Security Protocols Analysis: A SDL-based Approach

TitleSecurity Protocols Analysis: A SDL-based Approach
Publication TypeJournal Article
Year of Publication2005
AuthorsJ. Lopez, J. J. Ortega, and J. M. Troya
JournalComputer Standards & Interfaces
ISSN Number0920-5489

Organizations need to develop formally analyzed systems in order to achieve well-known formal method benefits. In order to study the security of communication systems, we have developed a methodology for the application of the formal analysis techniques, commonly used in communication protocols, to the analysis of cryptographic protocols. In particular, we have extended the design and analysis phases with security properties. Our proposal uses a specification notation based on one of the most used standard requirement languages HMSC/MSC, which can be automatically translated into a generic SDL specification. The SDL system obtained can then be used for the analysis of the addressed security properties, by using an observer process schema. Besides our main goal to provide a notation for describing the formal specification of security systems, our proposal also brings additional benefits, such as the study of the possible attacks to the system, and the possibility of re-using the specifications produced to describe and analyse more complex systems.

Citation KeyJavierLopez2005b
Paper File: