Formal security analysis with interacting state machines

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 2502, Issue , 2002, Pages 212-229

  von Oheimb, David ^a   Lotz, Volkmar ^a  

^a SIEMENS AG   (Germany)

Author keywords

[No Author keywords available]

Indexed keywords

SECURITY OF DATA; SECURITY SYSTEMS; SEMANTICS; SMART CARDS;

APPLICATION EXAMPLES; FORMAL SECURITY ANALYSIS; INPUT/OUTPUT AUTOMATA; ISABELLE THEORIES; NEEDHAM-SCHROEDER; PUBLIC-KEY PROTOCOL; SECURITY ANALYSIS; SMART-CARD CHIPS;

THEOREM PROVING;

EID: 84957035924     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/3-540-45853-0_13     Document Type: Conference Paper

References (23)

1. [AETS01] Atmel, Hitachi Europe, Infineon Technologies, and Philips Semiconductors. Smartcard IC Platform Protection Profile, Version 1.0, July 2001.
2. [AGKS99] David Aspinall, Healfdene Goguen, Thomas Kleymann, and Dilip Sequeira. Proof General, 1999.
3. [But99] Michael Butler. csp2B: A practical approach to combining CSP and B. In Proceedings of FM’99: World Congress on Formal Methods, pages 490–508, 1999. http://www.dsse.ecs.soton.ac.uk/techreports/99-2.html.
4. [CC99] Common Criteria for Information Technology Security Evaluation (CC), Version 2.1, 1999. ISO/IEC 15408.
5. [DY83] Danny Dolev and Andrew C. Yao. On the security of public key protocols. IEEE Transactions on Information Theory, IT-29(12):198–208, March 1983.
6. [Fis00] Clemens Fischer. Combination and implementation of processes and data: from CSP-OZ to Java. PhD thesis, University of Oldenburg, 2000.
7. [GL98] Stephen J. Garland and Nancy A. Lynch. The IOA language and toolset: Support for designing, analyzing, and building distributed systems. Technical Report MIT/LCS/TR-762, Laboratory for Computer Science, MIT, August 1998.
8. [HSSS96] Franz Huber, Bernhard Schätz, Alexander Schmidt, and Katharina Spies. Autofocus-a tool for distributed systems specification. In Proceedings FTRTFT’96-Formal Techniques in Real-Time and Fault-Tolerant Systems, volume 1135 of LNCS, pages 467–470. Springer-Verlag, 1996. See also http://autofocus.in.tum.de/index-e.html.
9. [ITS91] Information Technology Security Evaluation Criteria (ITSEC), June 1991.
10. [JW01] Jan Jürjens and Guido Wimmel. Formally testing fail-safety of electronic purse protocols. In Automated Software Engineering. IEEE Computer Society, 2001.
11. [Kay01] Dilsun Kirli Kaynar. IOA language and toolset, 2001. http://theory.lcs.mit.edu/tds/ioa.html.
12. [LKW00] Volkmar Lotz, Volker Kessler, and Georg Walter. A Formal Security Model for Microprocessor Hardware. In IEEE Transactions on Software Engineering, volume 26, pages 702–712, August 2000. http://www.computer.org/tse/ts2000/e8toc.htm.
13. [Low96] Gavin Lowe. Breaking and fixing the Needham-Schroeder public-key protocol using FDR. In Proceedings of TACAS, volume 1055, pages 147–166. Springer-Verlag, 1996.
14. [Low97] Gavin Lowe. A hierarchy of authentication specifications. In PCSFW: Proceedings of The 10th Computer Security Foundations Workshop. IEEE Computer Society Press, 1997.
15. [LT89] Nancy Lynch and Mark Tuttle. An introduction to input/output automata. CWI Quarterly, 2(3):219–246, 1989. http://theory.lcs.mit.edu/tds/papers/Lynch/CWI89.html.
16. [Ohe02a] David von Oheimb. Interacting State Machines, 2002. Submitted for publication.
17. [Ohe02b] David von Oheimb. The Isabelle/HOL implementation of Interacting State Machines, 2002. Technical documentation, available on request.
18. [OLW02] David von Oheimb, Volkmar Lotz, and Gerog Walter. An interpretation of the LKW model according to the SLE66CX322P security target. Unpublished, January 2002.
19. [Pau94] Lawrence C. Paulson. Isabelle: A Generic Theorem Prover, volume 828 of LNCS. Springer-Verlag, 1994. For an up-to-date description, see http://isabelle.in.tum.de/.
20. [Pau98] Lawrence C. Paulson. The inductive approach to verifying cryptographic protocols. Journal of Computer Security, 6:85–128, 1998.
21. [PNW+] Lawrence C. Paulson, Tobias Nipkow, Markus Wenzel, et al. The Isabelle/HOL library. http://isabelle.in.tum.de/library/HOL/.
22. [S+] Oscar Slotosch et al. Validas Model Validation AG. http://www.validas.de/.
23. [WW01] Guido Wimmel and Alexander Wisspeintner. Extended description techniques for security engineering. In M. Dupuy and P. Paradinas, editors, International Conference on Information Security (IFIP/SEC). Kluwer Academic Publishers, 2001.