On the security validation of integrated security solutions

Andreas Fuchs, Sigrid Gürgens, Carsten Rudolph

Research output: Chapter in Book/Report/Conference proceedingConference PaperResearchpeer-review

1 Citation (Scopus)

Abstract

Combining security solutions in order to achieve stronger (combined) security properties is not straightforward. This paper shows that security-preserving alphabetic language homomorphisms can be used to derive security results for combined security solutions. A relatively simple example of the combination of two different authentication properties (device authentication using a trusted platform module and user authentication using SSL) are integrated. Using security-preserving language homomorphisms it is shown that previously proposed combinations of solutions do not satisfy the desired integrated security properties. Finally, an improved integration of the two solutions is shown to satisfy the desired properties.

Original languageEnglish
Title of host publicationEmerging Challenges for Security, Privacy and Trust - 24th IFIP TC 11 International Information Security Conference, SEC 2009, Proceedings
Pages190-201
Number of pages12
Volume297
DOIs
Publication statusPublished - 2009
Externally publishedYes
Event24th IFIP TC11 International Information Security Conference, SEC 2009 - Pafos, Cyprus
Duration: 18 May 200920 May 2009

Publication series

NameIFIP Advances in Information and Communication Technology
Volume297
ISSN (Print)18684238

Conference

Conference24th IFIP TC11 International Information Security Conference, SEC 2009
CountryCyprus
CityPafos
Period18/05/0920/05/09

Cite this