Analysis of security protocols based on challenge-response 被引量：1

Analysis of security protocols based on challenge-response

导出

摘要 Security protocol is specified as the procedure of challenge-response, which uses applied cryptography to confirm the existence of other principals and fulfill some data negotiation such as session keys. Most of the existing analysis methods, which either adopt theorem proving techniques such as state exploration or logic reasoning techniques such as authentication logic, face the conflicts between analysis power and operability. To solve the problem, a new efficient method is proposed that provides SSM semantics-based definition of secrecy and authentication goals and applies authentication logic as fundamental analysis techniques, in which secrecy analysis is split into two parts： Explicit-lnformaUon-Leakage and Implicit-Information-Leakage, and correspondence analysis is concluded as the analysis of the existence relationship of Strands and the agreement of Strand pa- rameters. This new method owns both the power of the Strand Space Model and concision of authentication logic. Security protocol is specified as the procedure of challenge-response, which uses applied cryptography to confirm the existence of other principals and fulfill some data negotiation such as session keys. Most of the existing analysis methods, which either adopt theorem proving techniques such as state exploration or logic reasoning techniques such as authentication logic, face the conflicts between analysis power and operability. To solve the problem, a new efficient method is proposed that provides SSM semantics-based definition of secrecy and authentication goals and applies authentication logic as fundamental analysis techniques, in which secrecy analysis is split into two parts： Explicit-lnformaUon-Leakage and Implicit-Information-Leakage, and correspondence analysis is concluded as the analysis of the existence relationship of Strands and the agreement of Strand pa- rameters. This new method owns both the power of the Strand Space Model and concision of authentication logic.

作者 LUO JunZhou YANG Ming

机构地区 School of Computer Science and Engineering

出处《Science in China(Series F)》 2007年第2期137-153,共17页 中国科学（F辑英文版）

基金 National Natural Science Foundation of China (Grant Nos. 90412014 and 90604004) Jiangsu Provincial Key Laboratory of Network and Information Security (Grant No. BM2003201) Jiangsu Provincial High-Tech Research Program (Grant No. BG2004036)

关键词 network security protocol analysis challenge-response Strand Space Model network security, protocol analysis, challenge-response, Strand Space Model

分类号 TP393.08 [自动化与计算机技术—计算机应用技术] TN915.04 [电子电信—通信与信息系统]

引文网络
相关文献

参考文献6

1李先贤,怀进鹏.公平的非否认密码协议及其形式分析与应用[J].软件学报,2000,11(12):1628-1634. 被引量：18
2杨明,罗军舟.安全协议关联性分析[J].通信学报,2006,27(7):39-45. 被引量：5
3胡成军,郑援,沈昌祥.密码协议的秘密性证明[J].计算机学报,2003,26(3):367-372. 被引量：5
4来学嘉.基于挑战-响应的认证协议安全的必要条件(英文)[J].中国科学院研究生院学报,2002,19(3):246-253. 被引量：11
5卿斯汉.一种新型的非否认协议[J].软件学报,2000,11(10):1338-1343. 被引量：21
6杨明,罗军舟.基于认证测试的安全协议分析[J].软件学报,2006,17(1):148-156. 被引量：16

二级参考文献39

1卿斯汉.认证协议的形式化分析[J].软件学报,1996,7(A00):107-114. 被引量：7
2Fabrega FJT, Herzog JC, Guttman JD. Strand spaces: Why is a security protocol correct? In: Proc. of the 1998 IEEE Symp, on Security and Privacy. Los Alamitos: IEEE Computer Society Press, 1998, 160-171, http://ieeexplore.ieee.org/ie14/5528/14832/00674832.pdf? tp=&arnumber=674832&isnumber=14832.
3Fitbrega FJT, Herzog JC, Guttman JD. Strand spaces: Proving security protocols corect. Journal of Computer Security, 1999,7(2-3):191-230.
4Paulson LC. The inductive approach to verifying cryptographic protocols. Journal of Computer Security, 1998,6(1):85-128.
5Guttman JD, F/ibrcga FJT. Authentication tests. In: Proc. of the 2000 IEEE Syrup. on Security and Privacy. Los Alamitos: IEEE Computer Society Press, 2000. 96-109. http://ieeexplore.ieee.org/ie15/6864/18435/00848448.pdf?.tp=&arnumber=848448&isnumber=18435.
6Guttman JD, F/ibrega FJT. Authentication tests and the structure of bundles. Theoretical Computer Science, 2002,283(2):333-380.
7Guttman JD. Security protocol design via authentication tests, In: Proc. of the 2002 IEEE Computer Security Foundations Workshop. Los Alamitos: IEEE Computer Society Press, 2002.92-103. http://ieeexplore.ieee.org/ie15/7957/21985/01021809.pdf?tp=&arnumber- 1021809&isnumbet=21985.
8Woo TYC, Lam SS. A semantic model for authentication protocols, In: Proe. of the 1993 IEEE Computer Society Symp. on Research in Security and Privacy. Los Alamitos: IEEE Computer Society Press, 1993. 178-194. http://ieeexplore.ieee.org/iel2/902/7168/00287633.pdf?tp=&arnumber=287633&isnumber=7168.
9Song DXD. Athena: A new efficient automatic checker for security protocol analysis. In: Proc. of the 12th IEEE Computer Security Foundations Workshop. Los Alamitos: IEEE Computer Society Press, 1999. 192-202. http://ieeexplore.ieee,org/ie15/6332/16921/00779773.pdf?tp=&arnumber=779773&isnumber= 16921.
10Song D, Berezin S, Pcrrig A. Athena: A novel approach to efficient automatic security protocol analysis. Journal of Computer Security, 2001,9( 1):47-74.

共引文献57

1王勍,王林平,孟鹏.P2P网络中安全认证协议的研究(英文)[J].微电子学与计算机,2006,23(z1):177-180.
2王凯,潘理,李建华.一种基于非否认协议的电子邮件传输方案[J].通信技术,2003,36(7):100-102.
3黎波涛,罗军舟.Zhou-Gollmann不可否认协议的一种新的改进[J].计算机学报,2005,28(1):35-45. 被引量：9
4王涛,郭荷清,姚松涛.一个安全协议度量方法及其应用[J].计算机工程与设计,2005,26(3):644-647. 被引量：1
5吴立军,苏开乐.一种多项式时间复杂度的密码协议秘密性验证方法[J].计算机科学,2005,32(7):109-112.
6黎波涛,罗军舟.不可否认协议的Petri网建模与分析[J].计算机研究与发展,2005,42(9):1571-1577. 被引量：11
7何冰,李肖坚,夏春和,夏克俭.公平的多方不可否认协议[J].计算机工程与应用,2005,41(27):120-122. 被引量：4
8赵华伟,李大兴.加入时间因素的Needham-Schorder协议及其形式化分析[J].计算机工程与应用,2005,41(36):108-110.
9黎波涛,罗军舟.不可否认协议时限性的形式化分析[J].软件学报,2006,17(7):1510-1516. 被引量：13
10彭红艳,李肖坚,夏春和,邓剑锋,周小发.一种面向电子邮件的不可否认协议及其形式化分析[J].计算机研究与发展,2006,43(11):1914-1919. 被引量：5

同被引文献17

1徐国强,高献坤,田辉,候瑞娟,余泳昌.精细农业研究[J].农机化研究,2004,26(6):1-5. 被引量：12
2韩毅,周晏.使用Winsock实现C/S网络通信[J]科技信息(科学教研),2007(36).
3梁学东,田日才.无线传感器网络与TCP／IP网络互联的设计与实现[A]无线传感器网及网络信息处理技术——年通信理论与信号处理年会论文集,2006.
4Martin Bachmaier,Markus Gandorfer.A conceptual framework for judging the precision agriculture hypothesis with regard to site-specific nitrogen application[J]. Precision Agriculture . 2009 (2)
5Bramley R G V.Lessons from nearly20years of Precision Agriculture research,development,and adoption as a guide to its appropriate application. Crop&Pasture Science . 2009
6Bachmaier M,Gandorfer M.A conceptual framework for judging the precision agriculture hypothesis with regard to site-specific nitrogen application. Precision Agriculture . 2009
7Guimaraes A A,Saraiva A M.Analysis of the ISO11783CAN-Bus based protocol:its interpretation and usage on a precision farming application. Proceedings of the7th International Conference on Precision Agriculture and Other Precision Resources Management . 2004
8Hui Fang,Yong He.A pocket PC based field information fast collection system. Computer and Electronics in Agri-culture . 2008
9王宝英,蔡雪梅,梅春燕,刘鹏.基于ZigBee技术的智能交通网络研究[J].重庆邮电大学学报（自然科学版）,2007,19(6):748-751. 被引量：16
10李勇,包世泰,周品,谭建军.基于Winsock的AIS基站网络数据传输研究[J].计算机工程与设计,2008,29(4):949-951. 被引量：4

引证文献1

1郭巍,叶海建,冀荣华,郑立华,李民赞.基于GPRS的移动式农田信息智能服务系统通信协议[J].农业工程学报,2009,25(S2):175-178. 被引量：3

二级引证文献3

1车艳双,李民赞,郑立华,邓小蕾.基于GPS和PDA的移动智能农田信息采集系统开发[J].农业工程学报,2010,26(S2):109-114. 被引量：31
2邓群芳,沈维政,刘笑然.基于RFID和GPRS技术的奶牛生产管理手持式终端的设计[J].自动化技术与应用,2014,33(1):49-52. 被引量：1
3杨敬锋,张南峰,李勇,薛月菊,吕伟,何堃.基于改进Huffman编码的农机作业数据传输压缩方法[J].农业工程学报,2014,30(13):153-159. 被引量：6

1冯建元.计算机网络安全与实现[J].计算机与网络,2010,36(8):52-55. 被引量：2
2李强.现代移动通信网络安全分析[J].电子世界,2014(20):175-175.
3无线网络安全分析你的无线谁在用?[J].新电脑,2008,32(6):102-105.
4任艳惠.无线传感器网络安全分析[J].电脑知识与技术,2011,7(11X):8160-8162.
5郭安,张建中,张宇.IPv6的网络安全分析[J].福建电脑,2006,22(1):104-105. 被引量：1
6刘国刚.3G网络安全分析[J].通信管理与技术,2006(3):11-12. 被引量：3
7王琪华,陈奇.GSM的网络与GPRS网络安全分析[J].计算机工程与设计,2005,26(2):429-430. 被引量：5
8张震霄.IPv4协议向IPv6协议过渡的网络安全分析[J].科技风,2009(3).
9赵艳.OTP身份认证系统中Challenge-Response协议的改进[J].洛阳师范学院学报,2013,32(11):44-46.
10石兆军,赵禹.一种针对DDoS攻击的防御响应策略[J].实验科学与技术,2006,4(B12):69-71. 被引量：1

Science in China(Series F)

2007年第2期

浏览历史

内容加载中请稍等...