Protocol Engineering Applied to Formal Analysis of Security Systems

TitleProtocol Engineering Applied to Formal Analysis of Security Systems
Publication TypeConference Paper
Year of Publication2002
AuthorsJ. Lopez, J. J. Ortega, and J. M. Troya
Conference NameInternational Conference on Infrastructure Security (InfraSec’02)
Series TitleLNCS
Date PublishedOctober
Conference LocationBristol, U.K.

Every communication system requiring security properties is certainly critical. In order to study the security of communication systems, we have developed a methodology for the application of the formal analysis techniques of communication protocols to the analysis of cryptographic ones. We have extended the design and analysis phases with security properties. Our methodology uses a specification technique based on the HMSC/MSC requirement languages, and translates it into a generic schema for the SDL specification language, which is used for the analysis. Thus, the technique allows the specification of security protocols using a standard formal language and uses Object-Orientation for reusability purposes. The final goal is not only the formal specification of a security system, but to examine the possible attacks, and later use the specification in more complex systems.

Citation KeyJavierLopez2002b
Paper File: