• DocumentCode
    1093886
  • Title

    One Picture Is Worth a Dozen Connectives: A Fault-Tree Representation of NPATRL Security Requirements

  • Author

    Cervesato, l.

  • Author_Institution
    Carnegie Mellon Univ., Doha
  • Volume
    4
  • Issue
    3
  • fYear
    2007
  • Firstpage
    216
  • Lastpage
    227
  • Abstract
    In this paper, we show how we can increase the ease of reading and writing security requirements for cryptographic protocols at the Dolev-Yao level of abstraction by developing a visual language based on fault trees. We develop such semantics for a subset of NRL protocol analyzer temporal requirements language (NPATRL), a temporal language used for expressing safety requirements for cryptographic protocols, and show that the subset is sound and complete with respect to the semantics. We also show how the fault trees can be used to improve the presentation of some specifications that we developed in our analysis of the group domain of interpretation (GDOI) protocol. Other examples involve a property of Kerberos 5 and a visual account of the requirements in Lowe´s authentication hierarchy.
  • Keywords
    cryptographic protocols; fault trees; visual languages; Dolev-Yao level; GDOI protocol; NPATRL security requirements; NRL protocol analyzer temporal requirements language; cryptographic protocols; fault-tree representation; group domain of interpretation protocol; visual language; Algorithm design and analysis; Authentication; Computer security; Cryptographic protocols; Cryptography; Fault trees; Protection; Safety; Writing; C.2.0.f Network-level security and protection; C.2.2.c Protocol verification; F.4.3 Formal Languages;
  • fLanguage
    English
  • Journal_Title
    Dependable and Secure Computing, IEEE Transactions on
  • Publisher
    ieee
  • ISSN
    1545-5971
  • Type

    jour

  • DOI
    10.1109/TDSC.2007.70206
  • Filename
    4288183
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=1093886