A small bound on the number of sessions for security protocols - Archive ouverte HAL Access content directly
Conference Papers Year :

A small bound on the number of sessions for security protocols

(1) , (2) , (3, 4, 5)
1
2
3
4
5

Abstract

Bounding the number of sessions is a long-standing problem in the context of security protocols. It is well known that even simple properties like secrecy are undecidable when an unbounded number of sessions is considered. Yet, attacks on existing protocols only require a few sessions.In this paper, we propose a sound algorithm that computes a sufficient set of scenarios that need to be considered to detect an attack. Our approach can be applied for both reachability and equivalence properties, for protocols with standard primitives thatare type-compliant (unifiable messages have the same type). Moreover, when equivalence properties are considered, else branches are disallowed, and protocols are supposed to be simple (an attacker knows from which role and session a message comes from).Since this class remains undecidable, ouralgorithm may return an infinite set. However, our experiments show that on most basic protocols of the literature, our algorithm computesa small number of sessions (a dozen). As a consequence, tools for a bounded number of sessions like DeepSec can then be used to conclude that a protocol is secure for an unbounded number of sessions.
Fichier principal
Vignette du fichier
main.pdf (495.44 Ko) Télécharger le fichier
Vignette du fichier
supplementary-material.tar.gz (501.84 Ko) Télécharger le fichier
Origin : Files produced by the author(s)
Format : Other

Dates and versions

hal-03473179 , version 1 (25-01-2022)

Identifiers

  • HAL Id : hal-03473179 , version 1

Cite

Véronique Cortier, Antoine Dallon, Stéphanie Delaune. A small bound on the number of sessions for security protocols. CSF 2022 - 35th IEEE Computer Security Foundations Symposium, Aug 2022, Haifa, Israel. ⟨hal-03473179⟩
119 View
93 Download

Share

Gmail Facebook Twitter LinkedIn More