Athena: a new efficient automatic checker for security protocol analysis (1999) [51 citations — 0 self]

Download:

by Dawn Xiaodong Song

In Proceedings of the Twelth IEEE Computer Security Foundations Workshop

http://paris.cs.berkeley.edu/~dawnsong/papers/Athena.ps

Add To MetaCart

Popular Tags

No tags have been applied to this document.

BibTeX | Add To MetaCart

@INPROCEEDINGS{Song99athena:a,
    author = {Dawn Xiaodong Song},
    title = {Athena: a new efficient automatic checker for security protocol analysis},
    booktitle = {In Proceedings of the Twelth IEEE Computer Security Foundations Workshop},
    year = {1999},
    pages = {192--202},
    publisher = {IEEE Computer Society Press}
}

Years of Citing Articles

Abstract:

We propose an efficient automatic checking algorithm, Athena, for analyzing security protocols. Athena incorporates a logic that can express security properties including authentication, secrecy and properties related to electronic commerce. We have developed an automatic procedure for evaluating well-formed formulae in this logic. For a well-formed formula, if the evaluation procedure terminates, it will generate a counterexample if the formula is false, or provide a proof if the formula is true. Even when the procedure does not terminate when we allow any arbitrary configurations of the protocol execution, (for example, any number of initiators and responders), termination could be forced by bounding the number of concurrent protocol runs and the length of messages, as is done in most existing model checkers. Athena also exploits several state space reduction techniques. It is based on an extension of the recently proposed Strand Space Model [25] which captures exact causal relation information. Together with backward search and other techniques, Athena naturally avoids the state space explosion problem commonly caused by asynchronous composition and symmetry redundancy. Athena also has the advantage that it can easily incorporate results from theorem proving through unreachability theorems. By using the unreachability theorems, it can prune the state space at an early stage, hence, reduce the state space explored and increase the likely-hood of termination. As shown in our experiments, these techniques dramatically reduce the state space that needs to be explored.

Citations

1515	Model Checking – Clarke, Grumberg, et al. - 1999
965	A logic of authentication – Burrows, Abadi, et al. - 1989
720	On the security of public key protocols – Dolev, Yao - 1983
718	Using encryption for authentication in large networks of computers – Needham, Schroeder - 1978
473	Breaking and fixing the Needham-Schroeder public-key protocol using FDR – Lowe - 1996
216	Automated Analysis of Cryptographic Protocols Using Murϕ – Mitchell, Mitchell, et al. - 1997
173	Reasoning about Belief in Cryptographic Protocol Analysis – Gong, Needham, et al. - 1990
165	Combining partial order reductions with on-the-fly model checking – Peled - 1994
145	Proving Properties of Security Protocols by Induction – Paulson - 1996
131	A hierarchy of authentication specifications – Lowe - 1996
126	Exploiting symmetry in temporal logic model checking – Clarke, Enders, et al. - 1996
115	A semantic model for authentication protocols – Woo, Lam - 1993
108	All from one, one for all: on model checking using representatives – Peled - 1993
105	spaces: Why is a security protocol correct – Strand - 1998
82	Formal verification of cryptographic protocols: A survey – Meadows - 1995
69	A model for secure protocols and their compositions – Heintze, Tygar - 1996
62	Key distribution protocol for digital mobile communication systems – Tatebayashi, Matsuzaki, et al. - 1990
56	Using state space exploration and a natural deduction style message derivation engine to verify security protocols – Clarke, Jha, et al. - 1998
51	iKP - a family of secure electronic payment protocols – Bellare, Garay, et al. - 1995
40	A model of computation for the NRL protocol analyzer – Meadows - 1994
35	The evolution of the kerberos authentication service – Kohl, Neuman, et al. - 1994
26	The Interrogator model – Millen - 1995
25	Efficient finite-state analysis for large security protocols – Shmatikov, Stern - 1998
24	automatic checking of security protocols – Fast - 1996
1	The kerberos network authentication service. Internet Request For Comment RFC-1510 – Kohl, Neuman - 1993
1	Inside Athena – Song - 1999

View or Download | Add to My Collection | Correct Errors