formal methods

Question 1

what are formal methods

Answer 1

the foundations, methods and tools for developing and reasoning about systems

Question 2

what do formal methods allow us to do

Answer 2

formally check whether a system satisfies defined propertied
identifies vulnerabilities via trying to prove those properties

Question 3

what are two pros of formal methods

Answer 3

puts system development on a firm mathematical grounding ( viewing protocols as a mathematical object)
addresses inadequacies in penetrate and patch

Question 4

what are two cons of formal methods

Answer 4

the verify models not the system itself therefore if the model is inaccurate then so will the results
may not specify all system requirements or may specify incorrectly

Question 5

what is a negative of tools

Answer 5

may require users to interact with them or produce false negatives

Question 6

why was using penetrate and patch not good

Answer 6

attackers are good at finding and exploiting vulnerabilities
the more interest in protocols means the more vulnerabilities were found and exploited

Question 7

what are some examples of tls/ssl attacks

Answer 7

BEAST
heartbleed
DROWN

Question 8

BEAST

Answer 8

exploits how the iv is generated for block ciphers (cbc mode)

Question 9

heartbleed

Answer 9

exploited to return information it shouldnt e.g. decryption key

Question 10

DROWN

Answer 10

only worked with ssl v2 so we stopped using it however attackers could force the system to switch to it in order to decrypt the ciphertext

Question 11

foundations

Answer 11

recipe for formal methods

Question 12

what are the three things that we need to do in the foundation of formal methods

Answer 12

precisely specify the; system, adversarial environment and security properties
choose the specification language
verify security properties

Question 13

why do we need to choose the specification language

Answer 13

it defines the system

Question 14

why must the model for the adversial environment relate to the real world

Answer 14

the system is being used in the real world so it needs to be accurate and trustworthy

Question 15

how did the contactless emv payments scam work

Answer 15

the phone is tricked into thinking that its making a payment < £100 therefore it doesnt require the phone to be unlocked and the money is taken from your account

Question 16

when precisely defining the system in the foundation of the formal model what three things do we look at

Answer 16

system design
code level
configuration level

Question 17

why is the system design important in the foundation

Answer 17

if the design isnt secure then no implementation conforming to it will be

Question 18

the system (foundation)

Answer 18

protocols that show security

Question 19

code level (system - foundation)

Answer 19

used to verify the absence of bugs and sometimes deeper properties

Question 20

configuration level (system - foundation) + example

Answer 20

the implementation of the protocol
e.g. access control policies

Question 21

what is the adversarial environment

Answer 21

the model of the attacker/ where the system operates

Question 22

what are some things that we consider about the attacker when defining the adversarial environment

Answer 22

remote/inside
active/passive
corrupt/control protocol participation

Question 23

system properties

Answer 23

things that the system should satisfy

Question 24

what are some examples of system properties

Answer 24

system correctness
safety properties
indistinguishable properties

Question 25

safety properties

Answer 25

ensuring nothing bad happens
e.g. the attacker signing a message without having a signing key

Question 26

indistinguishable properties

Answer 26

the attacker shouldnt be able to distinguish between two protocols/ encrypted messages

Question 27

what are two benefits of having indistinguishable properties

Answer 27

allows for confidentiality and anonymity

Question 28

what are the three types of methods

Answer 28

symbolic
stochastic
computational

Question 29

symbolic methods

Answer 29

possibilistic security definitions
assumes the dolev-yao attack model

Question 30

how are protocols defined in symbolic methods

Answer 30

as a transition system based on actions and agents
state model

Question 31

what are the goals of symbolic methods

Answer 31

confidentiality and authentication

Question 32

possibilistic

Answer 32

checks whether something bad could happen in theory

Question 33

dolev-yao attack model

Answer 33

assumes the attacker controls the network and can create their own messages however, cryptography is working perfectly

Question 34

stochastic methods

Answer 34

assumes the adversary will probably do something wrong

Question 35

what is a negative of computational methods

Answer 35

more detail means more complexity making it difficult to trust proofs as the model of the system and the attacker may be inaccurate

Question 36

probalistic

Answer 36

it can make random choices e.g. guessing keys

Question 37

computational methods

Answer 37

assumes the attackers resources are bounded; they have polynomial time
probalistic
uses detailed and accurate models
several techniques for constructing security proofs