DocumentCode
166957
Title
Verification of DNSsec Delegation Signatures
Author
Kammuller, Florian
Author_Institution
Middlesex Univ. London, London, UK
fYear
2014
fDate
4-7 May 2014
Firstpage
298
Lastpage
392
Abstract
In this paper, we present a formal model for the verification of the DNSsec Protocol in the interactive theorem prover Isabelle/HOL. Relying on the inductive approach to security protocol verification, this formal analysis provides a more expressive representation than the widely accepted model checking analysis. Our mechanized model allows to represent the protocol, all its possible traces and the attacker and his knowledge. The fine grained model allows to show origin authentication, and replay attack prevention. Most prominently, we succeed in expressing Delegation Signatures and proving their authenticity formally.
Keywords
Internet; cryptographic protocols; formal verification; inference mechanisms; theorem proving; DNSsec delegation signatures; DNSsec protocol; Isabelle-HOL; inductive approach; interactive theorem prover; model checking analysis; security protocol verification; Authentication; IP networks; Protocols; Public key; Servers; DNSsec; Isabelle/HOL; authentication; chain of trust; delegation signatures;
fLanguage
English
Publisher
ieee
Conference_Titel
Telecommunications (ICT), 2014 21st International Conference on
Conference_Location
Lisbon
Print_ISBN
978-1-4799-5139-0
Type
conf
DOI
10.1109/ICT.2014.6845127
Filename
6845127
Link To Document