 |
|
|
|
 |
 |
 |
|
 |
|
 |
|
|
杨明,罗军舟.基于认证测试的安全协议分析.软件学报,2006,17(1):148-156 |
基于认证测试的安全协议分析 |
Analysis of Security Protocols Based on Authentication Test |
投稿时间:2004-06-03 修订日期:2005-07-28 |
DOI: |
中文关键词: 网络安全 协议分析 Strand空间模型 认证测试 认证逻辑 |
英文关键词:network security protocol analysis Strand space model authentication test authentication logic |
基金项目:Supported by the National Natural Science Foundation of China under Grant No.90412014 (国家自然科学基金); the Jiangsu Provincial Key Laboratory of Network and Information Security under Grant No. BM2003201 (江苏省"网络与信息安全"重点实验室);the Jiangsu Provincial High-Tech Rese |
作者 | 单位 | 杨明 | 东南大学,计算机科学与工程系,网络室,江苏,南京,210096 | 罗军舟 | 东南大学,计算机科学与工程系,网络室,江苏,南京,210096 |
|
摘要点击次数: 3799 |
全文下载次数: 3594 |
中文摘要: |
认证测试是一种新型的在Strand空间模型基础上发展而来的安全协议分析与辅助设计技术,可用于大部分协议的关联属性的分析;但是与Strand空间模型一样,它主要用于协议正确性证明,在协议为何不正确以及如何进行改进这个问题上处理分析能力较弱.在认证测试概念的基础上,结合逻辑分析的优点,提出了增强型认证测试EAT(enhanced authentication test)和Correspondence函数等概念来对安全协议进行关联属性的分析,很好地解决了这一问题与原有技术相比,该方法更为形式化,协议分析人员可以很方便地进行手动分析,并且更有利于协议分析自动化工具的实现. |
英文摘要: |
Authentication Test is a new type of analysis and design method of security protocols based on Strand space model, and it can be used for most types of the security protocols. However, as a Strand space model, it is inclined to be used for the proof of correctness, and is relatively weaker for incorrectness analysis. This paper proposes the concepts of Enhanced Authentication Test (EAT) and the correspondence function that can solve the problem. Compared with the original concept, the new approach is more formal and can make protocol analysis easier both by hand and automatically. |
HTML 下载PDF全文 查看/发表评论 下载PDF阅读器 |
|
|
|
|
|
|
 |
|
|
|
|
 |
|
 |
|
 |
|