A logic of authentication

Burrows, Michael T.; Abadi, Martı́n; Needham, Roger M.

doi:10.1098/rspa.1989.0125

Cited by 637 publications

(281 citation statements)

References 5 publications

Supporting

Mentioning

281

Contrasting

Order By: Relevance

“…it exploits information gathered from one protocol execution into another one, greatly enhancing its competence, and, for instance, cheating about identities. Hence, a clear specification of how protocol executions can be interleaved and of the security properties expected after such concurrent runs are necessary, as recognised for instance in [20].…”

Section: Security Protocols and Their Formalisationmentioning

confidence: 99%

“…This calls for verification models that are grounded on solid formal settings. Considerable success has already been achieved in the past years in approaching security protocol analysis and a variety of formal models and reasoning techniques have been developed to specify and verify their properties, (see [4,10,12,13,20,32,36,42,51,53] to cite a few). Many of these approaches have led to the development of automated verification toolkits.…”

Section: Introduction Motivations and Related Workmentioning

confidence: 99%

See 1 more Smart Citation

A symbolic framework for multi-faceted security protocol analysis

Bracciali

Ferrari

Tuosto

2007

Int. J. Inf. Secur.

View full text Add to dashboard Cite

Verification of software systems, and security protocol analysis as a particular case, requires frameworks that are expressive, so as to properly capture the relevant aspects of the system and its properties, formal, so as to be provably correct, and with a computational counterpart, so as to support the (semi-) automated certification of properties. Additionally, security protocols also present hidden assumptions about the context, specific subtleties due to the nature of the problem and sources of complexity that tend to make verification incomplete. We introduce a verification framework that is expressive enough to capture a few relevant aspects of the problem, like symmetric and asymmetric cryptography and multi-session analysis, and to make assumptions explicit, e.g., the hypotheses about the initial sharing of secret keys among honest (and malicious) participants. It features a clear separation between the modeling of the protocol functioning and the properties it is expected to enforce, the former in terms of a calculus, the latter in terms of a logic. This framework is grounded on a formal theory that allows us to prove the correctness of the verification carried out within the fully fledged model. It overcomes incompleteness by performing the analysis at a symbolic level of abstraction, which, moreover, transforms into executable verification tools.

show abstract

Section: Security Protocols and Their Formalisationmentioning

confidence: 99%

Section: Introduction Motivations and Related Workmentioning

confidence: 99%

A symbolic framework for multi-faceted security protocol analysis

Bracciali

Ferrari

Tuosto

2007

Int. J. Inf. Secur.

View full text Add to dashboard Cite

show abstract

“…It seems that many protocols may be subject to the "arity" attack: our methods found that this attack is also possible on the Otway-Rees protocol (see [15] for a detailed description of the protocol and its analysis) and on the Yahalom protocol, as described in [7].…”

Section: Known and New Attacksmentioning

confidence: 99%

“…A seminal paper on logics of authentication is [7]. Work in this area has produced significant results in finding protocol flaws, but also appears to have limitations which will be hard to overcome within the paradigm.…”

Section: Introductionmentioning

confidence: 97%

Analysis of e-commerce protocols: Adapting a traditional technique

Gürgens

López

Peralta

2003

IJIS

View full text Add to dashboard Cite

We present the adaptation of our model for the validation of key distribution and authentication protocols to address some of the specific needs of protocols for electronic commerce. The two models defer in both the threat scenario and in the protocol formalization. We demonstrate the suitability of our adaptation by analyzing a specific version of the Internet Billing Server protocol introduced by Carnegie Mellon University. Our analysis shows that, while the security properties a key distribution or authentication protocol shall provide are well understood, it is often not clear which properties an electronic commerce protocol can or shall provide. We use the automatic theorem proving software "Otter" developed at Argonne National Laboratories for state space exploration.

show abstract

“…Using these methods, many flaws have been found in published protocols [14]. Most of these methods are based on the so-called Dolev-Yao model [18] -models such as special-purpose logics [12] or complexity theoretic and probabilistic models [7] are not discussed here.…”

Section: Introductionmentioning

confidence: 99%

On the decidability of cryptographic protocols with open-ended data structures

Küsters

2005

IJIS

View full text Add to dashboard Cite

Formal analysis of cryptographic protocols has concentrated mainly on protocols with closed-ended data structures, i.e., protocols where the messages exchanged between principals have fixed and finite format. In many protocols, however, the data structures used are open-ended, i.e., messages have an unbounded number of data fields. In this paper, decidability issues for such protocols are studied. We propose a protocol model in which principals are described by transducers, i.e., finite automata with output, and show that in this model security is decidable and PSPACE-hard in presence of the standard Dolev-Yao intruder.

show abstract

A logic of authentication

Cited by 637 publications

References 5 publications

A symbolic framework for multi-faceted security protocol analysis

A symbolic framework for multi-faceted security protocol analysis

Analysis of e-commerce protocols: Adapting a traditional technique

On the decidability of cryptographic protocols with open-ended data structures

Contact Info

Product

Resources

About