Intruder deducibility constraints with negation. Decidability and application to secured service compositions.

Tigran Avanesov 1, 2 Yannick Chevalier 1 Michaël Rusinowitch 3 Mathieu Turuani 3
3 CASSIS - Combination of approaches to the security of infinite states systems
FEMTO-ST - Franche-Comté Électronique Mécanique, Thermique et Optique - Sciences et Technologies, Inria Nancy - Grand Est, LORIA - FM - Department of Formal Methods
Abstract : The problem of finding a mediator to compose secured services has been reduced in our former work to the problem of solving deducibility constraints similar to those employed for cryptographic protocol analysis. We extend in this paper the mediator synthesis procedure by a construction for expressing that some data is not accessible to the mediator. Then we give a decision procedure for verifying that a mediator satisfying this non-disclosure policy can be effectively synthesized. This procedure has been implemented in CL-AtSe, our protocol analysis tool. The procedure extends constraint solving for cryptographic protocol analysis in a significative way as it is able to handle negative deducibility constraints without restriction. In particular it applies to all subterm convergent theories and therefore covers several interesting theories in formal security analysis including encryption, hashing, signature and pairing.
Type de document :
Rapport
[Research Report] RR-8017, INRIA. 2012
Liste complète des métadonnées

Littérature citée [20 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-00719011
Contributeur : Tigran Avanesov <>
Soumis le : mercredi 18 juillet 2012 - 17:00:40
Dernière modification le : jeudi 11 janvier 2018 - 06:24:26
Document(s) archivé(s) le : vendredi 16 décembre 2016 - 00:53:32

Fichiers

fullver.pdf
Fichiers produits par l'(les) auteur(s)

Identifiants

  • HAL Id : hal-00719011, version 1
  • ARXIV : 1207.4871

Citation

Tigran Avanesov, Yannick Chevalier, Michaël Rusinowitch, Mathieu Turuani. Intruder deducibility constraints with negation. Decidability and application to secured service compositions.. [Research Report] RR-8017, INRIA. 2012. 〈hal-00719011〉

Partager

Métriques

Consultations de la notice

410

Téléchargements de fichiers

848