Analysing PKCS#11 key management APIs with unbounded fresh data

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 5511 LNCS, Issue , 2009, Pages 92-106

  Fröschle, Sibylle ^a   Steel, Graham ^b  

^a UNIVERSITY OF OLDENBURG   (Germany)

^b CNRS   (France)

Author keywords

[No Author keywords available]

Indexed keywords

BOUNDED MODEL; ENCRYPTION KEY; KEY MANAGEMENT; SECURITY PROPERTIES; SECURITY PROTOCOLS; SYMMETRIC KEYS;

AUTOMATA THEORY; CRYPTOGRAPHY; KEYS (FOR LOCKS); MODEL CHECKING; NETWORK PROTOCOLS; PROBLEM SOLVING;

NETWORK SECURITY;

EID: 70349337015     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/978-3-642-03459-6_7     Document Type: Conference Paper

References (10)

1. Armando, A., Compagna, L.: SAT-based model-checking for security protocols analysis. Int. J. Inf. Sec. 7(1), 3-32 (2008), http://www.ai-lab.it/ satmc; Currently developed under the AVANTSSAR project, http://www.avantssar.eu
2. Clulow, J.: On the security of PKCS#11. In: Walter, C.D., Koç, Ç.K., Paar, C. (eds.) CHES 2003. LNCS, vol. 2779, pp. 411-425. Springer, Heidelberg (2003)
3. Cortier, V., Keighren, G., Steel, G.: Automatic analysis of the security of XORbased key management schemes. In: Grumberg, O., Huth, M. (eds.) TACAS 2007. LNCS, vol. 4424, pp. 538-552. Springer, Heidelberg (2007)
4. Courant, J., Monin, J.-F.: Defending the bank with a proof assistant. In: Proceedings of the 6th International Workshop on Issues in the Theory of Security (WITS 2006), Vienna, Austria, March 2006, pp. 87-98 (2006)
5. Delaune, S., Kremer, S., Steel, G.: Formal analysis of PKCS#11. In: Proceedings of the 21st IEEE Computer Security Foundations Symposium (CSF 2008), Pittsburgh, PA, USA, pp. 331-344. IEEE Computer Society Press, Los Alamitos (2008)
6. Fröschle, S.: The insecurity problem: Tackling unbounded data. In: Proceedings of the 20th IEEE Computer Security Foundations Symposium (CSF 2007), Venice, Italy, pp. 370-384. IEEE Computer Society Press, Los Alamitos (2007)
7. Krhovják, J.: PKCS #11 based APIs. Talk given at the Analysis of Security APIs Workshop (ASA-1) (July 2007), http://homepages.inf.ed.ac.uk/ gsteel/asa/slides/
8. RSA Security Inc., v2.20. PKCS #11: Cryptographic Token Interface Standard (June 2004)
9. Tsalapati, E.: Analysis of PKCS#11 using AVISPA tools. Master's thesis, University of Edinburgh (2007)
10. Youn, P.: The analysis of cryptographic APIs using the theorem prover Otter. Master's thesis, Massachusetts Institute of Technology (2004)