文章基本信息

标题：Security Analysis and Improvement of the TNC IF-T Protocol Binding for Tunneled EAP Methods
本地全文：下载
作者：Yuelei Xiao
期刊名称：International Journal of Security and Its Applications
印刷版ISSN：1738-9976
出版年度：2016
卷号：10
期号：10
页码：119-134
出版社：SERSC
摘要：The TNC IF-T Protocol Binding for Tunneled EAP Methods (TIPBTEM) is specified by Trusted Computing Group (TCG) for TNC assessment (i.e., Platform-Authentication) exchanges. Because the TIPBTEM includes Platform-Authentication in addition to the usual user authentication, it differs greatly from the traditional security protocols in terms of security requirements. To analyze the security of the TIPBTEM correctly, the extended strand space model (SSM) for trusted network access protocols is applied in this paper. And it is pointed out that the TIPBTEM cannot prevent man-in-the-middle (MITM) attacks in some cases. To eliminate MITM attacks, the unsecure cases of the TIPBTEM are improved based on cryptographic binding. And then it is showed that these improved TIPBTEM cases can resist MITM attacks in the extended SSM.
关键词：Platform-Authentication; strand space model; man-;in-the-middle attacks