• DocumentCode
    154030
  • Title

    Modeling Diffie-Hellman Derivability for Automated Analysis

  • Author

    Liskov, Moses ; Thayer, F. Javier

  • fYear
    2014
  • fDate
    19-22 July 2014
  • Firstpage
    232
  • Lastpage
    243
  • Abstract
    Automated analysis of protocols involving Diffie-Hellman key exchange is challenging, in part because of the undecidability of the unification problem in relevant theories. In this paper, we justify the use of a more restricted theory that includes multiplication of exponents but not addition, providing unitary and efficient unification. To justify this theory, we compare it to a computational model of non-uniform circuit complexity through several incremental steps. First, we give a model closely analogous to the computational model, in which derivability is modeled by closure under simple algebraic transformations. This model retains many of the complex features of the computational model, including defining success based on asymptotic probability for a non-uniform family of strategies. We describe an intermediate model based on formal polynomial manipulations, in which success is exact and there is no longer a parametrized notion of the strategy. Despite the many differences in form, we are able to prove an equivalence between the asymptotic and intermediate models by showing that a sufficiently successful asymptotic strategy implies the existence of a perfect strategy. Finally, we describe a symbolic model in which addition of exponents is not modeled, and prove that (for expressible problems), the symbolic model is equivalent to the intermediate model.
  • Keywords
    algebra; circuit complexity; cryptographic protocols; Diffie-Hellman derivability modeling; Diffie-Hellman key exchange; algebraic transformations; asymptotic models; asymptotic probability; asymptotic strategy; automated analysis; computational model; exponents multiplication; formal polynomial manipulations; intermediate models; nonuniform circuit complexity; nonuniform family of strategies; protocols; symbolic model; undecidability; unification problem; Analytical models; Computational modeling; DH-HEMTs; Integrated circuit modeling; Polynomials; Protocols; Security; Diffie-Hellman; conservative extension; non-standard analysis; protocol analysis;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Computer Security Foundations Symposium (CSF), 2014 IEEE 27th
  • Conference_Location
    Vienna
  • Type

    conf

  • DOI
    10.1109/CSF.2014.24
  • Filename
    6957114