Automated Formal Analysis of a Protocol for Secure File Sharing on Untrusted Storage

May 18-May 21

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/SP.2008.12

2008 IEEE Symposium on Security and P ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Bruno Blanchet Articles by Avik Chaudhuri

	ASCII Text	x
	Bruno Blanchet, Avik Chaudhuri, "Automated Formal Analysis of a Protocol for Secure File Sharing on Untrusted Storage," Security and Privacy, IEEE Symposium on, pp. 417-431, 2008 IEEE Symposium on Security and Privacy (sp 2008), 2008.

	BibTex	x
	@article{ 10.1109/SP.2008.12, author = {Bruno Blanchet and Avik Chaudhuri}, title = {Automated Formal Analysis of a Protocol for Secure File Sharing on Untrusted Storage}, journal ={Security and Privacy, IEEE Symposium on}, volume = {0}, year = {2008}, isbn = {978-0-7695-3168-7}, pages = {417-431}, doi = {http://doi.ieeecomputersociety.org/10.1109/SP.2008.12}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Security and Privacy, IEEE Symposium on TI - Automated Formal Analysis of a Protocol for Secure File Sharing on Untrusted Storage SN - 978-0-7695-3168-7 SP417 EP431 A1 - Bruno Blanchet, A1 - Avik Chaudhuri, PY - 2008 KW - secure storage KW - lazy revocation KW - key rotation KW - cryptographic access control KW - automatic verification VL - 0 JA - Security and Privacy, IEEE Symposium on ER -

Bruno Blanchet

Avik Chaudhuri

We study formal security properties of a state-of-the-art protocol for secure file sharing on untrusted storage, in the automatic protocol verifier ProVerif. As far as we know, this is the first automated formal analysis of a secure storage protocol. The protocol, designed as the basis for the file system Plutus, features a number of interesting schemes like lazy revocation and key rotation. These schemes improve the protocol's performance, but complicate its security properties. Our analysis clarifies several ambiguities in the design and reveals some unknown attacks on the protocol. We propose corrections, and prove precise security guarantees for the corrected protocol.

Index Terms:

secure storage, lazy revocation, key rotation, cryptographic access control, automatic verification

Citation:

Bruno Blanchet, Avik Chaudhuri, "Automated Formal Analysis of a Protocol for Secure File Sharing on Untrusted Storage," sp, pp.417-431, 2008 IEEE Symposium on Security and Privacy (sp 2008), 2008

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.