Risk Quantification of Security Authentication: A Predictability Modeling Approach
Volume 9, Number 4, July 2013 - Paper 6 - pp. 409-422
IKECHUKWU K. AZOGU, and HONG LIUDepartment of Electrical and Computer Engineering, University of Massachusetts Dartmouth, USA
(Received on August 19, 2012, revised on April 22. 2013 and May 03, 2013)
Security authentication verifies the identity of an entity in a networked system. Risk assessment of an authentication mechanism is paramount to assure the security of a system, especially for today's ubiquitous deployment of Radio Frequency Identification (RFID) systems. Though experts in performability engineering have extended model-based evaluation techniques to assess security attributes such as system availability, confidentiality, and data integrity, authentication has so far not been found any connections to classical dependability measures. This paper presents a predictability modeling approach to quantify the risk of authentication violations. It measures the uncertainty, i.e., unpredictability, associated with system behavior. An exemplary networked system, a RFID-based Electronic Toll Collection (ETC) system, demonstrates that the approach provides a meaningful metric.
Click here to download the paper.
Please note : You will need Adobe Acrobat viewer to view the full articles.