• DocumentCode
    2829104
  • Title

    Analysis of the Internet Key Exchange protocol using the NRL Protocol Analyzer

  • Author

    Meadows, Catherine

  • Author_Institution
    Code 5543, Naval Res. Lab., Washington, DC, USA
  • fYear
    1999
  • fDate
    1999
  • Firstpage
    216
  • Lastpage
    231
  • Abstract
    We show how the NRL Protocol Analyzer, a special-purpose formal methods tool designed for the verification of cryptographic protocols, was used in the analysis of the Internet Key Exchange (IKE) protocol. We describe some of the challenges we faced in analyzing IKE, which specifies a set of closely related subprotocols, and we show how this led to a number of improvements to the Analyzer. We also describe the results of our analysis, which uncovered several ambiguities and omissions in the specification which would have made possible attacks on some implementations that conformed to the letter, if not necessarily the intentions, of the specifications
  • Keywords
    Internet; cryptography; formal verification; network analysers; protocols; Internet Key Exchange protocol; NRL Protocol Analyzer; cryptographic protocol verification; formal methods tool; subprotocols; Cryptographic protocols; Design methodology; Digital signatures; Explosions; Internet; Laboratories; Logic; Public key; Public key cryptography; Security;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Security and Privacy, 1999. Proceedings of the 1999 IEEE Symposium on
  • Conference_Location
    Oakland, CA
  • ISSN
    1081-6011
  • Print_ISBN
    0-7695-0176-1
  • Type

    conf

  • DOI
    10.1109/SECPRI.1999.766916
  • Filename
    766916
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2829104