{"id":"https://openalex.org/W2887044800","doi":"https://doi.org/10.3233/jcs-181139","title":"Secure authentication in the grid: A\u00a0formal\u00a0analysis\u00a0of\u00a0DNP3\u00a0SAv5","display_name":"Secure authentication in the grid: A\u00a0formal\u00a0analysis\u00a0of\u00a0DNP3\u00a0SAv5","publication_year":2018,"publication_date":"2018-08-06","ids":{"openalex":"https://openalex.org/W2887044800","doi":"https://doi.org/10.3233/jcs-181139","mag":"2887044800"},"language":"en","primary_location":{"id":"doi:10.3233/jcs-181139","is_oa":false,"landing_page_url":"https://doi.org/10.3233/jcs-181139","pdf_url":null,"source":{"id":"https://openalex.org/S106992369","display_name":"Journal of Computer Security","issn_l":"0926-227X","issn":["0926-227X","1875-8924"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310318577","host_organization_name":"IOS Press","host_organization_lineage":["https://openalex.org/P4310318577"],"host_organization_lineage_names":["IOS Press"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Journal of Computer Security","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5054383139","display_name":"Cas Cremers","orcid":"https://orcid.org/0000-0003-0322-2293"},"institutions":[{"id":"https://openalex.org/I4210128801","display_name":"Helmholtz Center for Information Security","ror":"https://ror.org/02njgxr09","country_code":"DE","type":"facility","lineage":["https://openalex.org/I1305996414","https://openalex.org/I4210128801"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Cas Cremers","raw_affiliation_strings":["CISPA Helmholtz Center i.G., Saarland Informatics Campus, Saarbr\u00fccken, Germany. E-mail:\u00a0","CISPA Helmholtz Center i.G., Saarland Informatics Campus, Saarbr\u00fccken, Germany. E-mail:\u00a0cas.cremers@cispa.saarland"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"CISPA Helmholtz Center i.G., Saarland Informatics Campus, Saarbr\u00fccken, Germany. E-mail:\u00a0","institution_ids":["https://openalex.org/I4210128801"]},{"raw_affiliation_string":"CISPA Helmholtz Center i.G., Saarland Informatics Campus, Saarbr\u00fccken, Germany. E-mail:\u00a0cas.cremers@cispa.saarland","institution_ids":["https://openalex.org/I4210128801"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5003532373","display_name":"Martin Dehnel-Wild","orcid":null},"institutions":[{"id":"https://openalex.org/I40120149","display_name":"University of Oxford","ror":"https://ror.org/052gg0110","country_code":"GB","type":"education","lineage":["https://openalex.org/I40120149"]},{"id":"https://openalex.org/I4210146410","display_name":"Science Oxford","ror":"https://ror.org/04j8yhy50","country_code":"GB","type":"nonprofit","lineage":["https://openalex.org/I4210146410"]},{"id":"https://openalex.org/I4210153742","display_name":"Jenner Institute","ror":"https://ror.org/05kwhph67","country_code":"GB","type":"facility","lineage":["https://openalex.org/I4210153742"]}],"countries":["GB"],"is_corresponding":true,"raw_author_name":"Martin Dehnel-Wild","raw_affiliation_strings":["Department of Computer Science, University of Oxford, UK. E-mails:\u00a0,\u00a0","Department of Computer Science, University of Oxford, UK. E-mails:\u00a0martin@dehnelwild.co.uk,\u00a0kamilner@kamilner.ca"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Computer Science, University of Oxford, UK. E-mails:\u00a0,\u00a0","institution_ids":["https://openalex.org/I40120149","https://openalex.org/I4210146410"]},{"raw_affiliation_string":"Department of Computer Science, University of Oxford, UK. E-mails:\u00a0martin@dehnelwild.co.uk,\u00a0kamilner@kamilner.ca","institution_ids":["https://openalex.org/I4210153742"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5001225447","display_name":"Kevin R. Milner","orcid":"https://orcid.org/0000-0002-9118-6378"},"institutions":[{"id":"https://openalex.org/I40120149","display_name":"University of Oxford","ror":"https://ror.org/052gg0110","country_code":"GB","type":"education","lineage":["https://openalex.org/I40120149"]},{"id":"https://openalex.org/I4210146410","display_name":"Science Oxford","ror":"https://ror.org/04j8yhy50","country_code":"GB","type":"nonprofit","lineage":["https://openalex.org/I4210146410"]},{"id":"https://openalex.org/I4210153742","display_name":"Jenner Institute","ror":"https://ror.org/05kwhph67","country_code":"GB","type":"facility","lineage":["https://openalex.org/I4210153742"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Kevin Milner","raw_affiliation_strings":["Department of Computer Science, University of Oxford, UK. E-mails:\u00a0,\u00a0","Department of Computer Science, University of Oxford, UK. E-mails:\u00a0martin@dehnelwild.co.uk,\u00a0kamilner@kamilner.ca"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Computer Science, University of Oxford, UK. E-mails:\u00a0,\u00a0","institution_ids":["https://openalex.org/I40120149","https://openalex.org/I4210146410"]},{"raw_affiliation_string":"Department of Computer Science, University of Oxford, UK. E-mails:\u00a0martin@dehnelwild.co.uk,\u00a0kamilner@kamilner.ca","institution_ids":["https://openalex.org/I4210153742"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5003532373"],"corresponding_institution_ids":["https://openalex.org/I40120149","https://openalex.org/I4210146410","https://openalex.org/I4210153742"],"apc_list":null,"apc_paid":null,"fwci":3.5553,"has_fulltext":false,"cited_by_count":27,"citation_normalized_percentile":{"value":0.9333529,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":94,"max":99},"biblio":{"volume":"27","issue":"2","first_page":"203","last_page":"232"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11504","display_name":"Advanced Authentication Protocols Security","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11504","display_name":"Advanced Authentication Protocols Security","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11800","display_name":"User Authentication and Security Systems","score":0.9959999918937683,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10951","display_name":"Cryptographic Implementations and Security","score":0.9901999831199646,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8080044984817505},{"id":"https://openalex.org/keywords/security-analysis","display_name":"Security analysis","score":0.6932878494262695},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.603129506111145},{"id":"https://openalex.org/keywords/authentication-protocol","display_name":"Authentication protocol","score":0.6016678214073181},{"id":"https://openalex.org/keywords/protocol","display_name":"Protocol (science)","score":0.5497697591781616},{"id":"https://openalex.org/keywords/authentication","display_name":"Authentication (law)","score":0.5470970869064331},{"id":"https://openalex.org/keywords/power-analysis","display_name":"Power analysis","score":0.5064736604690552},{"id":"https://openalex.org/keywords/cryptographic-protocol","display_name":"Cryptographic protocol","score":0.48503345251083374},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.46134594082832336},{"id":"https://openalex.org/keywords/reflection-attack","display_name":"Reflection attack","score":0.4431534707546234},{"id":"https://openalex.org/keywords/challenge\u2013response-authentication","display_name":"Challenge\u2013response authentication","score":0.4145238697528839},{"id":"https://openalex.org/keywords/leverage","display_name":"Leverage (statistics)","score":0.410049706697464},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.29754549264907837}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8080044984817505},{"id":"https://openalex.org/C38369872","wikidata":"https://www.wikidata.org/wiki/Q7445009","display_name":"Security analysis","level":2,"score":0.6932878494262695},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.603129506111145},{"id":"https://openalex.org/C21564112","wikidata":"https://www.wikidata.org/wiki/Q4825885","display_name":"Authentication protocol","level":3,"score":0.6016678214073181},{"id":"https://openalex.org/C2780385302","wikidata":"https://www.wikidata.org/wiki/Q367158","display_name":"Protocol (science)","level":3,"score":0.5497697591781616},{"id":"https://openalex.org/C148417208","wikidata":"https://www.wikidata.org/wiki/Q4825882","display_name":"Authentication (law)","level":2,"score":0.5470970869064331},{"id":"https://openalex.org/C71743495","wikidata":"https://www.wikidata.org/wiki/Q2845210","display_name":"Power analysis","level":3,"score":0.5064736604690552},{"id":"https://openalex.org/C33884865","wikidata":"https://www.wikidata.org/wiki/Q1254335","display_name":"Cryptographic protocol","level":3,"score":0.48503345251083374},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.46134594082832336},{"id":"https://openalex.org/C91069110","wikidata":"https://www.wikidata.org/wiki/Q1919060","display_name":"Reflection attack","level":5,"score":0.4431534707546234},{"id":"https://openalex.org/C131129157","wikidata":"https://www.wikidata.org/wiki/Q1059963","display_name":"Challenge\u2013response authentication","level":4,"score":0.4145238697528839},{"id":"https://openalex.org/C153083717","wikidata":"https://www.wikidata.org/wiki/Q6535263","display_name":"Leverage (statistics)","level":2,"score":0.410049706697464},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.29754549264907837},{"id":"https://openalex.org/C204787440","wikidata":"https://www.wikidata.org/wiki/Q188504","display_name":"Alternative medicine","level":2,"score":0.0},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.0},{"id":"https://openalex.org/C71924100","wikidata":"https://www.wikidata.org/wiki/Q11190","display_name":"Medicine","level":0,"score":0.0},{"id":"https://openalex.org/C142724271","wikidata":"https://www.wikidata.org/wiki/Q7208","display_name":"Pathology","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.3233/jcs-181139","is_oa":false,"landing_page_url":"https://doi.org/10.3233/jcs-181139","pdf_url":null,"source":{"id":"https://openalex.org/S106992369","display_name":"Journal of Computer Security","issn_l":"0926-227X","issn":["0926-227X","1875-8924"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310318577","host_organization_name":"IOS Press","host_organization_lineage":["https://openalex.org/P4310318577"],"host_organization_lineage_names":["IOS Press"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Journal of Computer Security","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.4000000059604645,"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions"}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":21,"referenced_works":["https://openalex.org/W146244851","https://openalex.org/W972617796","https://openalex.org/W1514335193","https://openalex.org/W1546161534","https://openalex.org/W1551843303","https://openalex.org/W1567573409","https://openalex.org/W1607643969","https://openalex.org/W1654253310","https://openalex.org/W1975306232","https://openalex.org/W1975344666","https://openalex.org/W2029693536","https://openalex.org/W2089143163","https://openalex.org/W2094250919","https://openalex.org/W2145415641","https://openalex.org/W2234482660","https://openalex.org/W2406765563","https://openalex.org/W2473954534","https://openalex.org/W2546510801","https://openalex.org/W2742647072","https://openalex.org/W2767643327","https://openalex.org/W4240357139"],"related_works":["https://openalex.org/W2363600212","https://openalex.org/W2367067697","https://openalex.org/W2377502939","https://openalex.org/W2355452447","https://openalex.org/W2972452708","https://openalex.org/W1493058717","https://openalex.org/W2406792259","https://openalex.org/W2217572265","https://openalex.org/W4232990054","https://openalex.org/W2915235342"],"abstract_inverted_index":{"Most":[0],"of":[1,67,80,88,103,123,152,196],"the":[2,19,47,63,68,77,89,100,104,112,116,121,135,145,149,159,181,197],"world\u2019s":[3],"power":[4,30],"grids":[5,31],"are":[6,12,59],"controlled":[7],"remotely.":[8],"Their":[9],"control":[10],"messages":[11,58],"sent":[13],"over":[14],"potentially":[15],"insecure":[16],"channels,":[17],"driving":[18],"need":[20],"for":[21,29,148,192],"an":[22,38],"authentication":[23],"mechanism.":[24],"The":[25],"main":[26],"communication":[27],"mechanism":[28],"and":[32,84,98,120],"other":[33],"utilities":[34],"is":[35],"defined":[36],"by":[37],"IEEE":[39],"standard,":[40],"referred":[41],"to":[42,55,180,188],"as":[43],"DNP3;":[44],"this":[45],"includes":[46],"Secure":[48],"Authentication":[49],"v5":[50],"(SAv5)":[51],"protocol,":[52],"which":[53],"aims":[54],"ensure":[56],"that":[57,132,158,172],"authenticated.":[60],"We":[61],"provide":[62],"first":[64],"security":[65,91,130,138,153,167],"analysis":[66,151,156,185],"complete":[69],"DNP3:":[70,161],"SAv5":[71,81,162],"protocol.":[72],"Previous":[73],"work":[74],"has":[75],"considered":[76,85],"message-passing":[78],"sub-protocol":[79],"in":[82],"isolation,":[83],"some":[86],"aspects":[87],"intended":[90,137,166],"properties.":[92,139,168],"In":[93,107],"contrast,":[94],"we":[95,110,127,143,170],"formally":[96],"model":[97,128],"analyse":[99],"complex":[101],"composition":[102],"protocol\u2019s":[105,117],"sub-protocols.":[106],"doing":[108],"so,":[109],"consider":[111],"full":[113],"state":[114],"machine,":[115],"asymmetric":[118],"mode,":[119],"possibility":[122],"cross-protocol":[124],"attacks.":[125],"Furthermore,":[126],"fine-grained":[129],"properties":[131],"closely":[133],"match":[134],"standard\u2019s":[136],"For":[140],"our":[141,184],"analysis,":[142],"leverage":[144],"Tamarin":[146],"prover":[147],"symbolic":[150],"protocols.":[154],"Our":[155],"shows":[157],"core":[160],"design":[163],"meets":[164],"its":[165],"Notably,":[169],"show":[171],"a":[173],"previously":[174],"reported":[175],"attack":[176],"does":[177],"not":[178],"apply":[179],"standard.":[182,198],"However,":[183],"also":[186],"leads":[187],"several":[189],"concrete":[190],"recommendations":[191],"improving":[193],"future":[194],"versions":[195]},"counts_by_year":[{"year":2026,"cited_by_count":2},{"year":2025,"cited_by_count":3},{"year":2023,"cited_by_count":2},{"year":2022,"cited_by_count":2},{"year":2021,"cited_by_count":8},{"year":2020,"cited_by_count":10}],"updated_date":"2026-05-21T06:26:12.895304","created_date":"2025-10-10T00:00:00"}