TY - JOUR
T1 - The layered games framework for specifications and analysis of security protocols
AU - Herzberg, Amir
AU - Yoffe, Igal
PY - 2008/11
Y1 - 2008/11
N2 - We establish rigorous foundations to the use of modular and layered design for building complex distributed systems, resilient to failures and attacks. Layering is a key to the design of the internet and other distributed systems. Hence, solid, theoretical foundations are essential, especially when considering adversarial settings. A protocol realises a layer (over some lower layer) if it 'wins' with high probability, a specified game, when running over any implementation of the lower layer. This is in contrast to existing frameworks allowing modular design of cryptographic protocols, where protocols must emulate an ideal functionality. Ideal functionalities are a very elegant method for specifications, but we argue that often, game-based specifications are more appropriate, to avoid over-specification ('forcing' a particular design) and under specification (e.g. protocols that work poorly for realistic adversaries). Our results allow specification and analysis of each layer independently, then combining the results to ensure properties of the complete system.
AB - We establish rigorous foundations to the use of modular and layered design for building complex distributed systems, resilient to failures and attacks. Layering is a key to the design of the internet and other distributed systems. Hence, solid, theoretical foundations are essential, especially when considering adversarial settings. A protocol realises a layer (over some lower layer) if it 'wins' with high probability, a specified game, when running over any implementation of the lower layer. This is in contrast to existing frameworks allowing modular design of cryptographic protocols, where protocols must emulate an ideal functionality. Ideal functionalities are a very elegant method for specifications, but we argue that often, game-based specifications are more appropriate, to avoid over-specification ('forcing' a particular design) and under specification (e.g. protocols that work poorly for realistic adversaries). Our results allow specification and analysis of each layer independently, then combining the results to ensure properties of the complete system.
KW - Applied cryptography
KW - Composability
KW - Foundations
KW - Layered specifications
KW - Secure e-commerce layers
UR - http://www.scopus.com/inward/record.url?scp=84858816032&partnerID=8YFLogxK
U2 - 10.1504/ijact.2008.021087
DO - 10.1504/ijact.2008.021087
M3 - ???researchoutput.researchoutputtypes.contributiontojournal.article???
AN - SCOPUS:84858816032
SN - 1753-0563
VL - 1
SP - 144
EP - 159
JO - International Journal of Applied Cryptography
JF - International Journal of Applied Cryptography
IS - 2
ER -