A logic of authentication

A logic of authentication (1990)

Cached

Download Links

Other Repositories/Bibliography

DBLP

by Michael Burrows , Martín Abadi , Roger Needham

Venue:	ACM TRANSACTIONS ON COMPUTER SYSTEMS
Citations:	1040 - 26 self

BibTeX

@ARTICLE{Burrows90alogic,
    author = {Michael Burrows and Martín Abadi and Roger Needham},
    title = {A logic of authentication},
    journal = {ACM TRANSACTIONS ON COMPUTER SYSTEMS},
    year = {1990},
    volume = {8},
    pages = {18--36}
}

Years of Citing Articles

Bookmark

OpenURL

Abstract

Questions of belief are essential in analyzing protocols for the authentication of principals in distributed computing systems. In this paper we motivate, set out, and exemplify a logic specifically designed for this analysis; we show how various protocols differ subtly with respect to the required initial assumptions of the participants and their final beliefs. Our formalism has enabled us to isolate and express these differences with a precision that was not previously possible. It has drawn attention to features of protocols of which we and their authors were previously unaware, and allowed us to suggest improvements to the protocols. The reasoning about some protocols has been mechanically verified. This paper starts with an informal account of the problem, goes on to explain the formalism to be used, and gives examples of its application to protocols from the literature, both with shared-key cryptography and with public-key cryptography. Some of the examples are chosen because of their practical importance, while others serve to illustrate subtle points of the logic and to explain how we use it. We discuss extensions of the logic motivated by actual practice -- for example, in order to account for the use of hash functions in signatures. The final sections contain a formal semantics of the logic and some conclusions.

Citations

2506	A method for obtaining digital signatures and public-key cryptosystems - Rivest, Shamir, et al.
1219	An axiomatic basis for computer programming - HOARE - 1969
872	On the security of public key protocols - Dolev, Yao - 1983
783	Using encryption for authentication in large networks of computers - Needham, Schroeder - 1978
699	A.D.: A calculus for cryptographic protocols: The Spi calculus - Abadi, Gordon - 1997
440	Knowledge and common knowledge in a distributed environment - Halpern, Moses - 1990
332	Prudent engineering practice for cryptographic protocols - Abadi, Needham - 1990
267	P.: Reconciling two views of cryptography (the computational soundness of formal encryption - Abadi, Rogaway - 2002
221	Timestamps in key distribution protocols - Denning, Sacco - 1981
131	Security mechanisms in high-level network protocols - VOYDOCK, KENT - 1983
112	E cient and Timely Mutual Authentication - Otway, Rees - 1987
103	The interrogator: Protocol security analysis - Millen, Clark, et al. - 1987
89	Integrating security in a large distributed system - Satyanarayanan - 1989
82	Kerberos authentication and authorization system - Miller, Neuman, et al. - 1988
51	Cryptographic protocols - DeMillo, Lynch, et al. - 1982
42	Recommendation X.509: The Directory—Authentication Framework - CCITT - 1988
29	A key distribution protocol using event markers - Bauer, Berson, et al. - 1983
22	A knowledge-based analysis of zero knowledge - Halpern, Moses, et al. - 1988
17	A Practical Study in Belief and Action - Burrows, Abadi, et al. - 1988
2	States of Knowledge in Cryptographic Protocols. Unpublished manuscript - Merritt, Wolper - 1985
1	A logic of authentication. Rep - BURROWS, ABADI, et al. - 1989