Formal specification and analysis of the group domain of interpretation protocol using NPATRL and the NRL protocol analyzer

Authors:
Catherine Meadows;Paul Syverson;Iliano Cervesato
Affiliations:
Center for High Assurance Computer Systems, Naval Research Laboratory, Washington, DC;Center for High Assurance Computer Systems, Naval Research Laboratory, Washington, DC;Advanced Engineering and Sciences Division, ITT Industries, Inc., 2560 Huntington Avenue, Alexandria, VA
Venue:
Journal of Computer Security - Special issue on ACM conference on computer and communications security, 2001
Year:
2004

Citing 9
Cited 18

Logics of time and computation

Logics of time and computation
Temporal and modal logic

Handbook of theoretical computer science (vol. B)
A Formal Language for Cryptographic Protocol Requirements

Designs, Codes and Cryptography - Special issue dedicated to Gustavus J. Simmons
A cost-based framework for analysis of denial of service in networks

Journal of Computer Security
IPSec: The New Security Standard for the Internet, Intranets, and Virtual Private Networks

IPSec: The New Security Standard for the Internet, Intranets, and Virtual Private Networks
A Formal Specification of Requirements for Payment Transactions in the SET Protocol

FC '98 Proceedings of the Second International Conference on Financial Cryptography
The Glory of the Past

Proceedings of the Conference on Logic of Programs
How to Prevent Type Flaw Attacks on Security Protocols

CSFW '00 Proceedings of the 13th IEEE workshop on Computer Security Foundations
A Logical Language for Specifying Cryptographic Protocol Requirements

SP '93 Proceedings of the 1993 IEEE Symposium on Security and Privacy

Relating cryptography and formal methods: a panel

Proceedings of the 2003 ACM workshop on Formal methods in security engineering
A rewriting-based inference system for the NRL protocol analyzer: grammar generation

Proceedings of the 2005 ACM workshop on Formal methods in security engineering
A rewriting-based inference system for the NRL Protocol analyzer and its meta-logical properties

Theoretical Computer Science - Automated reasoning for security protocol analysis
Cross-layer verification of type flaw attacks on security protocols

ACSC '07 Proceedings of the thirtieth Australasian conference on Computer science - Volume 62
Equational Cryptographic Reasoning in the Maude-NRL Protocol Analyzer

Electronic Notes in Theoretical Computer Science (ENTCS)
One Picture Is Worth a Dozen Connectives: A Fault-Tree Representation of NPATRL Security Requirements

IEEE Transactions on Dependable and Secure Computing
Dynamic types for authentication

Journal of Computer Security - Formal Methods in Security Engineering Workshop (FMSE 04)
The Temporal Logic of Rewriting: A Gentle Introduction

Concurrency, Graphs and Models
Computational soundness for key exchange protocols with symmetric encryption

Proceedings of the 16th ACM conference on Computer and communications security
Tags for Multi-Protocol Authentication

Electronic Notes in Theoretical Computer Science (ENTCS)
An E-unification algorithm for analyzing protocols that use modular exponentiation

RTA'03 Proceedings of the 14th international conference on Rewriting techniques and applications
A formal analysis for capturing replay attacks in cryptographic protocols

ASIAN'07 Proceedings of the 12th Asian computing science conference on Advances in computer science: computer and network security
Sender access and data distribution control for inter-domain multicast groups

Computer Networks: The International Journal of Computer and Telecommunications Networking
Verification of security protocols with lists: from length one to unbounded length

POST'12 Proceedings of the First international conference on Principles of Security and Trust
Provably repairing the ISO/IEC 9798 standard for entity authentication

POST'12 Proceedings of the First international conference on Principles of Security and Trust
Verifying multicast-based security protocols using the inductive method

Proceedings of the 28th Annual ACM Symposium on Applied Computing
Verification of security protocols with lists: From length one to unbounded length

Journal of Computer Security - Security and Trust Principles
Provably repairing the ISO/IEC 9798 standard for entity authentication

Journal of Computer Security - Security and Trust Principles

Quantified Score

Hi-index	0.00

Visualization

Abstract

Although research has been going on in the formal analysis of cryptographic protocols for a number of years, they are only slowly being integrated into the protocol design process. In this paper we describe how we furthered the integration of analysis and design by working closely with the Multicast Security Working Group in the Internet Engineering Task Force on the analysis of a proposed Internet Standard, the Group Domain Of Interpretation (GDOI) Protocol. We describe the challenges that had to be met before the analysis could be successfully completed, and some of the challenges that still remain. Perhaps not surprisingly, some of the most challenging work was in understanding the security requirements for group protocols in general. We give a detailed specification of the requirements for GDOI, describe our formal analysis of the protocol with respect to these requirements, and show how our analysis impacted the development of GDOI.