TitleA Cost-Based Framework for Analysis of Denial of Service in Networks
Publication TypeJournal Article
Year of Publication2000
AuthorsMeadows, C.
JournalJournal of Computer Security
Abstract

Denial of service is becoming a growing concern. As computer systems communicate more and more with others that they know less and less, they become increasingly vulnerable to hostile intruders who may take advantage of the very protocols intended for the establishment and authentication of communication to tie up resources and disable servers. This paper shows how some principles that have already been used to make cryptographic protocols more resistant to denial of service by trading off the cost to defender against the cost to the attacker can be formalized based on a modification of the Gong-Syverson fail-stop model of cryptographic protocols, and indicates the ways in which existing cryptographic protocol analysis tools could be modified to operate within this formal framework. We also indicate how this framework could be extended to protocols that do not make use of strong authentication.

Full Text

Meadows2000.pdf

NRL Publication Release Number

00-1221.1-0166