A method for unbounded verification of privacy-type properties

Hirschi Lucca; Baelde David; Delaune Stéphanie

首页> 外文期刊>Journal of computer security >A method for unbounded verification of privacy-type properties

【24h】

A method for unbounded verification of privacy-type properties

机译：一种无限制验证隐私类型属性的方法

获取原文

掌桥外文数据库（机构版） >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

In this paper, we consider the problem of verifying anonymity and unlinkability in the symbolic model, where protocols are represented as processes in a variant of the applied pi calculus, notably used in the ProVerif tool. Existing tools and techniques do not allow to verify directly these properties, expressed as behavioral equivalences. We propose a different approach: we design two conditions on protocols which are sufficient to ensure anonymity and unlinkability, and which can then be effectively checked automatically using ProVerif . Our two conditions correspond to two broad classes of attacks on unlinkability, i.e. data and control-flow leaks. This theoretical result is general enough that it applies to a wide class of protocols based on a variety of cryptographic primitives. In particular, using our tool, UKano , we provide the first formal security proofs of protocols such as BAC and PACE (e-passport), Hash-Lock (RFID authentication), etc. Our work has also lead to the discovery of new attacks, including one on the LAK protocol (RFID authentication) which was previously claimed to be unlinkable (in a weak sense).

机译：在本文中，我们考虑了在符号模型中验证匿名性和不可链接性的问题，其中协议表示为所应用pi演算的变体中的过程，特别是在ProVerif工具中使用。现有的工具和技术不允许直接验证这些特性，以行为等效性表示。我们提出一种不同的方法：我们在协议上设计两个条件，这些条件足以确保匿名性和不可链接性，然后可以使用ProVerif有效地对其进行自动检查。我们的两个条件对应于针对不可链接性的两大类攻击，即数据和控制流泄漏。该理论结果足够概括，可以应用于基于各种密码原语的多种协议。特别是，使用我们的工具UKano，我们提供了BAC和PACE（电子护照），Hash-Lock（RFID身份验证）等协议的第一批正式安全证明。我们的工作还导致了新攻击的发现。，其中包括一个LAK协议（RFID身份验证），该协议以前被认为是不可链接的（意义不大）。

著录项

来源
《Journal of computer security》 |2019年第3期|277-342|共66页
作者
Hirschi Lucca; Baelde David; Delaune Stéphanie;
展开▼
作者单位

InriaandLORIA France;

LSV ENS Paris-Saclay CNRSandUniversité Paris-Saclay France;

Univ Rennes CNRS IRISA;

展开▼
收录信息美国《工程索引》(EI);
原文格式 PDF
正文语种 eng
中图分类
关键词
Formal verification; security protocols; symbolic model; equivalence-based properties;

机译：正式验证;安全协议;符号模型基于等价的属性;

相似文献

外文文献
中文文献
专利

1. Verifying privacy-type properties of electronic voting protocols [J] . Stephanie Delaune, Steve Kremer, Mark Ryan Journal of computer security . 2009,第4期

机译：验证电子投票协议的隐私类型属性
2. Unbounded Protocol Compliance Verification Using Interval Property Checking With Invariants [J] . Nguyen M.D., Thalmaier M., Wedler M., IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems . 2008,第11期

机译：使用不变量的间隔属性检查进行无限制的协议符合性验证
3. Analysing Privacy-Type Properties in Cryptographic Protocols (Invited Talk) [J] . St{e}phanie Delaune LIPIcs : Leibniz International Proceedings in Informatics . 2018,第1期

机译：分析加密协议中的隐私类型属性（受邀演讲）
4. A Method for Verifying Privacy-Type Properties: The Unbounded Case [C] . Lucca Hirschi, David Baelde, Stéphanie Delaune IEEE Symposium on Security and Privacy . 2016

机译：验证隐私类型属性的方法：无限制的情况
5. Unbounded-2-bounded: A two-phase approximation for model checking unbounded until properties of probabilistic system. [D] . Jennings, Paul. 2011

机译：Unbounded-2-bounded：两阶段近似，用于模型检查无穷大直到概率系统的性质。
6. Dielectric Properties of Glass Beads with Talc as a Reference Material for Calibration and Verification of Dielectric Methods and Devices for Measuring Soil Moisture [O] . Justyna Szerement, Hironobu Saito, Kahori Furuhata, 2020

机译：以滑石粉为参考材料的玻璃微珠的介电特性用于介电方法和土壤水分测量装置的校准和验证
7. Symbolic verification of privacy-type properties for security protocols with XOR [O] . Baelde, David, Delaune, Stéphanie, Gazeau, Ivan, 2017

机译：使用XOR对安全协议的隐私类型属性进行符号验证

A method for unbounded verification of privacy-type properties

摘要

著录项

相似文献

相关主题

期刊订阅