Towards Verification of the PANA Authentication and Authorisation Protocol using Coloured Petri Nets
نویسنده
چکیده
The Extensible Authentication Protocol (EAP) allows a server to request authentication information from a client. In order to transport EAP messages over an IP network, the Protocol for Carrying Authentication for Network Access (PANA) has been developed. This paper applies a protocol engineering methodology using Coloured Petri nets (CPNs) as a step towards formally verifying the design of PANA. State space analysis of a simple PANA configuration shows that the current specification has removed deadlocks discovered in previous PANA versions. Furthermore, state space and language analysis of PANA for different client retransmission limits leads to two important conjectures: the state space size (number of nodes, arcs) can be expressed as a polynomial in terms of the retransmission limit; and the protocol language is independent of the retransmission limit. The results suggest parametric verification is applicable to PANA. Finally, ideas for automatically validating the CPN model against the original specification are discussed.
منابع مشابه
Analysis of Object-Specific Authorization Protocol (OSAP) using Coloured Petri Nets
The use of Trusted Platform Module (TPM) is becoming increasingly popular in many security systems. To access objects protected by TPM (such as cryptographic keys), several cryptographic protocols, such as the Object Specific Authorization Protocol (OSAP), can be used. Given the sensitivity and the importance of those objects protected by TPM, the security of this protocol is vital. Formal meth...
متن کاملAvailability evaluation of Software architecture of object oriented Style using coloured Petri nets
Software architecture is one of the most fundamental products in the process of software development in the areas of behavioral or non- behavioral features like availability or transformability change. There are different ways to evaluate software architecture one of which is the creation of application model. An executable model of software architecture is an official description of architectu...
متن کاملModel of DoS Resistant Broadcast Authentication Protocol in Colored Petri Net Environment
This paper deals with simulation of the broadcast authentication protocols using Coloured Petri Nets (CPN). CPN is a special instance of an orientated graph which enables to describe data flows and information dependencies inside of modeled systems. Protocol DREAM was taken as an example of broadcast authenticating protocol to show how Colour Petri Nets can be used to create a fully functional ...
متن کاملAccessibility Evaluation in Biometric Hybrid Architecture for Protecting Social Networks Using Colored Petri Nets
In the last few decades, technological progress has been made important information systems that require high security, Use safe and efficient methods for protecting their privacy. It is a major challenge to Protecting vital data and the ability to threaten attackers. And this has made it important and necessary to be sensitive to the authentication and identify of individuals in confidential n...
متن کاملPragmatics Annotated Coloured Petri Nets for Protocol Software Generation and Verification
PetriCode is a tool that supports automated generation of protocol software from a restricted class of Coloured Petri Nets (CPNs) called Pragmatics Annotated Coloured Petri Nets (PA-CPNs). PetriCode and PA-CPNs have been designed with five main requirements in mind, which include the same model being used for verification and code generation. The PetriCode approach has been discussed and evalua...
متن کامل