Designing Security Properties-Centric Communication Protocols using a Component-Based Approach

Designing Security Properties-Centric Communication Protocols using a Component-Based Approach

N. Nobelis (University of Nice Sophia Antipolis, France), K. Boudaoud (University of Nice Sophia Antipolis, France), C. Delettre (University of Nice Sophia Antipolis, France) and M. Riveill (University of Nice Sophia Antipolis, France)
Copyright: © 2012 |Pages: 16
DOI: 10.4018/jdst.2012010101
OnDemand PDF Download:
$37.50

Abstract

Numerous communication protocols have been designed offering a set of security properties through the use of cryptographic tools to secure electronic document transfer. However, there is no clear match between the tools used and security properties they offer. To solve this problem, the authors propose to use a component-based approach; more specifically the authors introduce the notion of high-level security component where each component provides an atomic security property. This approach will facilitate the design of new protocols that fulfill any specific set of security properties by assembling the appropriate components. At the same time, users using a protocol designed with these security components will have the assurance that the protocol satisfies the security properties required for the electronic document transfer. The authors validate the approach by showing how the integrity property can be added to the HTTP protocol to design a security property-centric HTTPS and in this case an integrity-only HTTPS.
Article Preview

Motivation

Two key aspects have motivated our work: Users involved in security and use of mobile devices to transfer different kinds of documents having different security requirements. In this paper we focus on transfers over the Internet and on the developer and administrator problems.

Complete Article List

Search this Journal:
Reset
Open Access Articles: Forthcoming
Volume 8: 4 Issues (2017): 2 Released, 2 Forthcoming
Volume 7: 4 Issues (2016)
Volume 6: 4 Issues (2015)
Volume 5: 4 Issues (2014)
Volume 4: 4 Issues (2013)
Volume 3: 4 Issues (2012)
Volume 2: 4 Issues (2011)
Volume 1: 4 Issues (2010)
View Complete Journal Contents Listing