We develop a formal model of the Host Identity Protocol (HIP) based on Timed Coloured Petri Nets (Timed CPNs) and use a simulation approach provided in CPN Tools to achieve a formal analysis. We aim to examine unbalanced computation that leads to resource exhaustion attacks in key exchange protocols comparing among a legitimate initiator, four types of adversary who attempt to deny the service at different stages of the protocol execution, and a responder. By adopting the key idea of Meadows' cost-based framework and refining the definition of operational costs during the protocol execution, our simulation provides an accurate cost estimate of protocol execution comparing between those principals. Under four defined attack strategies, however, Meadows' cost-based framework generates a different outcome compared with the simulation approach from Timed CPNs. Analysis of our experimental results reveals a limitation of Meadows' cost-based framework for addressing DoS threats.
我们开发了基于定时彩色Petri网(Timed CPN)的主机身份协议(HIP)的正式模型,并使用CPN工具中提供的模拟方法来进行正式分析。我们旨在检查不平衡计算,该计算会导致在密钥交换协议中进行资源耗尽攻击,并在合法发起方,尝试在协议执行的不同阶段拒绝服务的四种类型的对手以及响应方之间进行比较。通过采用Meadows基于成本的框架的关键思想并完善协议执行过程中的运营成本定义,我们的仿真提供了协议执行成本的准确估算,并在这些主体之间进行了比较。但是,在四种已定义的攻击策略下,Meadows基于成本的框架与定时CPN的模拟方法相比产生了不同的结果。对我们的实验结果的分析揭示了Meadows基于成本的框架来应对DoS威胁的局限性。
机译:最佳的基于时间和成本的协调项目合同,且工作率不可观察
机译:基于时间的患者发作总成本分析髋关节置换术案例研究
机译:在基于时间的区别的运费策略下,集装箱航行速度和舰队部署优化
机译:基于成本和基于时间的髋部电阻分析
机译:逻辑程序的非终止分析和基于成本的优化。
机译:筛查青春期男性沙眼衣原体:基于成本的决策分析。
机译:HIP中基于成本和基于时间的DoS抵抗性分析
