Effective automatic generation of security protocol’s verification model

doi:10.3778/j.issn.1002-8331.2010.02.025

Computer Engineering and Applications ›› 2010, Vol. 46 ›› Issue (2): 79-82.DOI: 10.3778/j.issn.1002-8331.2010.02.025

• 网络、通信、安全 • Previous Articles Next Articles

Effective automatic generation of security protocol’s verification model

WU Chang¹，XIAO Mei-hua¹，LUO Min²，LIU Qiao-wei¹，XIONG Hao¹

1.Information Engineering School of Nanchang University，Nanchang 330031，China
2.Jiangxi Insititute of Computing Technology，Nanchang 330002，China

Received:2008-08-12 Revised:2008-10-29 Online:2010-01-11 Published:2010-01-11
Contact: WU Chang

安全协议验证模型的高效自动生成

吴昌¹，肖美华¹，罗敏²，刘俏威¹，熊昊¹

1.南昌大学信息工程学院，南昌 330031
2.江西省计算技术研究所，南昌 330002

通讯作者: 吴昌

Abstract

Abstract: Aiming at a more efficient analysis and verification of the security protocol with the model checking technology，this paper proposes a more efficient modeling algorithm with a wider applicability and higher level of automation.Based on this modeling algorithm，the“Generative System of Network Security Protocol Verification Model” is developed.This system can efficiently analyze and verify the security protocol.During the modeling of the intruder，the system improves the efficiency of verification and solves the problem of state explosion by using such optimization strategies as the partial order reduction，syntax reordering and type checking.

Key words: security protocol, model checking, Simple PROMELA Interpreter（SPIN）, state explosion

摘要： 为了能高效地利用模型检测技术对安全协议进行分析与验证，提高工作效率，提出了一种适用范围广，自动化程度及验证效率均较高的建模算法。开发了一个基于该建模算法“网络安全协议验证模型生成系统”，该系统可高效地对安全协议进行分析与验证，系统在对攻击者建模时采用偏序规约、语法重定序及类型检查等优化策略以提高验证效率，有效地缓解了模型检测过程中的状态爆炸问题。

关键词: 安全协议, 模型检测, 简单进程元语言解释器, 状态爆炸

CLC Number:

TP393.08

WU Chang¹，XIAO Mei-hua¹，LUO Min²，LIU Qiao-wei¹，XIONG Hao¹. Effective automatic generation of security protocol’s verification model[J]. Computer Engineering and Applications, 2010, 46(2): 79-82.

吴昌¹，肖美华¹，罗敏²，刘俏威¹，熊昊¹. 安全协议验证模型的高效自动生成[J]. 计算机工程与应用, 2010, 46(2): 79-82.

[1]	DU Mengyao, WANG Zheng, LI Na, QIANG Yan. Dynamic Password Authentication Protocol for Wireless Body Area Network [J]. Computer Engineering and Applications, 2020, 56(14): 68-73.
[2]	LI Qian1, WANG Zheng1, MA Jianfen1, LI Na2. Lightweight mobile payment protocol fairness analysis [J]. Computer Engineering and Applications, 2018, 54(19): 82-87.
[3]	QIN Manman, WANG Zheng, WANG Li. Formal analysis and improvement of remote attestation protocol based on the SPIN [J]. Computer Engineering and Applications, 2017, 53(1): 34-38.
[4]	QIANG Xiaohui, CHEN Bo, CHEN Guokai. Analysis and detection for HeartBleed vulnerability of OpenSSL [J]. Computer Engineering and Applications, 2016, 52(9): 88-95.
[5]	LV Jianghua1, LIU Zhifeng1, XU Yatao2, ZHOU Conghua1. Verification of correctness of attribute based access control [J]. Computer Engineering and Applications, 2016, 52(18): 98-103.
[6]	XIA Chunrui1, WANG Rui1, LI Xiaojuan1, GUAN Yong1, ZHANG Jie2, WEI Hongxing3. Probabilistic model checking for path planning in dynamic environment [J]. Computer Engineering and Applications, 2016, 52(12): 5-11.
[7]	HUANG Yankai, ZHOU Yu, WEI Ou. Novel approach for attributed graph grammar response specification verification [J]. Computer Engineering and Applications, 2016, 52(12): 15-18.
[8]	WANG Ming1, WANG Rui1, LI Xiaojuan1, GUAN Yong1, ZHANG Jie2, WEI Hongxing3. Verification of mobile robot obstacle avoidance strategies in uncertain environment based on formal modeling and probabilistic analysis [J]. Computer Engineering and Applications, 2016, 52(10): 31-38.
[9]	YU Lei1, WEI Shimin1, ZHUO Zepeng2. Research on consistence of strand parameters for protocol principals in authentication test theory [J]. Computer Engineering and Applications, 2015, 51(13): 86-91.
[10]	HU Xiaohui1, CHEN Huili1, SHI Guangtian2, CHEN Yong1. Formal modeling and verification of CTCS-4 security protocol [J]. Computer Engineering and Applications, 2014, 50(4): 81-85.
[11]	ZHANG Shuqing, XU Zhongwei, CHEN Zuxi. Research on modeling and verification methods of interlocking system based on term rewriting system [J]. Computer Engineering and Applications, 2014, 50(3): 49-54.
[12]	WANG Changda1，2, DONG Xuegang1, ZHOU Conghua1，2. Security analysis of E-bank online-payment based on UCON [J]. Computer Engineering and Applications, 2014, 50(16): 90-94.
[13]	TONG Chao, WANG Jianxin, QI Jiandong. Approach of constructing defect rule base and detecting source code based on formal specification [J]. Computer Engineering and Applications, 2014, 50(13): 66-72.
[14]	YOU Qifang, YANG Jinji. Model checking of SIP protocol via SPIN [J]. Computer Engineering and Applications, 2014, 50(13): 87-89.
[15]	LV Wei, HUANG Zhiqiu, CHEN Zhe, KAN Shuanglong, WEI Ou. ESpin：SPIN-based Eclipse model checking environment [J]. Computer Engineering and Applications, 2013, 49(7): 45-51.

Effective automatic generation of security protocol’s verification model

安全协议验证模型的高效自动生成

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics