A New Knowledge Representation Strategy for Cryptographic Protocol Analysis

  • Ivan Cibrario B.
  • Luca Durante
  • Riccardo Sisto
  • Adriano Valenzano
Conference paper
Part of the Lecture Notes in Computer Science book series (LNCS, volume 2619)

Abstract

The formal verifiation of security properties of a cryptographic protocol is a diffcult, albeit very important task as more and more sensible resources are added to public networks. This paper is focused on model checking; when adopting this approach to the problem, one challenge is to represent the intruder’s knowledge in an effective way. We present an intruder’s knowledge representation strategy that supports the full term language of spi calculus and does not pose arti.- cial restrictions, such as atomicity or limited maximum size, to language elements. In addition, our approach leads to practical implementation because the knowledge representation is incrementally computable and is easily amenable to work with various term representation languages.

References

  1. 1.
    M. Abadi, and A. D. Gordon, “A Calculus for Cryptographic Protocols The Spi Calculus”, Digital Research Report, vol. 149, January 1998, pp. 1–110.Google Scholar
  2. 2.
    R. Amadio, and D. Lugiez, “On the Reachability Problem in Cryptographic Protocols”, Proc. of CONCUR’2000, LNCS 1877, pp. 380–394, Springer-Verlag, 2000.Google Scholar
  3. 3.
    M. Boreale, R. De Nicola, and R. Pugliese, “Proof Techniques for Cryptographic Processes”, Proc. of the 14th IEEE Symposium Logic In Computer Science (LICS’99), IEEE Computer Society Press, pp. 157–166, 1999.Google Scholar
  4. 4.
    M. Boreale, “Symbolic Trace Analysis of Cryptographic Protocols”, In Proc. 28th ICALP, Vol. 2076 of Lecture Notes in Computer Science, Springer-Verlag, pp. 667–681, 2001.Google Scholar
  5. 5.
    E. M. Clarke, S. Jha, and W. Marrero, “Using state space exploration and a natural deduction style message derivation engine to verify security protocols”, Proc. of IFIP PROCOMET, Chapman & Hall, London, 1998, pp. p.87–106.Google Scholar
  6. 6.
    E. M. Clarke, S. Jha, and W. Marrero, “Verifying security protocols with Brutus”, ACM Trans. on Software Engineering and Methodology Vol. 9, No. 4, October 2000, pp. 443–487.CrossRefGoogle Scholar
  7. 7.
    D. Dolev, and A. Yao, “On the security of public key protocols”, IEEE Transactions on Information Theory, 29(2):198–208, 1983.MATHCrossRefMathSciNetGoogle Scholar
  8. 8.
    L. Durante, R. Sisto, and A. Valenzano, “A state-exploration technique for spicalculus testing equivalence verification”, Proc. of FORTE/PSTV 2000, Pisa, October 2000, pp. 155–170.Google Scholar
  9. 9.
    L. Durante, R. Sisto, and A. Valenzano, “Automatic testing equivalence verification of spi-calculs specifications”, Politecnico di Torino I.R. DAI/ARC 1-02.Google Scholar
  10. 10.
    M. Fiore, and M. Abadi, “Computing Symbolic Models for Verifying Cryptographic Protocols”, Proc. of 14th IEEE Computer Security Foundations Workshop, pp. 160–173, June 2001.Google Scholar
  11. 11.
    A. Huima, “Efficient Infinite-State Analysis of Security Protocols”, Proc. of FLOC Workshop on Formal Methods and Security Protocols, 1999.Google Scholar
  12. 12.
    G. Lowe, “Breaking and fixing the Needham-Schroeder public-key protocol using FDR”, Proc. of TACAS’97, Springer LNCS 1055, 1996.Google Scholar
  13. 13.
    D. A. McAllester, “Automatic Recognition of Tractability in Inference Relations”, Journal of the ACM, Vol. 40, No. 2, April 1993, pp. 284–303.MATHCrossRefMathSciNetGoogle Scholar
  14. 14.
    J. Millen, and V. Shmatikov, “Constraint solving for Bounded-Process Cryptographic Protocol Analysis”, 8th ACM Conference on Computer and Communication Security, pages 166–175, November 2001.Google Scholar
  15. 15.
    R. Milner, J. Parrow, and D. Walker, “A Calculus of mobile processes, parts I and II”, Information and Computation, pages 1–40 and 41-77, September 1992.Google Scholar
  16. 16.
    L. C. Paulson, “The inductive approach to verifying cryptographic protocols”, Journal of Computer Security, Vol. 6, pp. 85–128, 1998.Google Scholar
  17. 17.
    D. Prawitz, “Natural Deduction: A Proof-Theoretical Study”, Almqvist & Wiskell, 1965.Google Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 2003

Authors and Affiliations

  • Ivan Cibrario B.
    • 1
  • Luca Durante
    • 1
  • Riccardo Sisto
    • 2
  • Adriano Valenzano
    • 1
  1. 1.Istituto di Elettronica e di Ingegneria dell’Informazione e delle Telecomunicazioni c/o Politecnico di TorinoTorinoItaly
  2. 2.Dipartimento di automatica e InformaticaPolitecnico di TorinoTorinoItaly

Personalised recommendations