A logical verification method for security protocols based on linear logic and BAN logic

Koji Hasebe; Mitsuhiro Okada

doi:10.1007/3-540-36532-x_24

A logical verification method for security protocols based on linear logic and BAN logic

Koji Hasebe, Mitsuhiro Okada

Department of Philosophy

Research output: Chapter in Book/Report/Conference proceeding › Chapter

2 Citations (Scopus)

Abstract

A process following a security protocol is represented by a formal proof (of a fragment of linear logic based on the multiset rewriting model), modifying the idea by Cervesato-Durgin-Lincoln-Mitchell-Scedrov [4], while the (modified) BAN logic (which was first introduced by Burrows-Abadi-Needham [2]) is used as an evaluation semantics on security-properties for processes. By this method, we can get rid of the so called "idealization" step in the verification procedure of the BAN framework. In particular, we classify BAN-style belief-inferences into two categories; the inferences which only require some syntactic structure of a process observed by a participant on one hand, and the inferences which require a participant's knowledge on the structure of a protocol and a certain honesty assumption. We call the latter the honesty inferences. We shall show how such honesty inferences are used in the evaluation semantics for the security verification. We also point out that the evaluation inferences on freshness of nonces/keys/messages are classified as in the first category but that some of such inferences lack the information how to evaluate due to the lack of a certain concrete time-constraint setting. We introduce a natural time-constraint setting in our process/protocol descriptions and enrich the expressive power of the freshness evaluation.

Original language	English
Title of host publication	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Editors	Mitsuhiro Okada, Benjamin C. Pierce, Andre Scedrov, Hideyuki Tokuda, Akinori Yonezawa
Publisher	Springer Verlag
Pages	417-440
Number of pages	24
ISBN (Print)	3540007083
DOIs	https://doi.org/10.1007/3-540-36532-x_24
Publication status	Published - 2003

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	2609
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

ASJC Scopus subject areas

Theoretical Computer Science
Computer Science(all)

Access to Document

10.1007/3-540-36532-x_24

Cite this

Hasebe, K., & Okada, M. (2003). A logical verification method for security protocols based on linear logic and BAN logic. In M. Okada, B. C. Pierce, A. Scedrov, H. Tokuda, & A. Yonezawa (Eds.), Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (pp. 417-440). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 2609). Springer Verlag. https://doi.org/10.1007/3-540-36532-x_24

A logical verification method for security protocols based on linear logic and BAN logic. / Hasebe, Koji; Okada, Mitsuhiro.
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). ed. / Mitsuhiro Okada; Benjamin C. Pierce; Andre Scedrov; Hideyuki Tokuda; Akinori Yonezawa. Springer Verlag, 2003. p. 417-440 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 2609).

Research output: Chapter in Book/Report/Conference proceeding › Chapter

Hasebe, K & Okada, M 2003, A logical verification method for security protocols based on linear logic and BAN logic. in M Okada, BC Pierce, A Scedrov, H Tokuda & A Yonezawa (eds), Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 2609, Springer Verlag, pp. 417-440. https://doi.org/10.1007/3-540-36532-x_24

Hasebe K, Okada M. A logical verification method for security protocols based on linear logic and BAN logic. In Okada M, Pierce BC, Scedrov A, Tokuda H, Yonezawa A, editors, Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Springer Verlag. 2003. p. 417-440. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/3-540-36532-x_24

Hasebe, Koji ; Okada, Mitsuhiro. / A logical verification method for security protocols based on linear logic and BAN logic. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). editor / Mitsuhiro Okada ; Benjamin C. Pierce ; Andre Scedrov ; Hideyuki Tokuda ; Akinori Yonezawa. Springer Verlag, 2003. pp. 417-440 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inbook{0f90a4e5ac7841ffb591b8a1264e8363,

title = "A logical verification method for security protocols based on linear logic and BAN logic",

abstract = "A process following a security protocol is represented by a formal proof (of a fragment of linear logic based on the multiset rewriting model), modifying the idea by Cervesato-Durgin-Lincoln-Mitchell-Scedrov [4], while the (modified) BAN logic (which was first introduced by Burrows-Abadi-Needham [2]) is used as an evaluation semantics on security-properties for processes. By this method, we can get rid of the so called {"}idealization{"} step in the verification procedure of the BAN framework. In particular, we classify BAN-style belief-inferences into two categories; the inferences which only require some syntactic structure of a process observed by a participant on one hand, and the inferences which require a participant's knowledge on the structure of a protocol and a certain honesty assumption. We call the latter the honesty inferences. We shall show how such honesty inferences are used in the evaluation semantics for the security verification. We also point out that the evaluation inferences on freshness of nonces/keys/messages are classified as in the first category but that some of such inferences lack the information how to evaluate due to the lack of a certain concrete time-constraint setting. We introduce a natural time-constraint setting in our process/protocol descriptions and enrich the expressive power of the freshness evaluation.",

author = "Koji Hasebe and Mitsuhiro Okada",

year = "2003",

doi = "10.1007/3-540-36532-x_24",

language = "English",

isbn = "3540007083",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer Verlag",

pages = "417--440",

editor = "Mitsuhiro Okada and Pierce, {Benjamin C.} and Andre Scedrov and Hideyuki Tokuda and Akinori Yonezawa",

booktitle = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

}

TY - CHAP

T1 - A logical verification method for security protocols based on linear logic and BAN logic

AU - Hasebe, Koji

AU - Okada, Mitsuhiro

PY - 2003

Y1 - 2003

N2 - A process following a security protocol is represented by a formal proof (of a fragment of linear logic based on the multiset rewriting model), modifying the idea by Cervesato-Durgin-Lincoln-Mitchell-Scedrov [4], while the (modified) BAN logic (which was first introduced by Burrows-Abadi-Needham [2]) is used as an evaluation semantics on security-properties for processes. By this method, we can get rid of the so called "idealization" step in the verification procedure of the BAN framework. In particular, we classify BAN-style belief-inferences into two categories; the inferences which only require some syntactic structure of a process observed by a participant on one hand, and the inferences which require a participant's knowledge on the structure of a protocol and a certain honesty assumption. We call the latter the honesty inferences. We shall show how such honesty inferences are used in the evaluation semantics for the security verification. We also point out that the evaluation inferences on freshness of nonces/keys/messages are classified as in the first category but that some of such inferences lack the information how to evaluate due to the lack of a certain concrete time-constraint setting. We introduce a natural time-constraint setting in our process/protocol descriptions and enrich the expressive power of the freshness evaluation.

AB - A process following a security protocol is represented by a formal proof (of a fragment of linear logic based on the multiset rewriting model), modifying the idea by Cervesato-Durgin-Lincoln-Mitchell-Scedrov [4], while the (modified) BAN logic (which was first introduced by Burrows-Abadi-Needham [2]) is used as an evaluation semantics on security-properties for processes. By this method, we can get rid of the so called "idealization" step in the verification procedure of the BAN framework. In particular, we classify BAN-style belief-inferences into two categories; the inferences which only require some syntactic structure of a process observed by a participant on one hand, and the inferences which require a participant's knowledge on the structure of a protocol and a certain honesty assumption. We call the latter the honesty inferences. We shall show how such honesty inferences are used in the evaluation semantics for the security verification. We also point out that the evaluation inferences on freshness of nonces/keys/messages are classified as in the first category but that some of such inferences lack the information how to evaluate due to the lack of a certain concrete time-constraint setting. We introduce a natural time-constraint setting in our process/protocol descriptions and enrich the expressive power of the freshness evaluation.

UR - http://www.scopus.com/inward/record.url?scp=35048859061&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=35048859061&partnerID=8YFLogxK

U2 - 10.1007/3-540-36532-x_24

DO - 10.1007/3-540-36532-x_24

M3 - Chapter

AN - SCOPUS:35048859061

SN - 3540007083

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 417

EP - 440

BT - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

A2 - Okada, Mitsuhiro

A2 - Pierce, Benjamin C.

A2 - Scedrov, Andre

A2 - Tokuda, Hideyuki

A2 - Yonezawa, Akinori

PB - Springer Verlag

ER -

A logical verification method for security protocols based on linear logic and BAN logic

Abstract

Publication series

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this