Using State Space Exploration and a Natural Deduction Style Message Derivation Engine to Verify Security Protocols

Clarke, Edmund M.; Jha, Somesh; Marrero, Will

doi:10.1007/978-0-387-35358-6_10

Cited by 79 publications

(74 citation statements)

References 23 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…We believe that being equipped with the goal-directed searching procedure, based on our previous developments [5], our technique opens broad prospects for the application of the method even in wider areas of AI and computer science, most notably, in agent engineering [13]. One of the interesting ideas of such applications of natural deduction can be found, for example, in [7]. Here the authors define a framework to reason about security protocols, and showed how the classical natural deduction system can be used as an engine for constructing valid messages.…”

Section: Discussionmentioning

confidence: 99%

Natural Deduction Calculus for Computation Tree Logic

Bolotov

Grigoriev

Shangin

2006

IEEE John Vincent Atanasoff 2006 International Symposium on Modern Computing (JVA'06)

View full text Add to dashboard Cite

show abstract

Section: Discussionmentioning

confidence: 99%

Natural Deduction Calculus for Computation Tree Logic

Bolotov

Grigoriev

Shangin

2006

IEEE John Vincent Atanasoff 2006 International Symposium on Modern Computing (JVA'06)

View full text Add to dashboard Cite

show abstract

“…In the area of tool-supported protocol verification fully-automated verification using model-checking is dominating (see e.g. [Low96], [MCJ97], [CJM98], [Zar98], [BMV03], [SBP01]), but these are usually limited to standard properties like authenticity and secrecy (but see T. Ramananandro's work with Alloy in this issue). The security properties of the Mondex case study are application-specific and quite different from those standard properties.…”

Section: Related Workmentioning

confidence: 99%

Verification of Mondex electronic purses with KIV: from transactions to a security protocol

et al. 2008

View full text Add to dashboard Cite

Abstract. The Mondex case study about the specification and refinement of an electronic purse as defined in [SCW00] has recently been proposed as a challenge for formal system-supported verification. In this paper we report on two results.First, on the successful verification of the full case study using the KIV specification and verification system. We demonstrate that even though the hand-made proofs were elaborated to an enormous level of detail we still could find small errors in the underlying data refinement theory as well as the formal proofs of the case study.Second, the original Mondex case study verifies functional correctness assuming a suitable security protocol. We extend the case study here with a refinement to a suitable security protocol that uses symmetric cryptography to achieve the necessary properties of the security-relevant messages. The definition is based on a generic framework for defining such protocols based on abstract state machines (ASMs). We prove the refinement using a forward simulation.

show abstract

“…Previous automatic tools for security protocol analysis include general-purpose model checkers such as FDR [18,15] and Mur [26], and special-purpose model checkers, for example, the Interrogator [25] and Brutus [10]. These tools start with an initial state of a protocol execution and then exhaustively search through all possible sequences of actions of both legitimate principals and a modeled attacker to see whether an attack could happen.…”

Section: Related Workmentioning

confidence: 99%

Athena: a novel approach to efficient automatic security protocol analysis1

Song

Berezin

Perrig

2001

JCS

145

106

View full text Add to dashboard Cite

We propose a new efficient automatic verification technique, Athena, for security protocol analysis. It uses a new efficient representation -our extension to the Strand Space Model, and utilizes techniques from both model checking and theorem proving approaches. Athena is fully automatic and is able to prove the correctness of many security protocols with arbitrary number of concurrent runs. The run time for a typical protocol from the literature, like the Needham-Schroeder protocol, is often a fraction of a second.Athena exploits several different techniques that enable it to analyze infinite sets of protocol runs and achieve such efficiency. Our extended Strand Space Model is a natural and efficient representation for the problem domain. The security properties are specified in a simple logic which permits both efficient proof search algorithms and has enough expressive power to specify interesting properties. The automatic proof search procedure borrows some efficient techniques from both model checking and theorem proving. We believe that it is the right combination of the new compact representation and all the techniques that actually makes Athena successful in fast and automatic verification of security protocols.

show abstract

Using State Space Exploration and a Natural Deduction Style Message Derivation Engine to Verify Security Protocols

Cited by 79 publications

References 23 publications

Natural Deduction Calculus for Computation Tree Logic

Natural Deduction Calculus for Computation Tree Logic

Verification of Mondex electronic purses with KIV: from transactions to a security protocol

Athena: a novel approach to efficient automatic security protocol analysis1

Contact Info

Product

Resources

About