Register now to access 7 million high quality study materials (What's Course Hero?) Course Hero is the premier provider of high quality online educational resources. With millions of study documents, online tutors, digital flashcards and free courseware, Course Hero is helping students learn more efficiently and effectively. Whether you're interested in exploring new subjects or mastering key topics for your next exam, Course Hero has the tools you need to achieve your goals.
8 Pages
pirtle-goldsby-notes-12-10
Course: CSE 914, Fall 2008School: Michigan State University
Rating:
Word Count: 1125
Document Preview
of Extensions BAN by Heather Goldsby Michelle Pirtle CSE 914 - Michigan State University Overview BAN Logic Burrows, Abadi, and Needham GNY Gong, Needham, Yahalom RV AT Abadi and Tuttle VO van Oorschot SVO Syverson and van Oorschot Wenbo Mao Mao Comparison Conclusion CSE 914 - Michigan State University BAN Logic 1989 Goal: Offer a formalization of the description and analysis of authentication...
Unformatted Document Excerpt
Coursehero >> Michigan >> Michigan State University >> CSE 914Course Hero has millions of student submitted documents similar to the one
below including study guides, practice problems, reference materials, practice exams, textbook help and tutor support.
Course Hero has millions of student submitted documents similar to the one
below including study guides, practice problems, reference materials, practice exams, textbook help and tutor support.
of Extensions BAN
by Heather Goldsby Michelle Pirtle
CSE 914 - Michigan State University
Overview
BAN Logic Burrows, Abadi, and Needham GNY Gong, Needham, Yahalom RV AT Abadi and Tuttle VO van Oorschot SVO Syverson and van Oorschot Wenbo Mao Mao Comparison Conclusion
CSE 914 - Michigan State University
BAN Logic 1989
Goal: Offer a formalization of the description and analysis of authentication protocols over distributed computer systems
State what is accomplished by the protocol Allow reasoning about, and comparisons of, protocol assumptions Draw attention to unnecessary actions that can be removed from a protocol Highlight any encrypted messages that could be sent in clear text
Tool: SPEAR
Model analyzer for BAN Logic and GNY Developed for security protocols
CSE 914 - Michigan State University
1
BAN (cont.)
Advantages
Introduced a simple and powerful notation Logic postulates (ie. Nonce-verification rule) are straight forward to apply for deriving BAN beliefs
Disadvantages
Idealization step can cause analysis problems No formal syntax or semantics Does not account for improper encryption A principals beliefs cannot be changed at later stages of the protocol Logic limited to analyze authentication protocols Honesty and trust in other principals is not addressed
CSE 914 - Michigan State University
Foundation of Each Logic
BAN GNY BAN GNY GS AT VO SVO Mao RV X X X X X X X GS AT VO SVO Mao RV
X X X
X X X
X X X
X X
X
Read across - States which logic(s) were used to design the new logic Read down - States which logic(s) extended from the logic Logics listed in increasing year of publication
GNY - 1990
Goal: Gain ability to analyze more protocols in a more consistent manner Extends and reformulates BAN
Notions are expanded New rules and constructs Eliminate some of BANs universal assumptions
Tools:
SPEAR
Model analyzer for BAN Logic and GNY Developed for security protocols
Pattern scanner used as a parser for not-originated-here notion
CSE 914 - Michigan State University
2
GNY (cont.)
Advantages
Multiple levels of trust can be used in reasoning More protocols can be analyzed Making some BAN assumptions explicit allows for generality
Disadvantages
R6 is unsound Combining rules can result in unsound conclusions The set of rules is incomplete Some rules have redundant premises
E.g. I2
CSE 914 - Michigan State University
RV 1996
Goal: Provide a logic of belief, based on BAN for use with a theory generator Extension of BAN
Explicit interpretation
Idealization step
Fails to consider other interpretations Hidden assumptions about safety of message
Responsibility
Account for principals irresponsible behavior
Tool: RVChecker
Theory Generator
CSE 914 - Michigan State University
RV (cont.)
Advantages
Maintains the original simplicity of BAN Has tool support Addresses principal responsibility and the idealization step
Disadvantages
No formal syntax or semantics Unable to specify full range of protocols
CSE 914 - Michigan State University
3
AT 1991
Goal: Find a natural semantic model for BAN Extensions:
Provides formal syntax and semantics Simplifies existing BAN inference rules Reformulates inference rules as axioms Removes need for honesty
CSE 914 - Michigan State University
AT (cont.)
Advantages
Formal syntax and semantics Addresses question of principal honesty More elegant proof system owing to rules of BAN being rewritten as axioms
Disadvantages
No tool support Assumes perfect encryption Does not address idealization step
CSE 914 - Michigan State University
VO 1993
Goal: Extend BAN family of logics in a manner that allows authenticated key agreement protocols to be analyzed, and to better goals examine and beliefs in the protocols. Extensions
Refine the BAN construct shares the good crypto key Define new key confirmation primitive Define new postulates for use with reasoning about jointly established keys
CSE 914 - Michigan State University
4
VO (cont.)
Advantages
Accomplishes analysis of a new set of protocols Allows for a closer analysis of the goals and beliefs of the new set of protocols
Disadvantages
Time is ignored Message ordering is not addressed
CSE 914 - Michigan State University
SVO 1994
Goal: Unification of BAN, GNY, AT, & VO Extensions:
Include public keys New functions Message comprehensibility
CSE 914 - Michigan State University
SVO (cont.)
Advantages
Proved to be sound
Disadvantages
Not suited for tool support
SVD revamped SVO: developed to be compatible with Isabelle theorem prover
CSE 914 - Michigan State University
5
Mao 1995
Goal: Formalize the idealization step Extension:
Rule-based idealization technique Remove need for perfect encryption assumption
CSE 914 - Michigan State University
Mao (cont.)
Advantages
Formalization of idealization technique Eliminates assumption of perfect cryptography
Disadvantages
No tool support No proof of soundness for idealization rules
CSE 914 - Michigan State University
Comparison Table Part 1
Syntax BAN Logical Formal Semantics NO Separation of Semantics and Syntax NO Minimize Increases Number Universal of Protocols Assumptions Analyzed YES Cryptographic Adversary NO
GNY
Logical
NO
NO
YES
NO
RV AT VO SVO Mao
Logical Formal Logical Formal Formal
NO YES NO YES YES
NO YES NO YES YES
NO NO YES YES NO
NO NO Yes NO NO
NO NO
NO
CSE 914 - Michigan State University
6
Comparison Table Part 2
Assumes Perfect Address Cryptography Idealization Honesty BAN YES YES N O YES - notoriginatedGNY YES here YES YES - comes up with YES - done interpretation with legit RV YES rules rules AT YES NO YES VO YES NO N O SVO YES NO N O Mao NO YES N O Differ Levels of Trust NO Tool Support SPEAR SPEAR, pattern scanner
YES
NO NO YES YES YES
RVChecker NO NO NO NO
CSE 914 - Michigan State University
Conclusions
BAN gave a very good foundation to expand upon BAN-like logics do not need to be limited to authen...
Textbooks related to the document above:
Find millions of documents on Course Hero - Study Guides, Lecture Notes, Reference Materials, Practice Exams and more.
Course Hero has millions of course specific materials providing students with the best way to expand
their education.
Below is a small sample set of documents:
Below is a small sample set of documents:
Michigan State University - CSE - 914
e fUAUfuywu8ffnvf#U wunvAf o l z l p qq l v l l p v lqq z p w s w lvv v p g s p l w qq v z wn8f87fjjfyUyFf#Uk@iwuyfQ)fkUrnfAiw8fs Hw w lvv q i p l vv oq q p z p v w lvv l ~ 7 5 3 1 @iwu
Michigan State University - CSE - 914
Case Study: Using PVS to Analyze Security ProtocolsKyle TaylorOverviewlUsing PVS: Specify Communication Specify Encryption Specify Intruder Specify Protocol Analyze ResultsWhat is PVSlGeneral Prototype Verification System Induct
Michigan State University - CSE - 914
Formal Methods for Intrusion DetectionPresented by Brian KelloggCSE 914: Formal Methods for Software Development Michigan State University December 11th , 2002Purpose and Methodn n nnFind intrusion detection methods that utilize formal meth
Michigan State University - CSE - 914
~# ! " ! cXb f XiXb Xc A f `WXcX`p{XbXXcXu iXXX`v XXY e U u { f Y f Y W Y U g u b e Y c fXU iXAh`WX`XAb or f e fXX3A`XXXXY ) Y v U W Y v v U q U x Y v c U i U e v f { `vXX`hv fXXb f Y g W g W XXYu iXpX) c U g u b Y v Y W
Michigan State University - CSE - 914
Spi CalculusGokhan Gokoz Chad R. MeinersWhat Spi Calculus Is Spi calculus is a form of pi calculus extended to support cryptography. Pi calculus is a language for describing and implementing concurrent processes over communication channels. Pi
Michigan State University - CSE - 914
CSE 914 - BAN Logic PresentationBy Heather Goldsby & Michelle Pirtle&)!10)!('"$" & % # ! (Mike Burrows, Marin Abadi, Roger Needham) Published 1989, SRC Research Report 39Presentation by Heather Goldsby Michelle PirtleProblem S
Michigan State University - CSE - 842
Syntactic Parsing CSE842: Natural Language ProcessingLecture 9: Parsing with Context Free Grammar2/11/2009 CSE842, Spring 2009, MSU 1 Declarative formalisms like CFGs define the legal strings of a language but dont specify how to recognize or ass
Michigan State University - CEM - 988
Working with TurbopumpsIntroduction to high and ultra high vacuum productionWorking with TurbopumpsForewordEmpty space, meaning a volume not filled with air or any other gas is referred to as a vacuum. Ideal vacuum conditions exist in interstel
Michigan State University - CEM - 255
Michigan State University - CEM - 262
Chemistry 262Quantitative Analysis Syllabus and Course CalendarSpring 2009Instructor: Dr. Thomas P. Carter Room 383A Chemistry Phone: 355-9715 x280 Email: cartert@msu.edu My Office Hours: Course Web Site: Lectures: Labs: Recitations: Drop by an
Michigan State University - CEM - 419
Laboratories 2 and 3 Optical Ellipsometry of Alkanethiol monolayers on GoldOBJECTIVE: To measure the thickness and structural evolution properties of alkanethiol monolayers on gold substrates. Need 3 substrates per group 1. 2. 3. Monolayer formed fr
Michigan State University - CEM - 992
Michigan State University Chemistry 992Spring 2008Problem Set 1Due January 22 1. Show that d ( q, p, t ) / dt = 0 , with the phase space density, by writing out , in terms of its possible variations and comparing the result with Liouvilles the
Michigan State University - CEM - 151
Exam 3 CEM 151 Wednesday, November 8, 2006 Name_ Section_ PID_ Multiple choice (3 points each). 1. Which of the following is reduced in the reaction: 2FeCl3 + H2 -> 2FeCl2 + 2HCl a. Fe b. Cl c. H d. nothing e. a and b f. a, b and c e. a and c 2. Give
Michigan State University - CEM - 419
Laboratories 8-10 Electrochemical Investigation of SAM's Laboratory 9 Investigation of the Permeability of Alkanethiol Monolayers This lab aims at using electrochemistry to expose the defects (or lack thereof) in selfassembled monolayer films. You wi
Michigan State University - CEM - 419
Laboratories 2 & 3 Contact Angles and Surface EnergiesIn this laboratory, you will use contact angle measurements in an effort to determine surface energies. Surface energies are important in understanding wetting of materials and adhesion propertie
Michigan State University - CEM - 151
Exam 1 September 19, 2007 Name_ Section_ PID_ Multiple choice (3 points each). 1. What was the major result from Milikan's oil drop experiment? (a) the structure of the atom (b) The mass of the proton (c) The mass of the neutron (d) The mass of the e
Michigan State University - CEM - 882
CEM 882 Problem Set 1 Due Friday, January 30, 2008 in class It may be helpful to look at Voet and Voet or another Biochemistry text. 1. Draw the chemical structures of the following oligopeptides in their predominant ionic forms at pH 7.0: a. (10 po
Michigan State University - CEM - 141
CEM 141 CALENDAR & SYLLABUS FALL 2007 & SPRING 2008Fall Date Spring Day Date Day Introduction Aug 27 M Jan 7 M 1 Introduction & review; units of measurement; calculations Atoms & Elements, Molecules & Compounds, Ions Aug 29 Aug 31 Sep 3 W F M Jan 9
Michigan State University - CEM - 151
Exam 4 CEM 151 November 29, 2006 Name_ Section_ PID_ (Multiple choice, 4 points) 1) The coordination sphere of a complex consists of _. A) the central metal ion only B) the ligands C) the central metal ion and the ligands bonded to it D) the primary
Michigan State University - CEM - 419
Laboratories 8-10 Electrochemical Investigation of SAM's Laboratory 10 Cyclic Voltammery with Immobilized Films In this laboratory, you will derivatize a self-assembled monolayer to attach a redox couple (ferrocene) to a surface. This will allow us t
Michigan State University - CEM - 419
FTIR Spectroscopy of an alkanethiol monolayer Laboratories 11 & 12Purpose. This experiment has two goals: (1) measuring the extent of order within the alkanethiol monolayers you have made and (2) determining the tilt angle of the aliphatic chains. W
Michigan State University - CEM - 434
Chapter 1Read pp. 1-22 Problems 1,7,8,9 and 10Analytical chemistry deals with methods for determining the chemical composition of samples of matter: a measurement science. Two types: classical (or so-called "wet" chemical methods) and instrumental
Michigan State University - CEM - 151
Exam 4 CEM 151 November 29, 2006 Name_ Section_ PID_ (Multiple choice, 4 points) 1. Which of the following is a semiconductor? a. InI c. K3As e. H2S b. InI3 d. InP f. MgF2 2. A wider band gap corresponds to a material that has the properties of a a.
Michigan State University - CEM - 419
Quartz Crystal Microbalance (QCM) GravimetryPurpose To study in situ solution phase kinetics of adsorption/desorption of alkanethiolson gold. To determine the free energy, enthalpy, and entropy of adsorption ofoctadecanethiol on gold in an n-h
Michigan State University - CEM - 419
Introduction to Ellipsometry Laboratory 1Objectives: During this laboratory, you will become familiar with the ellipsometer as well as with the ellipsometry software. You will also learn how to calibrate the angle of reflection and make measurements
Michigan State University - CEM - 882
CEM 882, Problem Set 3 Due Friday, February 20 in class 1. The chemical structure of hemoglobin heme and the visible spectra of hemoglobin are shown below. We consider a model in which the prominent features in the hemoglobin spectra are due to elec
Michigan State University - CEM - 434
Chapter 8: Introduction to Atomic SpectrometryRead: pp. 215 228 Problems: none Why choose atomic spectrometry? Three major types of spectrometric methods for identifying elements present in matter: optical spectrometry (Chap. 8, 9, 10) mass sp
Michigan State University - PHY - 431
Fiber OpticsDan O'Brien Richard Chouinard Kyle Degrave Optical fibers work on the principal of total internal reflection. They can be used to transmit data signals in the form of light. They are used in endoscopes, which transmit an image using
Michigan State University - MILLE - 300
RYAN MILLER 1228 Waverly Dr., Kalamazoo, MI 49048 web site: www.msu.edu/~mille300PROFESSIONAL OBJECTIVE Seeking the computers and technology coordinator position(s) at Comstock Northeast Middle School in Kalamazoo, Michigan. EDUCATION B.A., Hope Col
Michigan State University - MILLE - 300
1228 Waverly Drive, Kalamazoo, MI 49048 Email: millerr@comstockps.org Portfolio: www.msu.edu/~mille300 PROFESSIONAL OBJECTIVE Seeking the Director of Technology position. EDUCATION Master of Arts Degree in Educational Technology, Michigan State Unive
Michigan State University - MILLE - 300
RYAN MILLER 1228 Waverly Drive, Kalamazoo, MI 49048 Email: millerr@comstockps.org Portfolio: www.msu.edu/~mille300 PROFESSIONAL OBJECTIVE Seeking the Student Services Consultant position. EDUCATION Master of Arts Degree in Educational Technology, Mic