• DocumentCode
    2241680
  • Title

    TAPS: a first-order verifier for cryptographic protocols

  • Author

    Cohen, Ernie

  • Author_Institution
    Telcordia Technol, USA
  • fYear
    2000
  • fDate
    2000
  • Firstpage
    144
  • Lastpage
    158
  • Abstract
    We describe a proof method for cryptographic protocols, based on a strong secrecy invariant that catalogues conditions under which messages can be published. For typical protocols, a suitable first-order invariant can be generated automatically from the program text, independent of the properties being verified, allowing safety properties to be proved by ordinary first-order reasoning. We have implemented the method in an automatic verifier, TAPS, that proves safety properties roughly equivalent to those in published Isabelle verifications, but does so much faster (usually within a few seconds) and with little or no guidance from the user. We have used TAPS to analyze about 60 protocols, including all but three protocols from the Clark and Jacob survey; on average, these verifications each require less than 4 seconds of CPU time and less than 4 bytes of hints from the user
  • Keywords
    cryptography; formal verification; inference mechanisms; protocols; theorem proving; CPU time; Isabelle; TAPS; cryptographic protocol verification; first-order reasoning; first-order verifier; proof method; safety properties; strong secrecy invariant; Authentication; Automation; Cryptographic protocols; Cryptography; Jacobian matrices; Logic; Performance analysis; Safety; State-space methods; Testing;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Computer Security Foundations Workshop, 2000. CSFW-13. Proceedings. 13th IEEE
  • Conference_Location
    Cambridge
  • ISSN
    1063-6900
  • Print_ISBN
    0-7695-0671-2
  • Type

    conf

  • DOI
    10.1109/CSFW.2000.856933
  • Filename
    856933