【24h】

Refining Key Establishment

机译:完善密钥建立

获取原文
获取原文并翻译 | 示例

摘要

We use refinement to systematically develop a family of key establishment protocols using a theorem prover. Our development spans four levels of abstraction: abstract security properties, message-less guard protocols, protocols communicating over channels with security properties, and protocols secure with respect to a Dolev-Yao intruder. The protocols we develop are Needham-Schroeder Shared Key, the core of Kerberos 4 and 5, and Denning Sacco, and include realistic features such as key confirmation, replay caches, and encrypted tickets. Our development highlights that message-less guard protocols provide a fundamental abstraction for bridging the gap between security properties and message-based protocol descriptions. It also shows that the refinement approach presented in [SB10] can be applied, with minor adaption, to families of key establishment protocols and that it scales to protocols of nontrivial size and complexity.
机译:我们使用定理证明程序,通过优化来系统地开发一系列关键建立协议。我们的开发跨越四个抽象级别:抽象安全属性,无消息保护协议,具有安全属性的通过通道进行通信的协议以及针对Dolev-Yao入侵者的安全协议。我们开发的协议是Kerberos 4和5的核心Needham-Schroeder共享密钥,以及Denning Sacco,并包括一些现实的功能,例如密钥确认,重放缓存和加密票证。我们的发展突显了无消息保护协议为弥合安全属性和基于消息的协议描述之间的鸿沟提供了一种基本的抽象。它还表明,[SB10]中提出的改进方法可以稍作改动就可以应用于关键建立协议的系列,并且可以扩展到规模和复杂性不高的协议。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有
  • 客服微信

  • 服务号