Modeling and analysis of security protocols using role based specifications and Petri nets

Abstract : In this paper, we introduce a framework composed of a syntax and its compositional Petri net semantics, for the specification and verification of properties (like authentication) of security protocols. The protocol agents (e.g., an initiator, a responder, a server, a trusted third party, ...) are formalized as roles, each of them having a predefined behavior depending on their global and also local knowledge (including for instance public, private and shared keys), and may interact in a potentially hostile environment. The main characteristics of our framework, is that it makes explicit, structured and formal, the usually implicit information necessary to analyse the protocol, for instance the public and private context of execution. The roles and the environment are expressed using SPL processes and compositionally translated into high-level Petri nets, while the context specifying the global and local knowledge of the participants in the protocol is used to generate the corresponding initial marking (with respect to the studied property). Finally, this representation is used to analyse the protocol properties, applying techniques of simulation and model-checking on Petri nets. The complete approach is illustrated on the case study of the Kao-Chow authentication protocol.
Liste complète des métadonnées

Cited literature [31 references]  Display  Hide  Download

https://hal.archives-ouvertes.fr/hal-00340476
Contributor : Frédéric Davesne <>
Submitted on : Sunday, February 16, 2014 - 3:52:24 PM
Last modification on : Thursday, December 13, 2018 - 9:46:03 AM
Document(s) archivé(s) le : Friday, May 16, 2014 - 10:35:11 AM

File

BDKPP-PN-2008.pdf
Files produced by the author(s)

Identifiers

Citation

Roland Bouroulet, Raymond Devillers, Hanna Klaudel, Elisabeth Pelz, Franck Pommereau. Modeling and analysis of security protocols using role based specifications and Petri nets. International Conference on Application and Theory of Petri Nets (ICATPN'08), Jun 2008, Xi'an, China. pp.72--91, ⟨10.1007/978-3-540-68746-7_9⟩. ⟨hal-00340476⟩

Share

Metrics

Record views

543

Files downloads

121