AUTHSCAN: Automatic extraction of web authentication protocols from implementations

AUTHSCAN: Automatic extraction of web authentication protocols from implementations

Ideally, security protocol implementations should be formally verified before they are deployed. However, this is not true in practice. Numerous high-profile vulnerabilities have been found in web authentication protocol implementations, especially in single-sign on (SSO) protocols implementations r...

Full description

Saved in:

Bibliographic Details
Main Authors:	BAI, Guangdong, LEI, Jike, MENG, Guozhu, VENKATRAMAN, Sai Sathyanarayan, SAXENA, Prateek, SUN, Jun, LIU, Yang, DONG, Jin Song
Format:	text
Language:	English
Published:	Institutional Knowledge at Singapore Management University 2013
Subjects:	Software Engineering
Online Access:	https://ink.library.smu.edu.sg/sis_research/5008 https://ink.library.smu.edu.sg/context/sis_research/article/6011/viewcontent/ndss2013authscan.pdf
Tags:	Add Tag No Tags, Be the first to tag this record!
Institution:	Singapore Management University
Language:	English

Similar Items

Systematically enhancing black-box web vulnerability scanners
by: VENKATRAMAN SAI SATHYANARAYAN
Published: (2012)

FORMALLY ANALYZING AND VERIFYING SECURE SYSTEM DESIGN AND IMPLEMENTATION
by: BAI GUANGDONG
Published: (2015)

A verification framework for stateful security protocols
by: LI, Li, et al.
Published: (2017)

All your sessions are belong to us: Investigating authenticator leakage through backup channels on Android
by: BAI, Guangdong, et al.
Published: (2015)

Replay tolerance of authentication protocols
by: Lam, K.-Y.
Published: (2014)

An authentication protocol for mobile IP
by: Casanova, Philip B.
Published: (1999)

IMPROVED AUTHENTICATION PROTOCOL FOR MOBILE IP
by: GAO QING
Published: (2019)

IMPROVED AUTHENTICATION PROTOCOL FOR MOBILE IP
by: GAO QING
Published: (2019)

Authentication protocols of remote desktop services
by: Teo, Hui Ling.
Published: (2013)

Automatic implementation of the ISO FTAM protocol based on an integrated specification of Estelle and ASN.1
by: Lo, A., et al.
Published: (2014)

An ultralightweight RFID authentication protocol with CRC and permutation
by: Gao, Lijun, et al.
Published: (2014)

Universal authentication protocols for anonymous wireless communications
by: YANG, Guomin, et al.
Published: (2010)

Attacks and Improvements to an RFID Mutual Authentication Protocol
by: CAI, Shaoying, et al.
Published: (2009)

Authentication protocol based on collective quantum steering
by: MONDAL, DEBASIS, et al.
Published: (2019)

Universal authentication protocols for anonymous wireless communications
by: Yang, G., et al.
Published: (2014)

A NOVEL APPROACH FOR FLEXRAY PROTOCOL WITH CONFIDENTIALITY AND AUTHENTICITY
by: LIU XUE
Published: (2016)

The Security and Improvement of An Ultra-Lightweight RFID Authentication Protocol
by: LI, Tieyan, et al.
Published: (2008)

Time cost evaluation for executing RFID authentication protocols
by: CHIEW, Kevin, et al.
Published: (2010)

RFID mutual authentication protocols with universally composable security
by: SU, Chunhua, et al.
Published: (2011)

Design of handover authentication protocols for 5G networks
by: Yan, Xiaobei
Published: (2022)

SeVe: Automatic tool for verification of security protocols
by: Luu, A.T., et al.
Published: (2013)

Fortifying network attached storage: Implementation of multifactor authentication and drive sharing protocol for robust data protection for DLSU CCS TSG
by: Samsico, Aaron Earl DG.
Published: (2023)

A hybrid authentication protocol for LTE/LTE-A network
by: Zhou, Jianhong, et al.
Published: (2019)

On the Untraceability of Anonymous RFID Authentication Protocol with Constant Key-Lookup
by: LIANG, Bing, et al.
Published: (2009)

Vulnerability analysis of EMAP: An efficient RFID mutual authentication protocol
by: LI, Tieyan, et al.
Published: (2007)

Efficient Tag Path Authentication Protocol with Less Tag Memory
by: WANG, Hongbing, et al.
Published: (2016)

A hybrid authentication protocol for LTE/LTE-A networks
by: Vu, Hoang Anh
Published: (2016)

Lte security authentication protocol in 3GPP/WLAN internetworking
by: Vu, Duc Thien
Published: (2012)

Automatous web accessibility evaluator
by: Chai, Tze Yan
Published: (2015)

Automatic summarization of web documents
by: Jodihardja, Marcellus Reinaldo
Published: (2013)

Automatic summarizer for web documents
by: Chia, Pei Qi
Published: (2014)

Seve: Automatic tool for verification of security protocols
by: LUU ANH TUAN
Published: (2011)

A security enhanced authentication and key distribution protocol for wireless networks
by: Lv, Chao, et al.
Published: (2013)

Efficient threshold password-authenticated secret sharing protocols for cloud computing
by: Yi, Xun, et al.
Published: (2020)

A secure authentication protocol using HOTP on USB storage devices
by: Suratose Tritilanunt, et al.
Published: (2018)

Security analysis on a family of ultra-lightweight RFID authentication protocols
by: LI, Tieyan, et al.
Published: (2008)

Two Robust Remote User Authentication Protocols Using Smart Cards
by: YEH, Kuo-Hui, et al.
Published: (2010)

Efficient DDoS attack immune authentication and key agreement protocol for LTE
by: Li, Luying
Published: (2013)

A universal handover authentication protocol for 5G heterogeneous network
by: Chen, Boming
Published: (2018)

Towards using concurrent Java API correctly
by: LIU, Shuang, et al.
Published: (2016)