Extending formal security protocol specification languages for use with new verifications techniques

Liang Tian; Reiner Dojen; Tom Coffey

Extending formal security protocol specification languages for use with new verifications techniques

Liang Tian, Reiner Dojen, Tom Coffey

Department of Electronics & Computer Engineering

University of Limerick

Research output: Contribution to journal › Article › peer-review

Abstract

Cryptographic protocols are designed to provide security services, such as key distribution, authentication and non-repudiation, over insecure networks. The verification of cryptographic protocols is highly complex. In particular, the translation from the informal protocol description to the formal protocol specification is an error-prone step, as the exact meaning of the requirements of the security protocol need to be conveyed. This paper discusses the extension of specification languages towards new verification techniques. As a case study, this paper presents an extension of the Common Authentication Protocol Specification Language (CAPSL) to enable it to be used with logic-based formal verification tools for security protocols. Extending an existing language, rather than developing an entirely new specification language, can preserve the virtues of well-established languages. Further, this significantly reduces the effort and time needed to gain a specification language with new features.

Original language	English
Pages (from-to)	372-378
Number of pages	7
Journal	WSEAS Transactions on Information Science and Applications
Volume	3
Issue number	2
Publication status	Published - Feb 2006

Keywords

CAPSL
Specification of cryptographic protocols
Verification of security protocols

Cite this

@article{e94be0551c274dafa98b7f672c641635,

title = "Extending formal security protocol specification languages for use with new verifications techniques",

abstract = "Cryptographic protocols are designed to provide security services, such as key distribution, authentication and non-repudiation, over insecure networks. The verification of cryptographic protocols is highly complex. In particular, the translation from the informal protocol description to the formal protocol specification is an error-prone step, as the exact meaning of the requirements of the security protocol need to be conveyed. This paper discusses the extension of specification languages towards new verification techniques. As a case study, this paper presents an extension of the Common Authentication Protocol Specification Language (CAPSL) to enable it to be used with logic-based formal verification tools for security protocols. Extending an existing language, rather than developing an entirely new specification language, can preserve the virtues of well-established languages. Further, this significantly reduces the effort and time needed to gain a specification language with new features.",

keywords = "CAPSL, Specification of cryptographic protocols, Verification of security protocols",

author = "Liang Tian and Reiner Dojen and Tom Coffey",

year = "2006",

month = feb,

language = "English",

volume = "3",

pages = "372--378",

journal = "WSEAS Transactions on Information Science and Applications",

issn = "1790-0832",

number = "2",

}

TY - JOUR

T1 - Extending formal security protocol specification languages for use with new verifications techniques

AU - Tian, Liang

AU - Dojen, Reiner

AU - Coffey, Tom

PY - 2006/2

Y1 - 2006/2

N2 - Cryptographic protocols are designed to provide security services, such as key distribution, authentication and non-repudiation, over insecure networks. The verification of cryptographic protocols is highly complex. In particular, the translation from the informal protocol description to the formal protocol specification is an error-prone step, as the exact meaning of the requirements of the security protocol need to be conveyed. This paper discusses the extension of specification languages towards new verification techniques. As a case study, this paper presents an extension of the Common Authentication Protocol Specification Language (CAPSL) to enable it to be used with logic-based formal verification tools for security protocols. Extending an existing language, rather than developing an entirely new specification language, can preserve the virtues of well-established languages. Further, this significantly reduces the effort and time needed to gain a specification language with new features.

AB - Cryptographic protocols are designed to provide security services, such as key distribution, authentication and non-repudiation, over insecure networks. The verification of cryptographic protocols is highly complex. In particular, the translation from the informal protocol description to the formal protocol specification is an error-prone step, as the exact meaning of the requirements of the security protocol need to be conveyed. This paper discusses the extension of specification languages towards new verification techniques. As a case study, this paper presents an extension of the Common Authentication Protocol Specification Language (CAPSL) to enable it to be used with logic-based formal verification tools for security protocols. Extending an existing language, rather than developing an entirely new specification language, can preserve the virtues of well-established languages. Further, this significantly reduces the effort and time needed to gain a specification language with new features.

KW - CAPSL

KW - Specification of cryptographic protocols

KW - Verification of security protocols

UR - http://www.scopus.com/inward/record.url?scp=30144437189&partnerID=8YFLogxK

M3 - Article

AN - SCOPUS:30144437189

SN - 1790-0832

VL - 3

SP - 372

EP - 378

JO - WSEAS Transactions on Information Science and Applications

JF - WSEAS Transactions on Information Science and Applications

IS - 2

ER -

Extending formal security protocol specification languages for use with new verifications techniques

Abstract

Keywords

Other files and links

Fingerprint

Cite this