| Meno: | Lukáš |
|---|---|
| Priezvisko: | Horňáček |
| Názov: | Analysis and detection of DoS vulnerabilities in cryptographic protocols |
| Vedúci: | doc. RNDr. Martin Stanek, PhD. |
| Rok: | 2026 |
| Kľúčové slová: | DoS, vulnerability, cryptology, protocol, analysis |
| Abstrakt: | This thesis presents an extension for the analysis of denial-of-service (DoS) vulnerabilities in cryptographic protocols for the Verifpal protocol verification tool. The extension takes as input a protocol modelled in an extended version of Verifpal’s modelling language and outputs the most severe DoS attack it can find, where severity is measured by the ratio between the computational cost for the victim and the attacker. We used the extension to analyze several protocols, namely STS, JFK, IKEv2, four patterns of the Noise Protocol Framework, and WireGuard. The first three protocols had known attacks, which the extension successfully identified. We also identified and addressed a limitation of previous similar analyses, which did not take into account the cost of sending and receiving messages over the network. The results of our analysis indicate that the number of messages exchanged before the victim performs expensive operations directly correlates with DoS resistance of the protocol. |
Súbory diplomovej práce:
| master_thesis.pdf |
| dos_extension.zip |
Súbory prezentácie na obhajobe: