Yuelei XIAO,Zhixiang ZHU,Yong ZHANG

DOI: https://doi.org/10.13682/j.issn.2095-6533.2015.05.003

2015-01-01

Abstract:By analyzing the process of security protocols,the definition of driving module (DM) is introduced,and then regular and penetrator DMs are formed according to the Strand Space Model (SSM).Based on this,a DM-based model checking method is proposed.Theoretical analysis indicates that this method is prefect in terms of searching breadth and depth,and can avoid the state space explosion problem.Therefore,this method can be used not only to get the attack scenarios of a flawed security protocol,but also to prove that an unflawed security protocol is secure.Moreover,the Otway-Rees protocol and the TLS protocol are analyzed based on this method.As a result,various attack scenarios of the Otway-Rees protocol are discovered and two secure improved Otway-Rees protocols are put forward,and therefore the TLS protocol is proved to be secure.

Qi Wenhua,Zhang Qishan,Liu Jianwei

2007-01-01

Abstract:The formal analysis method for security protocols is classified and analyzed based on the history.The formal analysis is clas- sified in four sorts including the forepart phase based on the observation,the early phase based on the BAN logic,the turning phase based on the model detecting and the attesting phase based on Strand Space.Authors survey the characteristic of the formal analysis method on se- curity protocols,describe the merits and flaws.The analysis method and result can he used for a reference to security protocol researchers.

LIU Ying-jie,YAO Zheng-an

DOI: https://doi.org/10.3969/j.issn.1000-3428.2007.23.057

2007-01-01

Abstract:This paper presents a new logic which can be used to analyze security protocols.There is no necessity to idealize protocols when analyzing authentication protocols,which can avoid analysis errors caused by informal idealization.The new logic can be used to analyze accountability and fairness in electronic commerce protocols including the real-world protocols.The process of analyzing protocols is concise and can be implemented automatically.

CHEN Qiang,HUANG Lian-sheng,ZHAO Xiu-wen

DOI: https://doi.org/10.3969/j.issn.1001-3695.2006.06.033

2006-01-01

Abstract:This paper presents a combined analysis method for security protocols.By specifying security protocols using Common Authentication Protocol Specification Language,then convert CAPSL specification into formal inputs for other analysis tools by connector.This method can utilize the advantage of various analysis tools and ensure the accuracy of formal analysis.Meanwhile,it is convenient for analyzer.We design two CAPSL connector and give an instance.

Weiqiang Kong,Tomohiro Shiraishi,Yuki Mizushima,Noriyuki Katahira,Akira Fukuda,Masahiko Watanabe

2010-01-01

Abstract:State Transition Matrix (STM) is a flexible table-like modeling language that has been frequently used for specifying behavior of distributed systems. In this paper, we first present a formalization of the static and dynamic aspects of a STM design (i.e., design written in STM). Consequentially, based on this formalization, we investigate how a STM design can be formally analyzed using SAL, precisely SAL infinite bounded model checker, through a language translation. Specifically, the formal analysis is conducted focusing on four kinds of safety properties related to: (1) Invalid Cells, (2) Static Constraints, (3) Dynamic Constraints, and (4) Deadlock, respectively, since the fulfillment of these properties is commonly desired by industrial practitioners for a STM design. A simple Internet Connection Control system is used as our demonstration example.

Yuelei XIAO,Zhixiang ZHU,Yong ZHANG

DOI: https://doi.org/10.3969/j.issn1672-9722.2015.07.027

2015-01-01

Abstract:By analyzing the process of a security protocol ,the definition of Driving Module(DM ) is given .Then ,regu‐lar and penetrator DMs are formed according to the Strand Space Model(SSM ) .Finally ,a new method for analyzing session key distributed protocols is proposed based on these regular and penetrator DMs ,i .e .a model checking method based on DMs .Theorem proofs and case analysis show that the search breadth and depth of this method is prefect ,and it can avoid the state space explosion problem .

Liang Wan,Wenchang Shi

DOI: https://doi.org/10.1109/icasid.2012.6325286

2012-01-01

Abstract:Network protocol vulnerability detection is paramount to network security. Formalization provides an important way for vulnerability detection. In this paper, we apply TLA, which is a powerful tool for formal analysis, to analyze network protocols. An approach is proposed that aims to detect vulnerabilities of a protocol effectively with the TLA, with the Kerberos protocol being taken as an example. Firstly, roles for the protocol, especially those related to intruders, are created. Then actions of the roles are specified. Sessions among the roles are built. And environment parameters are set. A prototype program is developed to implement the approach, which covers the model and the detection properties of the protocol. Experiments show that our approach is effective and powerful in specifying and checking a protocol, and it is better than SPIN and SMV.

Yun-Hui YING,Min ZHANG

DOI: https://doi.org/10.13328/j.cnki.jos.005469

2018-01-01

Abstract:CCSL (abbreviated for clock constraint specification language) is a formal language for specifying the constraints on the occurrences of events in real-time and embedded systems.CCSL is a companion language of MARTE (abbreviated for modeling and analysis of real-time and embedded systems),a UML profile which provides support for specification,design,and verification/validation stages for model-driven development of real time and embedded Systems.Given a set of CCSL constraints,it is necessary to check if there exist schedules that satisfy all the constraints and if all the behaviors that conforming to the constraints will never incur deadlock of systems.Many approaches have been proposed based on state transition system,timed automata,etc.However,most of the existing approaches have some drawbacks,such as being ad hoc to specific formal analysis,and being suited to only subsets of CCSL constraints or inefficient.In this paper,a unified and efficient SMT-based approach to formal analysis of CCSL is proposed.This approach is unified in that it can be applied to various analysis such as validity proving,trace analysis,deadlock detection and LTL model checking.A prototype tool for the new approach is implemented to support the four types of formal analysis,utilizing the state-of-the-art SMT solvers such as Z3 and CVC4.With efficient SMT solvers,verification can be completed in a reasonable time,as demonstrated by the experimental results in the case studies.

Tieming Chen,Zhenbo Yu,Shijian Li,Bo Chen

DOI: https://doi.org/10.1155/2016/8797568

IF: 2.336

2016-01-01

Journal of Sensors

Abstract:Model checking has successfully been applied on verification of security protocols, but the modeling process is always tedious and proficient knowledge of formal method is also needed although the final verification could be automatic depending on specific tools. At the same time, due to the appearance of novel kind of networks, such as wireless sensor networks (WSN) and wireless body area networks (WBAN), formal modeling and verification for these domain-specific systems are quite challenging. In this paper, a specific and novel formal modeling and verification method is proposed and implemented using an expandable tool called PAT to do WSN-specific security verification. At first, an abstract modeling data structure for CSP#, which is built in PAT, is developed to support the nodemobility related specification for modeling location-based node activity. Then, the traditional Dolev Yao model is redefined to facilitate modeling of location-specific attack behaviors on security mechanism. A throughout formal verification application on a location-based security protocol in WSN is described in detail to show the usability and effectiveness of the proposed methodology. Furthermore, also a novel location-based authentication security protocol in WBAN can be successfully modeled and verified directly using our method, which is, to the best of our knowledge, the first effort on employing model checking for automatic analysis of authentication protocol for WBAN.

FENG Jun-jun,LI Guang-yao,JIANG Yun

DOI: https://doi.org/10.3969/j.issn.1006-2475.2007.02.036

2007-01-01

Abstract:Formal method has been advocated as an important means of improving the safety and reliability of software systems,especial those which are safety-critical.This paper proposes a new simple trace semantics that can be used to specify security properties,this technique supports a protocol designer to provide formal analysis of the security properties.It illustrates the utility of this technique by exposing two attacks on the well studied protocol TMN.

Y Lee,XY Chen,XQ Tong,JZ Luo

DOI: https://doi.org/10.1109/tencon.2002.1181249

2002-01-01

Abstract:The security of communication protocols needs to be considered in a distributed network system, and the formal analysis is one of most important methods in evaluating the security of a protocol. However there is a lack of effective formal analysis tools in analyzing the security of a protocol. In this paper we raise a formal logic used for analyzing security of a protocol, the Select Accept Dynamic Logic. and describe successfully the attack act to the communication protocols - the TMN (Tatebayashi et al. (1990)) protocol and the Needham-Schroeder (1978) protocol - with this logic. The Select Accept Dynamic Logic will provide a new effective tool for the analysis of protocols.

Ge Yi,Huang Wenchao,Xiong Yan

DOI: https://doi.org/10.19734/j.issn.1001-3695.2022.08.0446

2023-01-01

Abstract:With the development of formal analysis technology of security protocols, automatic verification using tools has been realized, but modeling still needs to rely on manual modeling by professionals, which is difficult and costly and limits the further spread of formal analysis technology.In order to improve the automation of formal modeling, this paper proposed a scheme of formal assistant modeling based on security protocol code.Firstly, the method used taint analysis to obtain communication processes and record the cryptographic primitive operations.Then, it constructed the protocol communication state machine according to the sequential relationship between communication processes.Finally, it generated a formal model according to the syntax of Tamarin, a mainstream formal analysis tool for security protocols.Experimental results show that this scheme can gene-rate the key parts of the formal model and improves the degree of automation of the formal modeling, which contributes to the spread of formal analysis technology.

Hanrong Zhang,Jingyuan Huang,Kai Mei,Yifei Yao,Zhenting Wang,Chenlu Zhan,Hongwei Wang,Yongfeng Zhang

2024-10-04

Abstract:Although LLM-based agents, powered by Large Language Models (LLMs), can use external tools and memory mechanisms to solve complex real-world tasks, they may also introduce critical security vulnerabilities. However, the existing literature does not comprehensively evaluate attacks and defenses against LLM-based agents. To address this, we introduce Agent Security Bench (ASB), a comprehensive framework designed to formalize, benchmark, and evaluate the attacks and defenses of LLM-based agents, including 10 scenarios (e.g., e-commerce, autonomous driving, finance), 10 agents targeting the scenarios, over 400 tools, 23 different types of attack/defense methods, and 8 evaluation metrics. Based on ASB, we benchmark 10 prompt injection attacks, a memory poisoning attack, a novel Plan-of-Thought backdoor attack, a mixed attack, and 10 corresponding defenses across 13 LLM backbones with nearly 90,000 testing cases in total. Our benchmark results reveal critical vulnerabilities in different stages of agent operation, including system prompt, user prompt handling, tool usage, and memory retrieval, with the highest average attack success rate of 84.30\%, but limited effectiveness shown in current defenses, unveiling important works to be done in terms of agent security for the community. Our code can be found at <a class="link-external link-https" href="https://github.com/agiresearch/ASB" rel="external noopener nofollow">this https URL</a>.

Cryptography and Security,Artificial Intelligence

WANG Wei

DOI: https://doi.org/10.3969/j.issn.1671-0428.2011.10.011

IF: 5.105

2011-01-01

Computers & Security

Abstract:Formal method is a powerful tool of analysis and verification of security properties of security protocols.In this paper,based on the first-order theorem prover ProVerif researched deeply,we analyzed the simplified Authentication Protocol Needham-Schroeder by formal method.

LIU Nan,ZHU Wen-ye,ZHU Yue-fei,CHEN Chen

2010-01-01

Computer Science

Abstract:Formal method and automated tools are both necessary and efficient for analyzing practical security protocols.Theorem proving theory has been studied intensively because it can verify infinite-state system.But there are still limitations when verifying large scale system automatically.A formal model for security protocols was proposed based on theorem proving and rewriting approximation theory.It utilizes term rewriting system and tree automata to model protocol and the knowledge of intruder.An automatic generated approximation algorithm was designed to calculate the fix-point tree automata.In this model,secrecy and authentication were discussed.By a case of study,NSPK was analyzed effectively.

Luo JunZhou,Yang Ming

DOI: https://doi.org/10.1007/s11432-007-0015-8

2007-01-01

Science in China Series F Information Sciences

Abstract:Security protocol is specified as the procedure of challenge-response, which uses applied cryptography to confirm the existence of other principals and fulfill some data negotiation such as session keys. Most of the existing analysis methods, which either adopt theorem proving techniques such as state exploration or logic reasoning techniques such as authentication logic, face the conflicts between analysis power and operability. To solve the problem, a new efficient method is proposed that provides SSM semantics-based definition of secrecy and authentication goals and applies authentication logic as fundamental analysis techniques, in which secrecy analysis is split into two parts: Explicit-information-Leakage and Implicit-Information-Leakage, and correspondence analysis is concluded as the analysis of the existence relationship of Strands and the agreement of Strand parameters. This new method owns both the power of the Strand Space Model and concision of authentication logic.

Tingyuan Li,Xiaodong Liu,Zhiguang Qin,Zhang Xuanfang

DOI: https://doi.org/10.1109/ECBI.2009.101

2009-01-01

Abstract:BAN logic can prove whether a protocol can reach expected target and find some flaws in the protocol. The paper analyzed constitute of BAN logic and analysis steps. On the basis of the above work, BAN logic was used to construct an ideal model of the improved NSSK protocol and the security of the NSSK protocol was analyzed with the initial hypothesis and the logic postulate. The paper also pointed out various kinds of demerit of BAN logic and discussed some possible improvement.

毛中全,刘楠,顾纯祥,祝跃飞

DOI: https://doi.org/10.3969/j.issn.1000-3428.2008.13.054

2008-01-01

Abstract:This paper proposes a formal model based on state transition system. Dolev-Yao intruder model are assumed, and based on state transition system, message and event are semantically encoded, protocol rule are defined by rewrite relation, and security properties are descripted by event set. It proposes inspection strategy for security properties. The model can give accurate formal specifications for security protocols, and is easy to realize automatic analysis.

宋震,张艳,李舟军,陈火旺

DOI: https://doi.org/10.3969/j.issn.1002-137X.2003.08.007

2003-01-01

Computer Science

Abstract:Security protocols use cryptography system to complete the tasks of principal identity authentication andseccion key distribution. The correctness of security protocols is of vital importance to ensure the security of the Inter-net application. Formal methods have been proved to be a valid approach to analyze and verify security protocols. Thispaper briefly introduces the three main styles in the field of security protocol analysis and their representative work.After that,it points out the future deveopment direction.

Tingyuan Li,Xiaodong Liu,Zhiguang Qin,Xuanfang Zhang

DOI: https://doi.org/10.1109/DBTA.2009.26

2009-01-01

Abstract:BAN logic can prove whether a protocol can reach expected target and find some flaws in the protocol. The paper analyzed constitute of BAN logic and analysis steps. On the basis of the above work, BAN logic was used to construct an ideal model of the Otway-Rees protocol and the security of the protocol was analyzed with the initial hypothesis and the logic postulate. The paper also pointed out various kinds of demerit of BAN logic and discussed some possible improvement.