Synthetizing secure protocols

Véronique Cortier 1 Bogdan Warinschi 2 Eugen Zalinescu 1
1 CASSIS - Combination of approaches to the security of infinite states systems
FEMTO-ST - Franche-Comté Électronique Mécanique, Thermique et Optique - Sciences et Technologies (UMR 6174), INRIA Lorraine, LORIA - Laboratoire Lorrain de Recherche en Informatique et ses Applications
Abstract : We propose a general transformation that maps a cryptographic protocol that is secure in an extremely weak sense (essentially in a model where no adversary is present) into a protocol that is secure against a fully active adversary which interacts with an unbounded number of protocol sessions, and has absolute control over the network. The transformation works for arbitrary protocols with any number of participants, written with usual cryptographic primitives. Our transformation provably preserves a large class of security properties that contains secrecy and authenticity. An important byproduct contribution of this paper is a modular protocol development paradigm where designers focus their effort on an extremely simple execution setting – security in more complex settings being ensured by our generic transformation. Conceptually, the transformation is very simple, and has a clean, well motivated design. Each message is tied to the session for which it is intended via digital signatures and on-the-fly generated session identifiers, and prevents replay attacks by encrypting the messages under the recipient's public key.
Type de document :
Communication dans un congrès
Joachim Biskup et Javier López. 12th European Symposium On Research In Computer Security - ESORICS'07, Sep 2007, Dresden, Germany. Springer-Verlag, 4734, pp.406-421, 2007, Lecture Notes in Computer Science
Liste complète des métadonnées

https://hal.inria.fr/inria-00181599
Contributeur : Véronique Cortier <>
Soumis le : mercredi 24 octobre 2007 - 10:26:37
Dernière modification le : vendredi 6 juillet 2018 - 15:06:10

Identifiants

  • HAL Id : inria-00181599, version 1

Citation

Véronique Cortier, Bogdan Warinschi, Eugen Zalinescu. Synthetizing secure protocols. Joachim Biskup et Javier López. 12th European Symposium On Research In Computer Security - ESORICS'07, Sep 2007, Dresden, Germany. Springer-Verlag, 4734, pp.406-421, 2007, Lecture Notes in Computer Science. 〈inria-00181599〉

Partager

Métriques

Consultations de la notice

195