replay) from internal or external adversaries. In this paper we take a formal approach to the automated synthesis of attackers, i.e. adversarial processes that can cause the protocol to malfunction. Specifically, given a formal threat model capturing the distributed protocol model and network topology, as well as the placement, goals, and interface (inputs and outputs) of potential attackers, we automatically synthesize an attacker. We formalize four attacker synthesis problems - across attackers that always succeed versus those that sometimes fail, and attackers that attack forever versus those that do not - and we propose algorithmic solutions to two of them. We report on a prototype implementation called KORG and its application to TCP as a case-study. Our experiments show that KORG can automatically generate well-known attacks for TCP within seconds or minutes.

Cite

@article{arxiv.2004.01220,
  title  = {Automated Attacker Synthesis for Distributed Protocols},
  author = {Max von Hippel and Cole Vick and Stavros Tripakis and Cristina Nita-Rotaru},
  journal= {arXiv preprint arXiv:2004.01220},
  year   = {2022}
}

Comments

24 pages, 15 figures

R2 v1 2026-06-23T14:37:19.747Z