Modeling and Analysis of Security Protocols Using Role Based Specifications and Petri Nets

Bouroulet, Roland; Devillers, Raymond; Klaudel, Hanna; Pelz, Elisabeth; Pommereau, Franck

doi:10.1007/978-3-540-68746-7_9

Cited by 9 publications

(5 citation statements)

References 29 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Many model checking methods [6][7][8][9][10][11][12][13][14][15][16] have been developed and applied to analyze cryptographic protocols. All of them except for NRL [15] and Proverif [16] can analyze only one attack trace of a found attack.…”

Section: Model Checking For Cryptographic Protocolsmentioning

confidence: 99%

“…In [11,12], Murphi which is a general model checker has also been applied to cryptographic protocols, and it discovered new attacks in some protocols. In [13][14], Petri nets-based model checking methods are employed to analyze cryptographic protocols, and they can detect known attacks only. All of the model checking methods discussed so far can analyze only one attack trace of a found attack.…”

Section: Model Checking For Cryptographic Protocolsmentioning

confidence: 99%

See 1 more Smart Citation

On-the-Fly Trace Generation and Textual Trace Analysis and Their Applications to the Analysis of Cryptographic Protocols

Permpoontanalarp

2010

Formal Techniques for Distributed Systems

View full text Add to dashboard Cite

Section: Model Checking For Cryptographic Protocolsmentioning

confidence: 99%

Section: Model Checking For Cryptographic Protocolsmentioning

confidence: 99%

On-the-Fly Trace Generation and Textual Trace Analysis and Their Applications to the Analysis of Cryptographic Protocols

Permpoontanalarp

2010

Formal Techniques for Distributed Systems

View full text Add to dashboard Cite

“…Bouroulet et al [10] developed a specification language and verification for security protocols. A security protocol and attackers are specified by a language based on process algebra.…”

Section: Existing Petri Nets Methods For Cryptographic Protocolsmentioning

confidence: 99%

“…Most Petri nets-based methods [38,26,1,17,10,27] that have been developed to analyze cryptographic protocols provide the analysis of one attack trace only. But, there is one Petri-nets-based method [25] which offers the analysis of multiple attack traces, but it is inefficient.…”

Section: Introductionmentioning

confidence: 99%

On-the-fly Trace Generation Approach to the Security Analysis of Cryptographic Protocols: Coloured Petri Nets-based Method

Permpoontanalarp

Sornkhom

2014

Fundamenta Informaticae

View full text Add to dashboard Cite

Most Petri nets-based methods that have been developed to analyze cryptographic protocols provide the analysis of one attack trace only. Only a few of them offer the analysis of multiple attack traces, but they are rather inefficient. Analogously, the limitation of the analysis of one attack trace occurs in most model checking methods for cryptographic protocols. In this paper, we propose a very simple but practical Coloured Petri nets-based model checking method for the analysis of cryptographic protocols, which overcomes these limitations. Our method offers an efficient analysis of multiple attack traces. We apply our method to two case studies which are TMN authenticated key exchanged protocol and Micali's contract signing protocol. Surprisingly, our simple method is very efficient when the numbers of attack traces and states are large. Also, we find many new attacks in those protocols.

show abstract

“…Similar works include the specification and analysis of simpler security protocols using a Petri net semantics of the Security Protocol Language (SPL [4]): [3,2]. SPL is not suitable to model SPREADS' protocol because it lacks features that turned out to be crucial for our modelling: in particular, the ability to model loops and choices in conjunction with the annotation of the model with complex data types and associated functions.…”

Section: Related Workmentioning

confidence: 99%

Modelling, verification, and formal analysis of security properties in a P2P system

Sanjabi¹,

Pommereau²

2010

2010 International Symposium on Collaborative Technologies and Systems

Self Cite

View full text Add to dashboard Cite

We present a security analysis of the SPREADS 1 system, a distributed storage service based on a centralized peer-topeer architecture. We formally modelled the salient behavior of the actual system using ABCD, a high level specification language with a coloured Petri net semantics, which allowed the execution states of the system to be verified. We verified the behavior of the system in the presence of an external Dolev-Yao attacker, unearthing some replay attacks in the original system. Furthermore, since the implementation is also a formal model, we have been able to show that any execution of the model satisfies certain desirable security properties once these flaws are repaired.

show abstract

Modeling and Analysis of Security Protocols Using Role Based Specifications and Petri Nets

Cited by 9 publications

References 29 publications

On-the-Fly Trace Generation and Textual Trace Analysis and Their Applications to the Analysis of Cryptographic Protocols

On-the-Fly Trace Generation and Textual Trace Analysis and Their Applications to the Analysis of Cryptographic Protocols

On-the-fly Trace Generation Approach to the Security Analysis of Cryptographic Protocols: Coloured Petri Nets-based Method

Modelling, verification, and formal analysis of security properties in a P2P system

Contact Info

Product

Resources

About