PROJECT TITLE :
A Formal Specification and Verification Framework for Timed Security Protocols - 2017
ABSTRACT:
Today, protocols typically use time to provide higher security. Parenthetically, essential credentials are often related to expiry dates in system styles. However, using time properly in protocol style is challenging, because of the lack of your time connected formal specification and verification techniques. Thus, we tend to propose a comprehensive analysis framework to formally specify as well as automatically verify timed security protocols. A parameterized method is introduced in our framework to handle timing parameters whose values can't be decided within the protocol design stage. In this work, we 1st propose timed applied -calculus as a formal language for specifying timed security protocols. It supports modeling of continuous time as well as application of cryptographic functions. Then, we outline its formal semantics based on timed logic rules, which facilitates economical verification against numerous authentication and secrecy properties. Given a parameterized security protocol, our method either produces a constraint on the timing parameters that guarantees the protection property happy by the protocol, or reports an attack that works for any parameter price. The correctness of our verification algorithm has been formally proved. We tend to evaluate our framework with multiple timed and untimed security protocols and successfully find a previously unknown timing attack in Kerberos V.
Did you like this research project?
To get this research project Guidelines, Training and Code... Click Here
