Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Protocol State Machines and Session Languages

IEEE via YouTube

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore the intricacies of protocol state machines and session languages in this IEEE conference talk presented at the 2015 LangSec Workshop. Delve into the critical role of input languages in language-theoretic security and their impact on application vulnerabilities. Examine the complexities of session languages, which involve sequences of messages forming dialogues between two parties. Discover how poorly specified and implemented session languages can lead to security issues. Learn about the potential of automatically inferring formal specifications of these languages through protocol state machines using black box testing. Gain insights into various examples, including OpenSSH, EMV, and TLS implementations, to understand the practical implications of broken state machines. Explore visual indications, Lstar algorithm, and the Disstate tool for state machine inference. Conclude with a discussion on practical problems and engage in a Q&A session to deepen your understanding of this crucial aspect of cybersecurity.

Syllabus

Introduction
Motivation
Visual Indication
Broken State Machines
OpenSSH
State Machines
Lstar
EMV
State Machine
Inference
Disstate
TLS
TLS implementations
Conclusion
Practical Problems
Questions

Taught by

IEEE Symposium on Security and Privacy

Reviews

Start your review of Protocol State Machines and Session Languages

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.