Athena: a novel approach to efficient automatic security protocol analysis1

Song, Dawn; Berezin, Sergey; Perrig, Adrian

doi:10.3233/jcs-2001-91-203

Cited by 145 publications

(111 citation statements)

References 26 publications

Supporting

Mentioning

108

Contrasting

Unclassified

Order By: Relevance

“…A wide variety of model-checking approaches have been developed for analyzing security protocols, e.g. [1,12,28,41,43,48,49]. The key challenge they face is that the general security problem is undecidable [29], and even semialgorithms, focused on falsification, must come to terms with the enormous branching factor in the search space resulting from using the standard Dolev-Yao intruder model, where the intruder can say infinitely many different things at any time point.…”

Section: Introductionmentioning

confidence: 99%

OFMC: A symbolic model checker for security protocols

2005

View full text Add to dashboard Cite

Section: Introductionmentioning

confidence: 99%

OFMC: A symbolic model checker for security protocols

2005

View full text Add to dashboard Cite

“…Here we follow the approach of restricting the number of states to be considered in the verification of the protocol, as for instance in (Escobar et al 2011;Song et al 2001;Armando and Compagna 2008). Roughly, we shall cut the messages generated of length greater than a given κ, thus allowing us to model a bounded version of the attacker.…”

Section: Verification Of Security Protocolsmentioning

confidence: 99%

Abstract interpretation of temporal concurrent constraint programs

Falaschi¹,

Olarte²,

Palamidessi³

2014

Theory and Practice of Logic Programming

View full text Add to dashboard Cite

Timed Concurrent Constraint Programming (tcc) is a declarative model for concurrency offering a logic for specifying reactive systems, i.e. systems that continuously interact with the environment. The universal tcc formalism (utcc) is an extension of tcc with the ability to express mobility. Here mobility is understood as communication of private names as typically done for mobile systems and security protocols. In this paper we consider the denotational semantics for tcc, and we extend it to a "collecting" semantics for utcc based on closure operators over sequences of constraints. Relying on this semantics, we formalize a general framework for data flow analyses of tcc and utcc programs by abstract interpretation techniques. The concrete and abstract semantics we propose are compositional, thus allowing us to reduce the complexity of data flow analyses. We show that our method is sound and parametric with respect to the abstract domain. Thus, different analyses can be performed by instantiating the framework. We illustrate how it is possible to reuse abstract domains previously defined for logic programming to perform, for instance, a groundness analysis for tcc programs. We show the applicability of this analysis in the context of reactive systems. Furthermore, we make also use of the abstract semantics to exhibit a secrecy flaw in a security protocol. We also show how it is possible to make an analysis which may show that tcc programs are suspension free. This can be useful for several purposes, such as for optimizing compilation or for debugging.

show abstract

“…Like the large majority of similar tools before it [18,20,21,[23][24][25], Expi2Java targets the Java programming language. This has many pragmatic advantages for building a usable and secure tool: from type and memory safety, an extensive standard library and the cryptographic service provider architecture, to the ease of integrating the generated code into existing applications.…”

Section: Lessons Learnedmentioning

confidence: 99%

On the Development and Formalization of an Extensible Code Generator for Real Life Security Protocols

Backes

Busenius

Hriţcu

2012

Lecture Notes in Computer Science

View full text Add to dashboard Cite

This paper introduces Expi2Java, a new code generator for cryptographic protocols that translates models written in an extensible variant of the Spi calculus into executable code in a substantial fragment of Java, featuring concurrency, synchronization between threads, exception handling and a sophisticated type system with generics and wildcards. Our code generator is highly extensible and customizable, which allows it to generate interoperable implementations of complex real life protocols from detailed verified specifications. As a case study, we have generated an interoperable implementation of TLS v1.0 client and server from a protocol model verified with ProVerif. Furthermore, we have formalized the translation algorithm of Expi2Java using the Coq proof assistant, and proved that the generated programs are well-typed if the original models are well-typed. This constitutes an important step towards the first machine-checked correctness proof of a code generator for cryptographic protocols.

show abstract

Athena: a novel approach to efficient automatic security protocol analysis1

Cited by 145 publications

References 26 publications

OFMC: A symbolic model checker for security protocols

OFMC: A symbolic model checker for security protocols

Abstract interpretation of temporal concurrent constraint programs

On the Development and Formalization of an Extensible Code Generator for Real Life Security Protocols

Contact Info

Product

Resources

About