all InfoSec news
DY Fuzzing: Formal Dolev-Yao Models Meet Protocol Fuzz Testing
Jan. 19, 2023, 9:24 p.m. |
IACR News www.iacr.org
ePrint Report: DY Fuzzing: Formal Dolev-Yao Models Meet Protocol Fuzz Testing
Max Ammann, Lucca Hirschi, Steve Kremer
Critical and widely used cryptographic protocols have repeatedly been found to contain flaws in their design and their implementation. A prominent class of such vulnerabilities is logical attacks, i.e. attacks that solely exploit flawed protocol logic. Automated formal verification methods, based on the Dolev-Yao (DY) attacker, excel at finding such flaws, but operate only on abstract specification models. Fully automated verification of existing …
attacks automated class critical design eprint report excel exploit flaws fuzz fuzzing fuzz testing logic protocol protocols report steve testing verification vulnerabilities
More from www.iacr.org / IACR News
Updatable Policy-Compliant Signatures
1 day, 16 hours ago |
www.iacr.org
Guess and Determine Analysis Based on Set Split
1 day, 16 hours ago |
www.iacr.org
Improving Generic Attacks Using Exceptional Functions
1 day, 16 hours ago |
www.iacr.org
Real-Valued Somewhat-Pseudorandom Unitaries
2 days, 20 hours ago |
www.iacr.org
A Variation on Knellwolf and Meier's Attack on the Knapsack Generator
2 days, 20 hours ago |
www.iacr.org
Jobs in InfoSec / Cybersecurity
Information Technology Specialist II: Network Architect
@ Los Angeles County Employees Retirement Association (LACERA) | Pasadena, CA
Cybersecurity Skills Challenge -- Sponsored by DoD
@ Correlation One | United States
Security Operations Center (SOC) Analyst
@ GK Cybersecurity Group | Remote
Cyber Threat Defense - PAM Manager
@ PwC | Amsterdam - Thomas R. Malthusstraat 5
InfoSec Specialist
@ Deutsche Bank | Bucharest
DevSecOps Engineer
@ Swiss Re | Bengaluru, KA, IN