摘要
可信信道是一个与终端的系统平台状态信息安全绑定的安全信道.现有的关于可信信道的研究工作都没有从理论上对所设计的可信信道的安全属性进行分析.本文首先提出一个基于SSH安全信道协议的可信信道协议,然后利用形式化模型检测器NuSMV分析该协议的安全属性,最后基于检测器执行轨迹所构成的反例,提出了一个强壮的SSH可信信道协议.本文提出的建模和验证方法具有通用性,可用于分析其他基于安全信道协议的可信信道协议的安全属性.
A trusted channel is a secure one that is cryptographically bound with the endpoint’s platform state information.The existing research about establishing trusted channels did not analyze this property theoretically.This paper firstly proposes a SSH-based trusted channel protocol.Then we formally analyze its security properties by applying model checker NuSMV.Based on the analysis results of the counter-example,this paper proposes a robust SSH-based trusted channel protocol.The methods of modeling and verification can be applied to verify the security property of the trusted channel protocols based on other secure channel techniques.
出处
《北京交通大学学报》
CSCD
北大核心
2012年第2期8-15,共8页
JOURNAL OF BEIJING JIAOTONG UNIVERSITY
基金
中央高校基本科研业务费专项基金资助(2009JBM017
2010YJS024)
