Applying Formal Methods to the Analysis of a Key Management Protocol

Applying Formal Methods to the Analysis of a Key Management Protocol (1992)

Cached

Download Links

Other Repositories/Bibliography

DBLP

by Catherine Meadows

Venue:	Journal of Computer Security
Citations:	80 - 11 self

BibTeX

@ARTICLE{Meadows92applyingformal,
    author = {Catherine Meadows},
    title = {Applying Formal Methods to the Analysis of a Key Management Protocol},
    journal = {Journal of Computer Security},
    year = {1992},
    volume = {1}
}

Years of Citing Articles

Bookmark

OpenURL

Abstract

In this paper we develop methods for analyzing key management and authentication protocols using techniques developed for the solutions of equations in a term rewriting system. In particular, we describe a model of a class of protocols and possible attacks on those protocols as term rewriting systems, and we also describe a software tool based on a narrowing algorithm that can be used in the analysis of such protocols. We formally model a protocol and describe the results of using these techniques to analyze security properties. We show how a security flaw was found, and we also describe the verification of a corrected scheme using these techniques. 1 Introduction It is difficult to be certain whether or not a cryptographic protocol satisfies its requirements. In a number of cases subtle security flaws have been found in protocols some time after they were published. These flaws were independent of the strengths or weakness of the cryptographic algorithms used. Examples include the N...

Citations

1040	R.: A logic for authentication - Burrows, Abadi, et al. - 1989
872	A.C.-C.: On the security of public key protocols - Dolev, Yao - 1983
783	Using encryption for authentication in large networks of computers - Needham, Schroeder - 1978
448	Simple Word Problems in Universal Algebra - Knuth, Bendix - 1970
221	Timestamps in key distribution protocols - Denning, Sacco - 1981
176	Reasoning about belief in cryptographic protocols - Gong, Needham, et al. - 1990
103	The interrogator: Protocol security analysis - Millen, Clark, et al. - 1987
91	Equations and rewrite rules: A survey - Huet, Oppen - 1980
69	Automated theorem-proving for theories with simplifiers, commutativity - Slagle - 1974
48	A Logic of Communication in Hostile Environment - Bieber - 1990
46	Protocol failures in cryptosystems - Moore - 1988
46	The use of logic in the analysis of cryptographic protocols - Syverson - 1991
42	Recommendation X.509: The Directory—Authentication Framework - CCITT - 1988
29	A key distribution protocol using event markers - Bauer, Berson, et al. - 1983
26	An Axiomatic Basis of Trust in Distributed Systems - Rangan - 1988
20	Using narrowing in the analysis of key management protocols - Meadows - 1989
20	Formal semantics for logics of cryptographic protocols - Syverson - 1990
18	NARROWER: A new algorithm for unification and its applications to logic programming - Réty, Kirchner, et al. - 1985
17	Using Formal Methods to Analyze Encryption Protocols - Kemmerer - 1989
17	A Logic of Knowledge and Belief for Reasoning about Computer Security - Moser - 1989
15	Xow to Selectively Broadcast a Secret - Simmons - 1985
12	Secure Communication in Internet Environments: A Hierarchical Key Management Scheme for End-To-End Encryption - Lu, Sundareshan - 1989
10	A system for the specification and verification of key management protocols - Meadows - 1991
9	Unification in combinations of collapse-free regular theories - Yelick - 1987
7	On the Security of Ping-Pong Protocols when Implemented using the - Even, Goldreich, et al. - 1986
6	Formal Verification of a Secure Network With End-to-end Encryption - Britton - 1984
6	A software protection scheme - Purdy, Simmons, et al. - 1982
5	A Key Management Scheme for End-to-End Encryption and a Formal Veri cation of Its Security - Kasami, Yamamura, et al. - 1982
4	A system for the speci cation and veri cation of key management protocols - Meadows - 1991
4	Formal Speci cation of a Secure Distributed System - Varadharajan - 1989
3	Use of expert systems in the analysis of key management systems - Longley, Rigby - 1989
3	Formal veri cation of a secure network with end-to-end encryption - Britton - 1984
3	Narrower: a new algorithm for uni cation and its application to logic programming - Rety, Kirchner, et al. - 1985
2	A Critique of the Burrows - Nesset - 1990
2	Formal specification of a secure distributed system - Varadharajan, Black - 1989
1	A key managementscheme for end-to-end encryption and a formal veri cation of its security - Kasami, Yamamura, et al. - 1982
1	Secure communicationininternet environments: A hierarchical key managementscheme for end-to-end encryption - Lu, Sundareshan - 1989
1	Uni cation in combinations of collapse-free regular theories - Yelick - 1987