Title :
Verifying SeVeCom using set-based abstraction
Author :
Mödersheim, Sebastian ; Modesti, Paolo
Author_Institution :
DTU Inf., Lyngby, Denmark
Abstract :
We formally analyze the Secure Vehicle Communication system developed by the EU-project SeVeCom, using the AIF framework which is based on a novel set-abstraction technique. The model involves the hardware security modules (HSMs) of a number of cars, a certification authority, and the protocols executed between them. Each participant stores a database of keys that can be added or deleted depending on the different operations. The AIF-framework allows us to model and automatically analyze such databases without bounding the number of steps that the system can make and, in contrast to previous approaches in protocol abstraction, can handle databases that do not monotonically grow (and thus allow for revocation of keys). We report on two new attacks found and verify that under some reasonable assumptions, the system is secure in a black-box cryptography model.
Keywords :
cryptography; mobile radio; protocols; telecommunication security; AIF framework; EU-project SeVeCom; HSM; black-box cryptography model; hardware security modules; protocols; set-based abstraction; vehicle communication system; Analytical models; Concrete; Databases; Protocols; Public key; Vehicular communications; abstract interpretation; security protocol verification;
Conference_Titel :
Wireless Communications and Mobile Computing Conference (IWCMC), 2011 7th International
Conference_Location :
Istanbul
Print_ISBN :
978-1-4244-9539-9
DOI :
10.1109/IWCMC.2011.5982705
