In this paper we face the problem of specifying and verifying security protocols where temporal aspects explicitly appear in the description. For these kinds of protocols we propose an extension of the specification language HLPSL, originally proposed in the context of the Avispa Project and where quantitative temporal aspects were not considered. The semantics of such an extension, called Timed HLPSL, is given in terms of eXtended Timed Automata (XTA). The verification of timed protocols can then exploit standard model checking techniques. In particular, we have developed a protocol verification tool which employs the model checker UPPAAL as the verification engine. To illustrate how our framework applies, we also provide a specification of the Wide Mouthed Frog authentication protocol and show how its temporal features can be specified.
Timed HLPSL for specification and verification of time sensitive protocols / Benerecetti, Massimo; Cuomo, Nicola; Peron, Adriano. - ELETTRONICO. - (2006), pp. 309-326. (Intervento presentato al convegno Foundations of Computer Security and Automated Reasoning for Security Protocol Analysis tenutosi a Seattle nel August 15-16, 2006).
Timed HLPSL for specification and verification of time sensitive protocols
BENERECETTI, MASSIMO;CUOMO, NICOLA;PERON, ADRIANO
2006
Abstract
In this paper we face the problem of specifying and verifying security protocols where temporal aspects explicitly appear in the description. For these kinds of protocols we propose an extension of the specification language HLPSL, originally proposed in the context of the Avispa Project and where quantitative temporal aspects were not considered. The semantics of such an extension, called Timed HLPSL, is given in terms of eXtended Timed Automata (XTA). The verification of timed protocols can then exploit standard model checking techniques. In particular, we have developed a protocol verification tool which employs the model checker UPPAAL as the verification engine. To illustrate how our framework applies, we also provide a specification of the Wide Mouthed Frog authentication protocol and show how its temporal features can be specified.I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
