Verifying SeVeCom Using Set-based Abstraction

Sebastian Alexander Mödersheim; Paolo Modesti

Verifying SeVeCom Using Set-based Abstraction

Sebastian Alexander Mödersheim, Paolo Modesti

Universitá Ca' Foscari Venezia

Research output: Book/Report › Report › Research

389 Downloads (Pure)

Abstract

We formally analyze the Secure Vehicle Communication system developed by the EU-project SeVeCom, using the AIF framework which is based on a novel set-abstraction technique. The model involves the hardware security modules (HSMs) of a number of cars, a certification authority, and the protocols executed between them. Each participant stores a database of keys that can be added or deleted depending on the different operations. The AIF-framework allows us to model and automatically analyze such databases with- out bounding the number of steps that the system can make and, in contrast to previous approaches in protocol abstraction, can handle databases that do not monotonically grow (and thus allow for revocation of keys). We report on two new attacks found and verify that under some reasonable assumptions, the system is secure in a black-box cryptography model.

Original language	English

Place of Publication	Kgs. Lyngby, Denmark
Publisher	Technical University of Denmark, DTU Informatics, Building 321
Publication status	Published - 2011

Series	IMM-Technical Report-2011-01

Access to Document

Tr11 01Final published version, 259 KB

OpenUrl availability

Full text

Cite this

@book{3ee74d3823c14b3ab60810c146823b25,

title = "Verifying SeVeCom Using Set-based Abstraction",

abstract = "We formally analyze the Secure Vehicle Communication system developed by the EU-project SeVeCom, using the AIF framework which is based on a novel set-abstraction technique. The model involves the hardware security modules (HSMs) of a number of cars, a certification authority, and the protocols executed between them. Each participant stores a database of keys that can be added or deleted depending on the different operations. The AIF-framework allows us to model and automatically analyze such databases with- out bounding the number of steps that the system can make and, in contrast to previous approaches in protocol abstraction, can handle databases that do not monotonically grow (and thus allow for revocation of keys). We report on two new attacks found and verify that under some reasonable assumptions, the system is secure in a black-box cryptography model.",

author = "M{\"o}dersheim, {Sebastian Alexander} and Paolo Modesti",

year = "2011",

language = "English",

series = "IMM-Technical Report-2011-01",

publisher = "Technical University of Denmark, DTU Informatics, Building 321",

}

TY - RPRT

T1 - Verifying SeVeCom Using Set-based Abstraction

AU - Mödersheim, Sebastian Alexander

AU - Modesti, Paolo

PY - 2011

Y1 - 2011

N2 - We formally analyze the Secure Vehicle Communication system developed by the EU-project SeVeCom, using the AIF framework which is based on a novel set-abstraction technique. The model involves the hardware security modules (HSMs) of a number of cars, a certification authority, and the protocols executed between them. Each participant stores a database of keys that can be added or deleted depending on the different operations. The AIF-framework allows us to model and automatically analyze such databases with- out bounding the number of steps that the system can make and, in contrast to previous approaches in protocol abstraction, can handle databases that do not monotonically grow (and thus allow for revocation of keys). We report on two new attacks found and verify that under some reasonable assumptions, the system is secure in a black-box cryptography model.

AB - We formally analyze the Secure Vehicle Communication system developed by the EU-project SeVeCom, using the AIF framework which is based on a novel set-abstraction technique. The model involves the hardware security modules (HSMs) of a number of cars, a certification authority, and the protocols executed between them. Each participant stores a database of keys that can be added or deleted depending on the different operations. The AIF-framework allows us to model and automatically analyze such databases with- out bounding the number of steps that the system can make and, in contrast to previous approaches in protocol abstraction, can handle databases that do not monotonically grow (and thus allow for revocation of keys). We report on two new attacks found and verify that under some reasonable assumptions, the system is secure in a black-box cryptography model.

M3 - Report

T3 - IMM-Technical Report-2011-01

BT - Verifying SeVeCom Using Set-based Abstraction

PB - Technical University of Denmark, DTU Informatics, Building 321

CY - Kgs. Lyngby, Denmark

ER -

Verifying SeVeCom Using Set-based Abstraction

Abstract

Access to Document

OpenUrl availability

Fingerprint

Cite this