Static validation of security protocols

Bodei, Chiara; Buchholtz, Mikael; Degano, Pierpaolo; Nielson, Flemming; Nielson, Hanne Riis

doi:10.3233/jcs-2005-13302

Cited by 87 publications

(80 citation statements)

References 79 publications

(99 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…We refer to [2] [4] for a detailed description of the semantics. Notice that a substitution P[n 1 → n 2 ] substitutes all the free occurrences of n 1 in P for n 2 .…”

Section: Examplementioning

confidence: 99%

“…LYSA [2] is a process calculus in the π-calculus tradition that models security protocols on a global network. It incorporates pattern matching into the language constructs where values can become bound to variables.…”

Section: Lysamentioning

confidence: 99%

“…We follow a different approach, the same as M. Buchholtz [5] and H. Gao [8], who show how some security properties can be analysed using the LYSA [2] process calculus with annotations and a Control Flow Analysis (CFA) to detect flaws in the protocols. The main idea is to extend LYSA with specific annotations, i.e.…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Non-repudiation Analysis with LySa

Brusò

Cortesi

2009

Emerging Challenges for Security, Privacy and Trust

View full text Add to dashboard Cite

Abstract. This work introduces a formal analysis of the non-repudiation property for security protocols. Protocols are modelled in the process calculus LYSA, using an extended syntax with annotations. Non-repudiation is verified using a Control Flow Analysis, following the same approach introduced by M. Buchholtz and H. Gao for authentication and freshness analyses.The result is an analysis that can statically check the protocols to predict if they are secure during their execution and which can be fully automated.

show abstract

“…We refer to [2] [4] for a detailed description of the semantics. Notice that a substitution P[n 1 → n 2 ] substitutes all the free occurrences of n 1 in P for n 2 .…”

Section: Examplementioning

confidence: 99%

Section: Lysamentioning

confidence: 99%

See 1 more Smart Citation

Non-repudiation Analysis with LySa

Brusò

Cortesi

2009

Emerging Challenges for Security, Privacy and Trust

View full text Add to dashboard Cite

show abstract

“…[6,7]), but it is an interesting case study, because it proves troublesome for many analyses. In particular, independent attribute analyses, such as [8], will yield false positives for Yahalom, in the presence of several principals.…”

Section: Worked Examplementioning

confidence: 99%

Iterative Specialisation of Horn Clauses

Nielsen

Nielson

Programming Languages and Systems

Self Cite

View full text Add to dashboard Cite

Abstract. We present a generic algorithm for solving Horn clauses through iterative specialisation. The algorithm is generic in the sense that it can be instantiated with any decidable fragment of Horn clauses, resulting in a solution scheme for general Horn clauses that guarantees soundness and termination, and furthermore, it presents sufficient criteria for completeness. We then demonstrate the use of the framework, by creating an instance of it, based on the decidable class H1, capable of solving a non-trivial protocol analysis problem based on the Yahalom protocol.

show abstract

“…We use a polyadic π-calculus, pπ, extended with pattern matching in input prefixes (as in [2]) in order to write down the accident service formally (Table 1). For analysis purposes, action prefixes are annotated with labels.…”

Section: The Accident Servicementioning

confidence: 99%

Relational Analysis for Delivery of Services

Nielson

Bauer

et al.

Trustworthy Global Computing

Self Cite

View full text Add to dashboard Cite

Abstract. Many techniques exist for statically computing properties of the evolution of processes expressed in process algebras. Static analysis has shown how to obtain useful results that can both be checked and computed in polynomial time. In this paper we develop a static analysis in relational form which substantially improves the precision of the results obtained while being able to deal with the full generality of the syntax of processes. The analysis reveals a feasible complexity for practical examples and gives rise to a fast prototype. We use this prototype to automatically prove the correct delivery of messages for the implementation of an accident service, which is based on multiplexed communication, a crucial feature of global computing applications.

show abstract

Static validation of security protocols

Cited by 87 publications

References 79 publications

Non-repudiation Analysis with LySa

Non-repudiation Analysis with LySa

Iterative Specialisation of Horn Clauses

Relational Analysis for Delivery of Services

Contact Info

Product

Resources

About