English
Related papers

Related papers: Server-side verification of client behavior in cry…

200 papers

Recently efficient model-checking tools have been developed to find flaws in security protocols specifications. These flaws can be interpreted as potential attacks scenarios but the feasability of these scenarios need to be confirmed at the…

Cryptography and Security · Computer Science 2013-08-01 Hatem Ghabri , Ghazi Maatoug , Michael Rusinowitch

A long-standing research problem in security protocol design is how to efficiently verify security protocols with tamper-resistant global states. In this paper, we address this problem by first proposing a protocol specification framework,…

Cryptography and Security · Computer Science 2014-03-11 Li Li , Jun Pang , Yang Liu , Jun Sun , Jin Song Dong

Passive operating system fingerprinting reveals valuable information to the defenders of heterogeneous private networks; at the same time, attackers can use fingerprinting to reconnoiter networks, so defenders need obfuscation techniques to…

Cryptography and Security · Computer Science 2017-06-27 Blake Anderson , David McGrew

Traffic monitoring is essential for network management tasks that ensure security and QoS. However, the continuous increase of HTTPS traffic undermines the effectiveness of current service-level monitoring that can only rely on unreliable…

Cryptography and Security · Computer Science 2020-08-20 Wazen M. Shbair , Thibault Cholez , Jerome Francois , Isabelle Chrisment

Web servers service client requests, some of which might cause the web server to perform security-sensitive operations (e.g. money transfer, voting). An attacker may thus forge or maliciously manipulate such requests by compromising a web…

Cryptography and Security · Computer Science 2023-07-06 He Shuang , Lianying Zhao , David Lie

While smartphone usage become more and more pervasive, people start also asking to which extent such devices can be maliciously exploited as "tracking devices". The concern is not only related to an adversary taking physical or remote…

Cryptography and Security · Computer Science 2014-07-30 Mauro Conti , Luigi V. Mancini , Riccardo Spolaor , Nino V. Verde

Many widely used Internet messaging and calling apps, such as WhatsApp, Viber, Telegram, and Signal, have deployed an end-to-end encryption functionality. To defeat potential MITM attackers against the key exchange protocol, the approach…

Cryptography and Security · Computer Science 2017-07-18 Maliheh Shirvanian , Nitesh Saxena , Jesvin James George

Transparency protocols are protocols whose actions can be publicly monitored by observers (such observers may include regulators, rights advocacy groups, or the general public). The observed actions are typically usages of private keys such…

Cryptography and Security · Computer Science 2023-04-18 Vincent Cheval , José Moreira , Mark Ryan

In concurrent and distributed systems, software components are expected to communicate according to predetermined protocols and APIs - and if a component does not observe them, the system's reliability is compromised. Furthermore, isolating…

Programming Languages · Computer Science 2021-05-25 Christian Batrolo Burlò , Adrian Francalanza , Alceste Scalas

The current implementation of TLS involves your browser displaying a padlock, and a green bar, after successfully verifying the digital signature on the TLS certificate. Proposed is a solution where your browser's response to successful…

Cryptography and Security · Computer Science 2018-04-13 Joseph Kilcullen

To prevent credential stuffing attacks, industry best practice now proactively checks if user credentials are present in known data breaches. Recently, some web services, such as HaveIBeenPwned (HIBP) and Google Password Checkup (GPC), have…

Cryptography and Security · Computer Science 2019-09-05 Lucy Li , Bijeeta Pal , Junade Ali , Nick Sullivan , Rahul Chatterjee , Thomas Ristenpart

In recent times, many protocols have been proposed to provide security for various information and communication systems. Such protocols must be tested for their functional correctness before they are used in practice. Application of formal…

Cryptography and Security · Computer Science 2011-01-11 Suvansh Lal , Mohit Jain , Vikrant Chaplot

In the very last years, cybersecurity attacks have increased at an unprecedented pace, becoming ever more sophisticated and costly. Their impact has involved both private/public companies and critical infrastructures. At the same time, due…

Cryptography and Security · Computer Science 2023-09-25 Filippo Sobrero , Beatrice Clavarezza , Daniele Ucci , Federica Bisio

Malware writers frequently try to hide the activities of their agents within tunnelled traffic. Within the Kill Chain model the infection time is often measured in seconds, and if the infection is not detected and blocked, the malware…

Cryptography and Security · Computer Science 2019-07-30 Peter McLaren , William J Buchanan , Gordon Russell , Zhiyuan Tan

The exploitation of certification tools by end users represents a fundamental aspect of the development of quantum technologies as the hardware scales up beyond the regime of classical simulatability. Certifying quantum networks becomes…

A new interactive quantum zero-knowledge protocol for identity authentication implementable in currently available quantum cryptographic devices is proposed and demonstrated. The protocol design involves a verifier and a prover knowing a…

In this paper we proposed an authentication technique based on the user cards, to improve the authentication process in systems that allows remote access for the users, and raise the security rate during an exchange of their messages. in…

Cryptography and Security · Computer Science 2021-08-17 Ibrahim Obeidat , Ahmed AL Arjan , Rula AL Amrat , Rathaa AL Ajmi

Cryptocurrency wallets have become the primary gateway to decentralized applications, yet users often face significant difficulty in discerning what a wallet signature actually does or entails. Prior work has mainly focused on mitigating…

Human-Computer Interaction · Computer Science 2026-01-26 Yuyang Qin , Haihan Duan

In key agreement protocols, the user will send a request to the server and the server will respond to that message. After two-way authentication, a secure session key will be created between them. They use the session key to create a secure…

Cryptography and Security · Computer Science 2022-06-28 Mahdi Nikooghadam , Hamid Reza Shahriari

We propose a framework by which websites can coordinate to detect credential stuffing on individual user accounts. Our detection algorithm teases apart normal login behavior (involving password reuse, entering correct passwords into the…

Cryptography and Security · Computer Science 2021-03-05 Ke Coby Wang , Michael K. Reiter