Tree automata with one memory set constraints and cryptographic protocols

Authors:
Hubert Comon;Véronique Cortier
Affiliations:
Department of Computer Science, Gates 4B, Stanford University, CA and Laboratoire Spécification et Vérification, CNRS and Ecole Normale Supérieure de Cachan, 61 Avenue du Prési ...;Laboratoire Spécification et Vérification, CNRS and Ecole Normale Supérieure de Cachan, 61 Avenue du Président Wilson, 94235 Cachan cedex, France
Venue:
Theoretical Computer Science - Automata, languages and programming
Year:
2005

Citing 14
Cited 18

Rewrite systems

Handbook of theoretical computer science (vol. B)
Haskell overloading is DEXPTIME-complete

Information Processing Letters
A Model for Secure Protocols and Their Compositions

IEEE Transactions on Software Engineering
A calculus for cryptographic protocols

Information and Computation
Introduction to set constraint-based program analysis

Science of Computer Programming
The inductive approach to verifying cryptographic protocols

Journal of Computer Security
Constraint solving for bounded-process cryptographic protocol analysis

CCS '01 Proceedings of the 8th ACM conference on Computer and Communications Security
Reset Nets Between Decidability and Undecidability

ICALP '98 Proceedings of the 25th International Colloquium on Automata, Languages and Programming
Breaking and Fixing the Needham-Schroeder Public-Key Protocol Using FDR

TACAs '96 Proceedings of the Second International Workshop on Tools and Algorithms for Construction and Analysis of Systems
Equality and Disequality Constraints on Direct Subterms in Tree Automata

STACS '92 Proceedings of the 9th Annual Symposium on Theoretical Aspects of Computer Science
Set constraints with intersection

LICS '97 Proceedings of the 12th Annual IEEE Symposium on Logic in Computer Science
A Meta-Notation for Protocol Analysis

CSFW '99 Proceedings of the 12th IEEE workshop on Computer Security Foundations
Proving Secrecy is Easy Enough

CSFW '01 Proceedings of the 14th IEEE workshop on Computer Security Foundations
Protocol Insecurity with Finite Number of Sessions is NP-Complete

CSFW '01 Proceedings of the 14th IEEE workshop on Computer Security Foundations

A decision procedure for the verification of security protocols with explicit destructors

Proceedings of the 11th ACM conference on Computer and communications security
Note: An undecidability result for AGh

Theoretical Computer Science
Flat and one-variable clauses: Complexity of verifying cryptographic protocols with single blind copying

ACM Transactions on Computational Logic (TOCL)
Challenges in the Automated Verification of Security Protocols

IJCAR '08 Proceedings of the 4th international joint conference on Automated Reasoning
Tree Automata with Global Constraints

DLT '08 Proceedings of the 12th international conference on Developments in Language Theory
Rigid Tree Automata

LATA '09 Proceedings of the 3rd International Conference on Language and Automata Theory and Applications
TAGED Approximations for Temporal Properties Model-Checking

CIAA '09 Proceedings of the 14th International Conference on Implementation and Application of Automata
Approximation-based tree regular model-checking

Nordic Journal of Computing
Tree automata with memory, visibility and structural constraints

FOSSACS'07 Proceedings of the 10th international conference on Foundations of software science and computational structures
Associative-commutative deducibility constraints

STACS'07 Proceedings of the 24th annual conference on Theoretical aspects of computer science
A formal analysis for capturing replay attacks in cryptographic protocols

ASIAN'07 Proceedings of the 12th Asian computing science conference on Advances in computer science: computer and network security
Cryptographic protocol verification using tractable classes of horn clauses

Program analysis and compilation, theory and practice
Rigid tree automata and applications

Information and Computation
Handling algebraic properties in automatic analysis of security protocols

ICTAC'06 Proceedings of the Third international conference on Theoretical Aspects of Computing
Alternation in equational tree automata modulo XOR

FSTTCS'04 Proceedings of the 24th international conference on Foundations of Software Technology and Theoretical Computer Science
Automata-Based verification of programs with tree updates

TACAS'06 Proceedings of the 12th international conference on Tools and Algorithms for the Construction and Analysis of Systems
Security protocol verification: symbolic and computational models

POST'12 Proceedings of the First international conference on Principles of Security and Trust
Satisfiability of a spatial logic with tree variables

CSL'07/EACSL'07 Proceedings of the 21st international conference, and Proceedings of the 16th annuall conference on Computer Science Logic

Quantified Score

Hi-index	0.00

Visualization

Abstract

We introduce a class of tree automata that perform tests on a memory that is updated using function symbol application and projection. The language emptiness problem for this class of tree automata is shown to be in DEXPTIME.We also introduce a class of set constraints with equality tests and prove its decidability by completion techniques and a reduction to tree automata with one memory.Finally, we show how to apply these results to cryptographic protocols. We introduce a class of cryptographic protocols and show the decidability of secrecy for an arbitrary number of agents and an arbitrary number of (concurrent or successive) sessions, provided that only a bounded number of new data is generated. The hypothesis on the protocol (a restricted copying ability) is shown to be necessary: without this hypothesis, we prove that secrecy is undecidable, even for protocols without nonces.