Title :
Automated detection of confidentiality goals
Author :
Hagalisletto, Anders Moen
Author_Institution :
Norwegian Comput. Center, Oslo, Norway
Abstract :
The security goals of an authentication protocol specify the high level properties of a protocol. Despite the importance of goals, these are rarely specified explicitly. Yet, a qualified analysis of a security protocol requires that the goals are stated explicitly. We propose a novel approach to find confidentiality goals in an automated way, based only on the protocol specification. The benefits of the method are: (i) Manual specification of goals is replaced by fully automated methods, (ii) the algorithm constructs the entire protection domain of a protocol, that is, all private and shared secrets, and (iii) the goal of an attack can be found, explaining which compromised entities are shared between the attacker and the honest principals.
Keywords :
cryptographic protocols; formal specification; message authentication; authentication protocol; automated confidentiality goal detection; high level property specification; private secret; security protocol; shared secret; Authentication; Councils; Cryptography; Formal specifications; Protection; Protocols; Public key; Security; Security protocols; automated refinement; formal specification; security goals;
Conference_Titel :
Parallel & Distributed Processing, 2009. IPDPS 2009. IEEE International Symposium on
Conference_Location :
Rome
Print_ISBN :
978-1-4244-3751-1
Electronic_ISBN :
1530-2075
DOI :
10.1109/IPDPS.2009.5161246
