Can You Fool Me? Towards Automatically Checking Protocol Gullibility

Proceedings of the Seventh ACM Workshop on Hot Topics in Networks (HotNets 2008), Calgary, Alberta, October 6-7, 2008.
Milan Stanojevic, Ratul Mahajan, Todd Millstein, Madanlal Musuvathi
We consider the task of automatically evaluating protocol gullibility, that is, the ability of some of the participants to subvert the protocol without the knowledge of the others. We explain how this problem can be formalized as a game between honest and manipulative participants. We identify the challenges underlying this problem and outline several techniques to address them. Finally, we describe the design of a preliminary prototype for checking protocol gullibility and show that it can uncover vulnerabilities in the ECN protocol.