摘要
该文利用协议合成逻辑(PCL),对WAPI密钥管理协议进行了模块化正确性证明。首先,分析了相对独立的单播密钥协商与组播密钥通告协议,在满足一定的工作环境下,证明其分别具有SSA与KS特性,且与协议的实体与会话个数无关:接着,根据顺序合成规则与阶段合成定理,由于参与协议运行的实体避免了基于同一BK担当AE和ASUE两种角色,且每个子协议的运行都不干扰或不破坏其他子协议的环境条件,故WAPI密钥管理协议具有所需的安全属性,达到协议设计目标。
Based on PCL, a formal correctness proof of WAPI key management protocol is presented. First, unicast key negotiation and multicast key announcement sub-protocols are analyzed, and their separate proofs of specific security properties of SSA and KS are detailed under unbounded number of participants and sessions. Second, according to the sequential rule and staged composition theorem, all principals do not execute both roles of ASUE and AE, and the precondition of a sub-protocol is preserved by the other one later in the chain, so, WAPI key management protocol possesses the required security properties and achieves its predefined goals.
出处
《电子与信息学报》
EI
CSCD
北大核心
2009年第2期444-447,共4页
Journal of Electronics & Information Technology
基金
国家杰出青年科学基金(60725105)
国家自然科学基金重大项目(60496316)
国家863计划项目(2007AA01Z217)
国家自然科学基金(60572146)资助课题