Title :
Formal specification and security verification of the IDKE protocol using FDR model checking
Author :
Soltwisch, Rene ; Tegeler, Florian ; Hogrefe, Dieter
Author_Institution :
Telematics Group, Gottingen Univ., Germany
Abstract :
The IDKE protocol is a mechanism aiming to provide authentication and session-key establishment for mobile nodes after an inter domain handover. Credentials are forwarded from a previous access router to the new access router whereas initially no trust relationship exists. The IDKE protocol utilizes an IP based infrastructure to transfer a session-key due an initiated handover. In this paper, we give a formal specification of the IDKE protocol, its properties, pre- and post-conditions. Verification of security properties such as secrecy and authentication is performed by utilizing the model checker FDR. We optimize the specification, prove security properties, and figure out the limits of our optimized specification. We show that the IDKE protocol is capable to provide authenticated and secured key establishment. Furthermore we prove that the IDKE protocol also provides forward secrecy for the session-key and for a secured tunnel between two access routers.
Keywords :
formal specification; protocols; security of data; formal specification; model checking; optimized specification; security verification; Access control; Access protocols; Authentication; Communication system security; Data security; Formal specifications; Home automation; Protection; Telematics; Wireless application protocol; AAA; CSP; CTP; Casper; FDR; IDKE; MobilelP; authentication; key establishment; security;
Conference_Titel :
Networks, 2005. Jointly held with the 2005 IEEE 7th Malaysia International Conference on Communication., 2005 13th IEEE International Conference on
Print_ISBN :
1-4244-0000-7
DOI :
10.1109/ICON.2005.1635497
