Supported by the National Natural Science Foundation of China under Grant No.60373048(国家自然科学基金)
现有的串空间模型由于没有抽象更多的密码学原语,因此不能分析较复杂的安全协议.希望通过对串空间理论的扩展使其充分地表达较多的密码学原语,以满足分析复杂安全协议的需要.对入侵串轨迹增加了签名、签名验证和HMAC(keyed-hashing for message authentication code)函数模型,重新定义了理想概念并对衍生出的相关命题和定理进行了证明.扩展的诚实理想分析模型不仅继承了原理论的性质,而且适合分析含丰富密码原语的协议,如JFK和IKE2.
Current strand spaces model can not analyze some complex security protocols on account of their poor cryptographic primitives’ abstract. So it is very necessary to extend original theory of strand spaces so that it can be applied to analyze real world protocols. The penetrator’s strands are extended through adding signature, signature verification and HMAC (keyed-hashing for message authentication code) traces to them. A new notion of ideal is defined and the relevant propositions or theorems are therefore modified and proved. The extended honest ideals model not only inherits its original characters, but also is adaptive to the analysis of protocols with more cryptographic primitives such as JFK or IKE2.