Security analysis

Starting with a high-level specification:

• Identify risks

  • playback attacks
  • encryption
  • decompilation

• Create attack scenarios

  • malicious merchant
  • eavesdropper

Based on high-level analysis:

• Analyze detailed specification

Finally, create a test plan focused around the risks

• Run tests, break system

• Negative results are good

Previous slide

Next slide

Back to first slide

View graphic version