A Computationally Sound Mechanized Prover for Security Protocols

Author

Blanchet, Bruno

Author_Institution

Dept. d´´lnformatique, CNRS, Paris

Volume

5

Issue

4

fYear

2008

Firstpage

193

Lastpage

207

Abstract

We present a new mechanized prover for secrecy properties of security protocols. In contrast to most previous provers, our tool does not rely on the Dolev-Yao model, but on the computational model. It produces proofs presented as sequences of games; these games are formalized in a probabilistic polynomial-time process calculus. Our tool provides a generic method for specifying security properties of the cryptographic primitives, which can handle shared-key and public-key encryption, signatures, message authentication codes, and hash functions. Our tool produces proofs valid for a number of sessions polynomial in the security parameter, in the presence of an active adversary. We have implemented our tool and tested it on a number of examples of protocols from the literature.

Keywords

computational complexity; cryptographic protocols; digital signatures; formal specification; formal verification; game theory; probabilistic logic; process algebra; public key cryptography; sequences; theorem proving; cryptography; digital signature; formal specification; game sequence; hash function; mechanized prover; message authentication code; probabilistic polynomial-time process calculus; public-key encryption; security protocol; shared-key encryption; Calculus; Computational modeling; Cryptography; Mechanical factors; Message authentication; Polynomials; Protocols; Public key; Security; Testing; C.2.2.c Protocol verification; D.2.4.d Formal methods; F.3.1.d Mechanical verification;

fLanguage

English

Journal_Title

Dependable and Secure Computing, IEEE Transactions on

Publisher

ieee

ISSN

1545-5971

Type

jour

DOI

10.1109/TDSC.2007.1005

Filename

4358700