BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//Talks.cam//talks.cam.ac.uk//
X-WR-CALNAME:Talks.cam
BEGIN:VEVENT
SUMMARY:An Updated Threat Model for Security Ceremonies - Jean Martina (Fe
 deral University of Santa Catarina / Brazil)
DTSTART:20121120T161500Z
DTEND:20121120T171500Z
UID:TALK40382@talks.cam.ac.uk
CONTACT:Wei Ming Khoo
DESCRIPTION:Since Needham and Schroeder introduced the idea of an active a
 ttacker\, a lot of research has been made in the protocol design and analy
 sis area in order to verify protocols' claims against this type of attacke
 r. Nowadays\, the Dolev-Yao threat model is the most widely accepted attac
 ker model in the analysis of security protocols. Consequently\, there are 
 several security protocols considered secure against an attacker under Dol
 ev-Yao's assumptions. With the introduction of the concept of ceremonies\,
  which extends protocol design and analysis to include human peers\, we ca
 n potentially find and solve security flaws that were previously not detec
 table. In this presentation\, we discuss that\, even though Dolev-Yao's th
 reat model can represent the most powerful attacker possible in a ceremony
 \, the attacker in this model is not realistic in certain scenarios\, spec
 ially those related to the human peers. We propose a dynamic threat model 
 that can be adjusted according to each ceremony\, and consequently adapt t
 he model and the ceremony analysis to realistic scenarios without degradin
 g security and improving usability.
LOCATION:Lecture Theatre 2\, Computer Laboratory\, William Gates Building
END:VEVENT
END:VCALENDAR