From One Session to Many: Dynamic Tags for Security Protocols

Arapinis, Myrto; Delaune, Stéphanie; Kremer, Steve

doi:10.1007/978-3-540-89439-1_9

Cited by 18 publications

(13 citation statements)

References 22 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…For instance [43] assumes that any two distinct terms headed with encryption, that occur in the protocol, are not unifiable. A similar result is shown in [6] for another class of protocols. However, in both cases, only secrecy is considered and the simple intruder deduction system is the one of example 1 (for symmetric and asymmetric encryption).…”

Section: Related Worksupporting

confidence: 84%

Challenges in the Automated Verification of Security Protocols

Comon-Lundh

Automated Reasoning

View full text Add to dashboard Cite

show abstract

Section: Related Worksupporting

confidence: 84%

Challenges in the Automated Verification of Security Protocols

Comon-Lundh

Automated Reasoning

View full text Add to dashboard Cite

show abstract

“…First, we have message terms as we have them in AnB, with the same convention that constants start with a lower-case letter and variables with an upper-case letter. 4 On top of that, we have facts, which are built using distinguished function symbols and have message terms as arguments. For instance, iknows(m) denotes the fact that the intruder knows the message m, and state R (m 1 , .…”

Section: Ifmentioning

confidence: 99%

“…[1,2,4,5,6,13,15,18,20,21,24,25,27,29,37,43,49,51,53,59,61,62,63]. The Open Source Fixed-point Model Checker OFMC, the successor of the On-theFly Model-Checker [12,54,58], is a freely available 1 tool that integrates the most successful techniques of this field.…”

Section: Introductionmentioning

confidence: 99%

The Open-Source Fixed-Point Model Checker for Symbolic Analysis of Security Protocols

Mödersheim

Viganò

2009

Foundations of Security Analysis and Design V

View full text Add to dashboard Cite

Abstract. We introduce the Open-source Fixed-point Model Checker OFMC for symbolic security protocol analysis, which extends the Onthe-fly Model Checker (the previous OFMC). The native input language of OFMC is the AVISPA Intermediate Format IF. OFMC also supports AnB, a new Alice-and-Bob-style language that extends previous similar languages with support for algebraic properties of cryptographic operators and with a simple notation for different kinds of channels that can be used both as assumptions and as protocol goals. AnB specifications are automatically translated to IF.OFMC performs both protocol falsification and bounded session verification by exploring, in a demand-driven way, the transition system resulting from an IF specification. OFMC's effectiveness is due to the integration of a number of symbolic, constraint-based techniques, which are correct and terminating. The two major techniques are the lazy intruder, which is a symbolic representation of the intruder, and constraint differentiation, which is a general search-reduction technique that integrates the lazy intruder with ideas from partial-order reduction. Moreover, OFMC allows one to analyze security protocols with respect to an algebraic theory of the employed cryptographic operators, which can be specified as part of the input. We also sketch the ongoing integration of fixed-point-based techniques for protocol verification for an unbounded number of sessions.

show abstract

“…Some researchers have adopted a systematic approach designed to capture specific security requirements by using privacy models (e.g., [Paise and Vaudenay 2008;Juels and Weis 2009;Michahelles et al 2007;Avoine et al 2007]; computational models (e.g., [Vaudenay 2007]); or symbolic models (e.g., [Arapinis et al 2008]). In this article we propose to use a formal specifications-based framework that captures these models and addresses composability issues.…”

Section: Introductionmentioning

confidence: 99%

Lightweight RFID authentication with forward and backward security

Burmester

Munilla

2011

ACM Trans. Inf. Syst. Secur.

View full text Add to dashboard Cite

We propose a lightweight RFID authentication protocol that supports forward and backward security. The only cryptographic mechanism that this protocol uses is a pseudorandom number generator (PRNG) that is shared with the backend Server. Authentication is achieved by exchanging a few numbers (3 or 5) drawn from the PRNG. The lookup time is constant, and the protocol can be easily adapted to prevent online man-in-the-middle relay attacks. Security is proven in the UC security framework. ACM Reference Format:Burmester, M. and Munilla, J. 2011. Lightweight RFID authentication with forward and backward security.

show abstract

From One Session to Many: Dynamic Tags for Security Protocols

Cited by 18 publications

References 22 publications

Challenges in the Automated Verification of Security Protocols

Challenges in the Automated Verification of Security Protocols

The Open-Source Fixed-Point Model Checker for Symbolic Analysis of Security Protocols

Lightweight RFID authentication with forward and backward security

Contact Info

Product

Resources

About