A Calculus for Control Flow Analysis of Security Protocols

Mikael Buchholtz; Hanne Riis Nielson; Flemming Nielson

doi:10.1007/s10207-004-0036-x

A Calculus for Control Flow Analysis of Security Protocols

Mikael Buchholtz, Hanne Riis Nielson, Flemming Nielson

Research output: Contribution to journal › Journal article › Research › peer-review

404 Downloads (Orbit)

Abstract

The design of a process calculus for anaysing security protocols is governed by three factors: how to express the security protocol in a precise and faithful manner, how to accommodate the variety of attack scenarios, and how to utilise the strengths (and limit the weaknesses) of the underlying analysis methodology. We pursue an analysis methodology based on control flow analysis in flow logic style and we have previously shown its ability to analyse a variety of security protocols. This paper develops a calculus, LysaNS that allows for much greater control and clarity in the description of attack scenarios, that gives a more flexible format for expressing protocols, and that at the same time allows to circumvent some of the ``false positives'' arising in previous work.

Original language	English
Journal	International Journal of Information Security
Volume	2
Issue number	3-4
Pages (from-to)	145-167
ISSN	1615-5262
DOIs	https://doi.org/10.1007/s10207-004-0036-x
Publication status	Published - 2004

Access to Document

10.1007/s10207-004-0036-x

Imm2841Final published version, 333 KB

OpenUrl availability

Full text

Cite this

@article{7c95f31607164fdd9b2302ea48411b58,

title = "A Calculus for Control Flow Analysis of Security Protocols",

abstract = "The design of a process calculus for anaysing security protocols is governed by three factors: how to express the security protocol in a precise and faithful manner, how to accommodate the variety of attack scenarios, and how to utilise the strengths (and limit the weaknesses) of the underlying analysis methodology. We pursue an analysis methodology based on control flow analysis in flow logic style and we have previously shown its ability to analyse a variety of security protocols. This paper develops a calculus, LysaNS that allows for much greater control and clarity in the description of attack scenarios, that gives a more flexible format for expressing protocols, and that at the same time allows to circumvent some of the ``false positives'' arising in previous work.",

author = "Mikael Buchholtz and Nielson, {Hanne Riis} and Flemming Nielson",

year = "2004",

doi = "10.1007/s10207-004-0036-x",

language = "English",

volume = "2",

pages = "145--167",

journal = "International Journal of Information Security",

issn = "1615-5262",

publisher = "Springer Verlag",

number = "3-4",

}

TY - JOUR

T1 - A Calculus for Control Flow Analysis of Security Protocols

AU - Buchholtz, Mikael

AU - Nielson, Hanne Riis

AU - Nielson, Flemming

PY - 2004

Y1 - 2004

N2 - The design of a process calculus for anaysing security protocols is governed by three factors: how to express the security protocol in a precise and faithful manner, how to accommodate the variety of attack scenarios, and how to utilise the strengths (and limit the weaknesses) of the underlying analysis methodology. We pursue an analysis methodology based on control flow analysis in flow logic style and we have previously shown its ability to analyse a variety of security protocols. This paper develops a calculus, LysaNS that allows for much greater control and clarity in the description of attack scenarios, that gives a more flexible format for expressing protocols, and that at the same time allows to circumvent some of the ``false positives'' arising in previous work.

AB - The design of a process calculus for anaysing security protocols is governed by three factors: how to express the security protocol in a precise and faithful manner, how to accommodate the variety of attack scenarios, and how to utilise the strengths (and limit the weaknesses) of the underlying analysis methodology. We pursue an analysis methodology based on control flow analysis in flow logic style and we have previously shown its ability to analyse a variety of security protocols. This paper develops a calculus, LysaNS that allows for much greater control and clarity in the description of attack scenarios, that gives a more flexible format for expressing protocols, and that at the same time allows to circumvent some of the ``false positives'' arising in previous work.

U2 - 10.1007/s10207-004-0036-x

DO - 10.1007/s10207-004-0036-x

M3 - Journal article

SN - 1615-5262

VL - 2

SP - 145

EP - 167

JO - International Journal of Information Security

JF - International Journal of Information Security

IS - 3-4

ER -

A Calculus for Control Flow Analysis of Security Protocols

Abstract

Access to Document

OpenUrl availability

Fingerprint

Cite this