Gavin Lowe  Home/Search
Context Related
| mcs.le.ac.uk/~glowe/Securit...casper.ps mcs.le.ac.uk/~gl7/Security/...casper.ps web.comlab.ox.ac.uk/oucl/wo...casper.ps Cached: PS.gz PS PDF This document uses CoBlitz to cache paper downloads. If your firewall is blocking outgoing connections to port 3125, you can use these links to download local copies.
Image Update HelpPS.gz PS PDF From: mcs.le.ac.uk/~glowe/Secur...index (more) From: mcs.le.ac.uk/~gl7/Publications (Enter author homepages) |
Rate this article:      (best)Comment on this article |
Abstract: In recent years, a method for analyzing security protocols using the process algebra CSP [8] and its model checker FDR [24] has been developed. This technique has proved remarkably successful, and has been used to discover a number of attacks upon protocols. However, the technique has required producing a CSP description of the protocol by hand; this has proved tedious and error-prone. In this paper we describe Casper, a program that automatically produces the CSP description from a more... (Update)
Cited by: More
Feasibility of Multi-Protocol Attacks - Cremers (Correct)
A Syntactic Criterion for Injectivity of Authentication.. - Cremers, Mauw, de Vink (2005) (Correct)
Formal Methods for Security Protocols: Three Examples of.. - Cremers, Mauw, de Vink (Correct)
Active bibliography (related documents): More All
0.6: A Hierarchy of Authentication Specifications - Lowe (1996) (Correct)
0.5: Security Protocols over open networks and.. - Gritzalis.. (1999) (Correct)
0.3: Some New Attacks upon Security Protocols - Lowe (1996) (Correct)
Similar documents based on text: More All
0.4: Using CSP to detect Insertion and Evasion Possibilities.. - Rohrmair, Lowe (2002) (Correct)
0.3: How to Prevent Type Flaw Attacks on Security Protocols - Heather, Lowe, Schneider (2000) (Correct)
0.3: Data Independence in the Model Checking of Security Protocols - Broadfoot (2001) (Correct)
Related documents from co-citation: More All
42: The NRL Protocol Analyzer: An overview - Meadows - 1996
41: Breaking and fixing the Needham-Schroeder public-key protocol using FDR - Lowe - 1996
40: The inductive approach to verifying cryptographic protocols - Paulson - 1998
BibTeX entry: (Update)
G. Lowe. Casper: A compiler for the analysis of security protocols, 1997. In this volume. World Wide Web home page at URL http://www.mcs.le.ac.uk/glowe/ Security/Casper/index.html. http://citeseer.ist.psu.edu/lowe98casper.html More
@inproceedings{ lowe97casper,
author = "Lowe",
title = "Casper: {A} Compiler for the Analysis of Security Protocols",
booktitle = "{PCSFW}: Proceedings of The 10th Computer Security Foundations Workshop",
publisher = "IEEE Computer Society Press",
year = "1997",
url = "citeseer.ist.psu.edu/lowe98casper.html" }
Citations (may not include all citations):2732 Communicating Sequential Processes (context) - Hoare - 1985
1529 A method for obtaining digital signatures and public-key cry.. - Rivest, Shamir et al. - 1978
428 IEEE Transactions on Information Theory (context) - Diffie, Hellman et al. - 1976
322 Breaking and fixing the Needham-Schroeder public-key protoco.. - Lowe - 1996
195 The Theory and Practice of Concurrency (context) - Roscoe - 1997
176 Timestamps in key distribution protocols (context) - Denning, Sacco - 1981
150 Encrypted key exchange: Password-based protocols secure agai.. - Bellovin, Merritt - 1992
99 Modelling and verifying key-exchange protocols using CSP and.. - Roscoe - 1995
93 An attack on the Needham-Schroeder public-key authentication.. - Lowe - 1995
81 Using encryption for authentication in large networks of com.. (context) - Needham, Schroeder - 1978
75 Towards a completeness result for model checking of security.. - Lowe - 1998
71 Model-checking CSP (context) - Roscoe - 1994
67 A hierarchy of authentication specifications - Lowe - 1997
54 Using CSP to detect errors in the TMN protocol - Lowe, Roscoe - 1997
51 Programming Satan's computer - Anderson, Needham - 1995
41 A note on the use of timestamps as nonces - Neuman, Stubblebine - 1993
40 Key distribution protocol for digital mobile communication s.. (context) - Tatebayashi, Matsuzaki et al. - 1990
35 and Roger Needham (context) - Burrows, Abadi - 1989
28 Failures-Divergence Refinement---FDR 2 User Manual (context) - Systems, Ltd - 1997
27 A security risk of depending on synchronized clocks - Gong - 1992
25 CAPSL: Common authentication protocol specification language (context) - Millen - 1996
24 Project Athena Technical Plan Section E (context) - Miller, Neumann et al. - 1987
14 Secure Electronic Transaction (context) - Transaction, Available et al. - 1996
14 A nonce-based protocol for multiple authentications (context) - Kehne, Schonwalder et al. - 1992
9 Reducing risks from poorly chosen keys - Mark, Lomas et al. - 1989
7 Modelling security properties with CSP - Schneider - 1996
5 World Wide Web home page at URL http://www (context) - Lowe, for et al. - 1996
5 A lesson on authenticated protocol design (context) - Woo, Lam - 1994
2 for modelchecking cryptoprotocols (context) - Roscoe, Goldsmith et al. - 1997
The graph only includes citing articles where the year of publication is known.
Documents on the same site (http://www.mcs.le.ac.uk/~glowe/Security/Papers/index.html): More
Breaking and Fixing the Needham-Schroeder Public-Key Protocol.. - Lowe (1996) (Correct)
A Hierarchy of Authentication Specifications - Lowe (1997) (Correct)
Defining Information Flow - Lowe (1999) (Correct)
Online articles have much greater impact More about CiteSeer.IST Add search form to your site Submit documents Feedback
CiteSeer.IST - Copyright Penn State and NEC