Extending the Strand Space Method to Verify Kerberos V

Adelaide, Australia December 03-December 06

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/PDCAT.2007.22

Eighth International Conference on Pa ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Yongjian Li Articles by Jun Pang

	ASCII Text	x
	Yongjian Li, Jun Pang, "Extending the Strand Space Method to Verify Kerberos V," Parallel and Distributed Computing Applications and Technologies, International Conference on, pp. 437-444, Eighth International Conference on Parallel and Distributed Computing, Applications and Technologies (PDCAT 2007), 2007.

	BibTex	x
	@article{ 10.1109/PDCAT.2007.22, author = {Yongjian Li and Jun Pang}, title = {Extending the Strand Space Method to Verify Kerberos V}, journal ={Parallel and Distributed Computing Applications and Technologies, International Conference on}, volume = {0}, year = {2007}, isbn = {0-7695-3049-4}, pages = {437-444}, doi = {http://doi.ieeecomputersociety.org/10.1109/PDCAT.2007.22}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Parallel and Distributed Computing Applications and Technologies, International Conference on TI - Extending the Strand Space Method to Verify Kerberos V SN - 0-7695-3049-4 SP437 EP444 A1 - Yongjian Li, A1 - Jun Pang, PY - 2007 VL - 0 JA - Parallel and Distributed Computing Applications and Technologies, International Conference on ER -

Yongjian Li

Jun Pang

In this paper, we present two extensions of the strand space method to model Kerberos V. First, we include time and timestamps to model security protocols with times- tamps: we relate a key to a crack time and combine it with timestamps in order to define a notion of recency. There- fore, we can check replay attacks in this new framework. Second, we extend the classic strand space theory to model protocol mixture. The main idea is to introduce a new re- lation to model the causal relation between one primary protocol session and one of its following secondary proto- col session. Accordingly, we also revisit the definition of unsolicited authentication test. To demonstrate the power of this new theory, we model the Kerberos V protocol, and prove its secrecy and authentication goals. Our framework and the proofs of the example have been mechanized using Isabelle/HOL.

Citation:

Yongjian Li, Jun Pang, "Extending the Strand Space Method to Verify Kerberos V," pdcat, pp.437-444, Eighth International Conference on Parallel and Distributed Computing, Applications and Technologies (PDCAT 2007), 2007

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.