Skip to Main content Skip to Navigation
Conference papers

Modeling and analysis of security protocols using role based specifications and Petri nets

Abstract : In this paper, we introduce a framework composed of a syntax and its compositional Petri net semantics, for the specification and verification of properties (like authentication) of security protocols. The protocol agents (e.g., an initiator, a responder, a server, a trusted third party, ...) are formalized as roles, each of them having a predefined behavior depending on their global and also local knowledge (including for instance public, private and shared keys), and may interact in a potentially hostile environment. The main characteristics of our framework, is that it makes explicit, structured and formal, the usually implicit information necessary to analyse the protocol, for instance the public and private context of execution. The roles and the environment are expressed using SPL processes and compositionally translated into high-level Petri nets, while the context specifying the global and local knowledge of the participants in the protocol is used to generate the corresponding initial marking (with respect to the studied property). Finally, this representation is used to analyse the protocol properties, applying techniques of simulation and model-checking on Petri nets. The complete approach is illustrated on the case study of the Kao-Chow authentication protocol.
Complete list of metadata

Cited literature [31 references]  Display  Hide  Download
Contributor : Frédéric Davesne Connect in order to contact the contributor
Submitted on : Sunday, February 16, 2014 - 3:52:24 PM
Last modification on : Tuesday, February 15, 2022 - 11:24:03 AM
Long-term archiving on: : Friday, May 16, 2014 - 10:35:11 AM


Files produced by the author(s)



Roland Bouroulet, Raymond Devillers, Hanna Klaudel, Elisabeth Pelz, Franck Pommereau. Modeling and analysis of security protocols using role based specifications and Petri nets. International Conference on Application and Theory of Petri Nets (ICATPN'08), Jun 2008, Xi'an, China. pp.72--91, ⟨10.1007/978-3-540-68746-7_9⟩. ⟨hal-00340476⟩



Record views


Files downloads