###
DOI:
Journal of Software:2006.17(1):148-156

基于认证测试的安全协议分析
杨明,罗军舟
(东南大学,计算机科学与工程系,网络室,江苏,南京,210096)
Analysis of Security Protocols Based on Authentication Test
YANG Ming,LUO Jun-Zhou
()
Abstract
Chart / table
Reference
Similar Articles
Article :Browse 3697   Download 3482
Received:June 03, 2004    Revised:July 28, 2005
> 中文摘要: 认证测试是一种新型的在Strand空间模型基础上发展而来的安全协议分析与辅助设计技术,可用于大部分协议的关联属性的分析;但是与Strand空间模型一样,它主要用于协议正确性证明,在协议为何不正确以及如何进行改进这个问题上处理分析能力较弱.在认证测试概念的基础上,结合逻辑分析的优点,提出了增强型认证测试EAT(enhanced authentication test)和Correspondence函数等概念来对安全协议进行关联属性的分析,很好地解决了这一问题与原有技术相比,该方法更为形式化,协议分析人员可以很方便地进行手动分析,并且更有利于协议分析自动化工具的实现.
Abstract:Authentication Test is a new type of analysis and design method of security protocols based on Strand space model, and it can be used for most types of the security protocols. However, as a Strand space model, it is inclined to be used for the proof of correctness, and is relatively weaker for incorrectness analysis. This paper proposes the concepts of Enhanced Authentication Test (EAT) and the correspondence function that can solve the problem. Compared with the original concept, the new approach is more formal and can make protocol analysis easier both by hand and automatically.
文章编号:     中图分类号:    文献标志码:
基金项目:Supported by the National Natural Science Foundation of China under Grant No.90412014 (国家自然科学基金); the Jiangsu Provincial Key Laboratory of Network and Information Security under Grant No. BM2003201 (江苏省"网络与信息安全"重点实验室);the Jiangsu Provincial High-Tech Rese Supported by the National Natural Science Foundation of China under Grant No.90412014 (国家自然科学基金); the Jiangsu Provincial Key Laboratory of Network and Information Security under Grant No. BM2003201 (江苏省"网络与信息安全"重点实验室);the Jiangsu Provincial High-Tech Rese
Foundation items:
Reference text:

杨明,罗军舟.基于认证测试的安全协议分析.软件学报,2006,17(1):148-156

YANG Ming,LUO Jun-Zhou.Analysis of Security Protocols Based on Authentication Test.Journal of Software,2006,17(1):148-156