Path privacy and handovers: Preventing insider traceability attacks during secure handovers

Alnashwan, R., Dowling, B. and Wimalasiri, B. orcid.org/0000-0002-7688-504X (2025) Path privacy and handovers: Preventing insider traceability attacks during secure handovers. In: Proceedings of 2025 IEEE 38th Computer Security Foundations Symposium (CSF). 2025 IEEE 38th Computer Security Foundations Symposium (CSF), 16-20 Jun 2025, Santa Cruz, CA, USA. Institute of Electrical and Electronics Engineers (IEEE) , pp. 96-111. ISBN 9798331510817

Abstract

The rise of 5G and IoT has shifted secure communication from centralized and homogeneous to a landscape of heterogeneous mobile devices constantly travelling between myriad networks. In such environments, it is desirable for devices to securely extend their connection from one network to another, often referred to as a handover. In this work we introduce the first cryptographic formalisation of secure handover schemes. We leverage our formalisation to propose path privacy, a novel security property for handovers that has hitherto remained unexplored. We further develop a syntax for secure handovers, and identify security properties appropriate for secure handover schemes. Finally, we introduce a generic handover scheme that captures all the strong notions of security we have identified, combining our novel path privacy concept with other security properties characteristic to existing handover schemes, demonstrating the robustness and versatility of our framework.

Metadata

Item Type:	Proceedings Paper
Authors/Creators:	Alnashwan, R. Dowling, B. Wimalasiri, B. https://orcid.org/0000-0002-7688-504X
Copyright, Publisher and Additional Information:	© 2025 The Authors. Except as otherwise noted, this author-accepted version of a paper published in Proceedings of 2025 IEEE 38th Computer Security Foundations Symposium (CSF) is made available via the University of Sheffield Research Publications and Copyright Policy under the terms of the Creative Commons Attribution 4.0 International License (CC-BY 4.0), which permits unrestricted use, distribution and reproduction in any medium, provided the original work is properly cited. To view a copy of this licence, visit http://creativecommons.org/licenses/by/4.0/
Keywords:	Secure Handover; Path Privacy; Formalisation; Provable Security; Protocol Analysis
Dates:	Accepted: 28 January 2025 Published: June 2025
Institution:	The University of Sheffield
Academic Units:	The University of Sheffield > Faculty of Engineering (Sheffield) > Department of Computer Science (Sheffield)
Depositing User:	Symplectic Sheffield
Date Deposited:	18 Jul 2025 09:58
Last Modified:	18 Jul 2025 10:04
Published Version:	https://doi.ieeecomputersociety.org/10.1109/CSF648...
Status:	Published
Publisher:	Institute of Electrical and Electronics Engineers (IEEE)
Refereed:	Yes
Identification Number:	10.1109/CSF64896.2025.00007
Related URLs:	Preprint Conference
Open Archives Initiative ID (OAI ID):	oai:eprints.whiterose.ac.uk:229378

Download

Accepted Version

Filename: 2025-139.pdf

Licence: CC-BY 4.0

CLICK TO DOWNLOAD

CORE (COnnecting REpositories)

Path privacy and handovers: Preventing insider traceability attacks during secure handovers

Abstract

Metadata

Download

Accepted Version

Export

Statistics