Your search keyword '"Helen Treharne"' showing total 5 results

1. An Interoperable Architecture for Usable Password-Less Authentication

Author

Helen Treharne, Matthew Casey, Christopher J. P. Newton, Robin Savage, and Mark Manulis

Subjects

Password, Authentication, business.industry, Computer science, 05 social sciences, Usability, 02 engineering and technology, Computer security, computer.software_genre, Login, Phishing, ComputingMilieux_MANAGEMENTOFCOMPUTINGANDINFORMATIONSYSTEMS, 050501 criminology, 0202 electrical engineering, electronic engineering, information engineering, Key (cryptography), 020201 artificial intelligence & image processing, Resilience (network), business, Key management, computer, 0505 law

Abstract

Passwords are the de facto standard for authentication despite their significant weaknesses. While businesses are currently focused on implementing multi-factor authentication to provide greater security, user adoption is still low. An alternative, WebAuthn, uses cryptographic key pairs to provide password-less authentication. WebAuthn has been standardised and is resilient to phishing attacks. However, its adoption is also very low; the barriers to adoption include usability and resilience of keys. We propose a novel architecture for password-less authentication designed to improve usability and deployability. Our architecture is based on the WebAuthn standards and supports registration and login to web-services. We support a WebAuthn authenticator that generates and uses the key pairs on the client device by providing resilience for these key pairs by using a backup key store in the cloud. We also propose a WebAuthn authenticator using a key store in the cloud so that password-less authentication can be used interoperably between devices. We also assess the properties of these architectures against identified threats and how they can form the basis for improving usability and lowering the technical barriers to adoption of password-less authentication.

Published

2020

2. Formal Analysis of V2X Revocation Protocols

Author

Andrew Paverd, Frank Kargl, Stephan Wesemeyer, Steve Schneider, Jorden Whitefield, Liqun Chen, and Helen Treharne

Subjects

Security analysis, Authentication, Correctness, Revocation, Computer science, business.industry, 020206 networking & telecommunications, Cryptography, Context (language use), 0102 computer and information sciences, 02 engineering and technology, Security token, Computer security, computer.software_genre, 01 natural sciences, 010201 computation theory & mathematics, 0202 electrical engineering, electronic engineering, information engineering, Verifiable secret sharing, business, computer

Abstract

Research on vehicular networking (V2X) security has produced a range of securitymechanisms and protocols tailored for this domain, addressing both security and privacy. Typically, the security analysis of these proposals has largely been informal. However, formal analysis can be used to expose flaws and ultimately provide a higher level of assurance in the protocols. This paper focusses on the formal analysis of a particular element of security mechanisms for V2X found in many proposals, that is the revocation of malicious or misbehaving vehicles from the V2X system by invalidating their credentials. This revocation needs to be performed in an unlinkable way for vehicle privacy even in the context of vehicles regularly changing their pseudonyms. The Rewire scheme by Forster et al. and its subschemes Plain and R-token aim to solve this challenge by means of cryptographic solutions and trusted hardware. Formal analysis using the Tamarin prover identifies two flaws: one previously reported in the lierature concerned with functional correctness of the protocol, and one previously unknown flaw concerning an authentication property of the R-token scheme. In response to these flaws we propose Obscure Token (O-token), an extension of Rewire to enable revocation in a privacy preserving manner. Our approach addresses the functional and authentication properties by introducing an additional key-pair, which offers a stronger and verifiable guarantee of successful revocation of vehicles without resolving the long-term identity. Moreover O-token is the first V2X revocation protocol to be co-designed with a formal model.

Published

2017

3. OnTrack: The Railway Verification Toolset

Author

Faron Moller, Markus Roggenbach, Hoang Nga Nguyen, Phillip James, Xu Wang, and Helen Treharne

Subjects

Programming language, Computer science, A domain, 020207 software engineering, 02 engineering and technology, computer.software_genre, Domain (software engineering), Task (project management), 020303 mechanical engineering & transports, 0203 mechanical engineering, Scalability, 0202 electrical engineering, electronic engineering, information engineering, computer, Interlocking

Abstract

The verification of railway interlocking systems is a challenging task for which a number of different modelling, simulation and verification approaches have been proposed. In this paper, we present the OnTrack toolset. In OnTrack, application data for the railway domain is represented using a domain specific language. This data can be entered manually or imported from standard data formats. OnTrack then comprises of a number of different model transformations that allow the user to automatically generate formal models for a specific approach, e.g., in CASL, CSP, or CSP||B. Other transformations offer abstractions on the application data to address scalability.

Published

2016

4. Managing LTL Properties in Event-B Refinement

Author

Steve Schneider, Heike Wehrheim, Helen Treharne, and David M. Williams

Subjects

Class (computer programming), Theoretical computer science, Development (topology), Linear temporal logic, Property (programming), Event (computing), Computer science, Liveness, Temporal logic, Formal methods, Algorithm

Abstract

Refinement in Event-B supports the development of systems via proof based step-wise refinement of events. This refinement approach ensures safety properties are preserved, but additional reasoning is required in order to establish liveness and fairness properties.In this paper we present results which allow a closer integration of two formal methods, Event-B and linear temporal logic. In particular we show how a class of temporal logic properties can carry through a refinement chain of machines. Refinement steps can include introduction of new events, event renaming and event splitting. We also identify a general liveness property that holds for the events of the initial system of a refinement chain. The approach will aid developers in enabling them to verify linear temporal logic properties at early stages of a development, knowing they will be preserved at later stages. We illustrate the results via a simple case study.

Published

2014

5. Verification of Scheme Plans Using CSP$$||$$B

Author

Helen Treharne, Matthew Trumble, Steve Schneider, Hoang Nga Nguyen, David M. Williams, Philip James, Faron Moller, and Markus Roggenbach

Subjects

Scheme (programming language), Basis (linear algebra), Scale (ratio), Computer science, Programming language, Plan (drawing), computer.software_genre, Collision, Variety (cybernetics), Transformation (function), computer, Algorithm, computer.programming_language, Abstraction (linguistics)

Abstract

The paper presents a tool-supported approach to graphically editing scheme plans and their safety verification. The graphical tool is based on a Domain Specific Language which is used as the basis for transformation to a CSP $$\parallel $$ —i¾? B formal model of a scheme plan. The models produced utilise a variety of abstraction techniques that make the analysis of large scale plans feasible. The techniques are applicable to other modelling languages besides CSP $$\parallel $$ —i¾? B. We use the ProB tool to ensure the safety properties of collision, derailment and run-through freedom.

Published

2014