摘要
Buttyan等人提出了一个简洁的逻辑 ,他们把它用于改进 Woo- L am协议 ,并且未证明地声称 :改进后的协议是抗协议与自身的交互攻击的 .为表明他们的结论是不正确的 ,找到了改进协议的两个不同的攻击 ,并详细解释如何加以实现 .构造攻击的方式除了要求更细致之外 ,与 Debbabi等人的方式在本质上是相似的 .进一步的分析表明Debbabi等人的逻辑没有足够的能力推理交互攻击 。
Buttyan et al. proposed a simple logic and used it to revise Woo Lam protocol; without proving, they claimed that revised protocol is resistant against the interaction attacks between a protocol and itself. In this paper, in order to show that their results are incorrect, two different attacks on revised protocol are found out and set out in detail for their implementations. The fashions to construct the two attacks are essentially analogous to the ones described by Debbabi etc. except more complicated than them. The further analysis show that the logic of Buttyan etc. has no enough capacity to sufficiently capture protocol flaws, which stem from interaction of protocol itself. This logic needs to be improved.
出处
《软件学报》
EI
CSCD
北大核心
2001年第11期1581-1585,共5页
Journal of Software
基金
国家重点基础研究973发展规划No.G19990 35 80 2
国家杰出青年基金No.6 0 0 2 5 2 0 5~~