• DocumentCode
    2867611
  • Title

    Formal Analysis of Protocols Based on TPM State Registers

  • Author

    Delaune, Stéphanie ; Kremer, Steve ; Ryan, Mark D. ; Steel, Graham

  • Author_Institution
    ENS Cachan, INRIA Saclay lle-de-France, Gif-sur-Yvette, France
  • fYear
    2011
  • fDate
    27-29 June 2011
  • Firstpage
    66
  • Lastpage
    80
  • Abstract
    We present a Horn-clause-based framework for analysing security protocols that use emph{platform configuration registers} (PCRs), which are registers for maintaining state inside the Trusted Platform Module (TPM). In our model, the PCR state space is unbounded, and our experience shows that a na"i ve analysis using ProVerif or SPASS does not terminate. To address this, we extract a set of instances of the Horn clauses of our model, for which ProVerif does terminate on our examples. We prove the soundness of this extraction process: no attacks are lost, that is, any query derivable in the more general set of clauses is also derivable from the extracted instances. The effectiveness of our framework is demonstrated in two case studies: a simplified version of Microsoft Bit locker, and a digital envelope protocol that allows a user to choose whether to perform a decryption, or to verifiably renounce the ability to perform the decryption.
  • Keywords
    cryptographic protocols; formal verification; shift registers; Horn-clause-based framework; Microsoft Bitlocker; ProVerif; SPASS; TPM state registers; decryption; digital envelope protocol; formal analysis; platform configuration registers; security protocols; trusted platform module; Analytical models; Encryption; Protocols; Public key; Registers; TPM; formal verification;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Computer Security Foundations Symposium (CSF), 2011 IEEE 24th
  • Conference_Location
    Cernay-la-Ville
  • ISSN
    1940-1434
  • Print_ISBN
    978-1-61284-644-6
  • Type

    conf

  • DOI
    10.1109/CSF.2011.12
  • Filename
    5992155