Reducing Equational Theories for the Decision of Static Equivalence

Authors:
Steve Kremer;Antoine Mercier;Ralf Treinen
Affiliations:
LSV, ENS Cachan, CNRS, INRIA, Cachan, France;LSV, ENS Cachan, CNRS, INRIA, Cachan, France;PPS, Université Paris Diderot - Paris 7, Paris, France
Venue:
Journal of Automated Reasoning
Year:
2012

Citing 15
Cited 1

Mobile values, new names, and secure communication

POPL '01 Proceedings of the 28th ACM SIGPLAN-SIGACT symposium on Principles of programming languages
Identity-Based Encryption from the Weil Pairing

CRYPTO '01 Proceedings of the 21st Annual International Cryptology Conference on Advances in Cryptology
A One Round Protocol for Tripartite Diffie-Hellman

ANTS-IV Proceedings of the 4th International Symposium on Algorithmic Number Theory
Deciding security of protocols against off-line guessing attacks

Proceedings of the 12th ACM conference on Computer and communications security
Deciding knowledge in security protocols under equational theories

Theoretical Computer Science - Automated reasoning for security protocol analysis
A survey of algebraic properties used in cryptographic protocols

Journal of Computer Security
Hierarchical combination of intruder theories

Information and Computation
Combining Algorithms for Deciding Knowledge in Security Protocols

FroCoS '07 Proceedings of the 6th international symposium on Frontiers of Combining Systems
Computationally sound implementations of equational theories against passive adversaries

Information and Computation
YAPA: A Generic Tool for Computing Intruder Knowledge

RTA '09 Proceedings of the 20th International Conference on Rewriting Techniques and Applications
Computing Knowledge in Security Protocols under Convergent Equational Theories

CADE-22 Proceedings of the 22nd International Conference on Automated Deduction
Analysing Password Protocol Security Against Off-line Dictionary Attacks

Electronic Notes in Theoretical Computer Science (ENTCS)
Computationally sound analysis of protocols using bilinear pairings

Journal of Computer Security - 7th International Workshop on Issues in the Theory of Security (WITS'07)
Reducing equational theories for the decision of static equivalence

ASIAN'09 Proceedings of the 13th Asian conference on Advances in Computer Science: information Security and Privacy
Adaptive soundness of static equivalence

ESORICS'07 Proceedings of the 12th European conference on Research in Computer Security

Reduction of equational theories for verification of trace equivalence: re-encryption, associativity and commutativity

POST'12 Proceedings of the First international conference on Principles of Security and Trust

Quantified Score

Hi-index	0.00

Visualization

Abstract

Static equivalence is a well established notion of indistinguishability of sequences of terms which is useful in the symbolic analysis of cryptographic protocols. Static equivalence modulo equational theories allows for a more accurate representation of cryptographic primitives by modelling properties of operators by equational axioms. We develop a method that allows us in some cases to simplify the task of deciding static equivalence in a multi-sorted setting, by removing a symbol from the term signature and reducing the problem to several simpler equational theories. We illustrate our technique at hand of bilinear pairings.