Title :
Causality-based Abstraction of Multiplicity in Security Protocols
Author :
Backes, Michael ; Cortesi, Agostino ; Maffei, Matteo
Author_Institution :
Saarland Univ., Saarbrucken
Abstract :
This paper presents a novel technique for analyzing security protocols based on an abstraction of the program semantics. This technique is based on a novel structure called causal graph which captures the causality among program events within a finite graph. A core property of causal graphs is that they abstract away from the multiplicity of protocol sessions, hence constituting a concise tool for reasoning about an even infinite number of concurrent protocol sessions; deciding security only requires a traversal of the causal graph, thus yielding a decidable, and typically very efficient, approach for security protocol analysis. Additionally, causal graphs allow for dealing with different security properties such as secrecy and authenticity in a uniform manner. Both the construction of the causal graph from a given protocol description and the analysis have been fully automated and tested on several example protocols from the literature.
Keywords :
cryptographic protocols; graph theory; causal graph; causality-based abstraction; concurrent protocol sessions; finite graph; program semantics; security protocols; Authentication; Automatic testing; Character generation; Computer security; Cryptographic protocols; Failure analysis; Humans; Inspection; Pattern analysis; Safety;
Conference_Titel :
Computer Security Foundations Symposium, 2007. CSF '07. 20th IEEE
Conference_Location :
Venice
Print_ISBN :
0-7695-2819-8
DOI :
10.1109/CSF.2007.11
