A Semi-Decidable Procedure for Secrecy in Cryptographic Protocols
نویسندگان
چکیده
In this paper, we present a new semi-decidable procedure to analyze cryptographic protocols for secrecy based on a new class of functions that we call: the Witness-Functions. A Witness-Function is a reliable function that guarantees the secrecy in any protocol proved increasing once analyzed by it. Hence, the problem of correctness becomes a problem of protocol growth. A Witness-Function operates on derivative messages in a role-based specification and introduces new derivation techniques. We give here the technical aspects of the Witness-Functions and we show how to use them in a semi-decidable procedure. Then, we analyze a variation of Needham-Schroeder protocol and we show that a WitnessFunction can also help to teach about flaws. Finally, we analyze the NSL protocol and we prove that it is correct with respect to secrecy.
منابع مشابه
Computationally Sound Symbolic Secrecy in the Presence of Hash Functions
The standard symbolic, deducibility-based notions of secrecy are in general insufficient from a cryptographic point of view, especially in presence of hash functions. In this paper we devise and motivate a more appropriate secrecy criterion which exactly captures a standard cryptographic notion of secrecy for protocols involving public-key enryption and hash functions: protocols that satisfy it...
متن کاملA Decision Procedure for Structured Cryptographic Protocols
Given a cryptographic protocol, it is possible to extract an inference system modelling exactly the set of messages an active intruder can learn by manipulating this protocol. Unfortunately, there is no general proof-search procedure to test whether or not a term belongs to the theory of an inference system. This paper presents the preliminary results obtained during an attempt to circumvent th...
متن کاملA symbolic decision procedure for cryptographic protocols with time stamps
We present a symbolic decision procedure for time-sensitive cryptographic protocols. We consider protocols described in a process algebra-like notation that includes clocks, time-stamps and time variables. While the values of all clocks increase with rate one when time passes, time variables are simply variables that range over the time domain and can be used to remember time-stamps, i.e. time ...
متن کاملA Symbolic Decision Procedure for Cryptographic Protocols with Time Stamps (Extended Abstract)
We present a symbolic decision procedure for time-sensitive cryptographic protocols. We consider protocols described in a process algebra-like notation that includes clocks, time-stamps and time variables. While the values of all clocks increase with rate one when time passes, time variables are simply variables that range over the time domain and can be used to remember time-stamps, i.e. time ...
متن کاملUniversité Du Québec En Outaouais Formal Methods for Security Protocol Correctness Thesis Submited in Partial Fulfillment of the Requirements for the Degree of Master of Science By
The goal of this thesis is to explore the use of formal methods for security protocol correctness. Nowadays, one of the core research directions in a constantly growing distributed environment is the improvement of the security aspects of the communication process. Security flaws have been discovered in quite a few occasions, in spite of the considerable amount of time and effort required for t...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید
ثبت ناماگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید
ورودعنوان ژورنال:
- CoRR
دوره abs/1408.2774 شماره
صفحات -
تاریخ انتشار 2014