Skip to Main content Skip to Navigation
Theses

Automatic verification of cryptographic protocols : privacy-type properties

Abstract : Many tools have been developed to automatically verify security properties on cryptographic protocols. But until recently, most tools focused on trace properties (or reachability properties) such as authentication and secrecy. However, many security properties cannot be expressed as trace properties, but can be written as equivalence properties. Privacy, unlinkability, and strong secrecy are typical examples of equivalence properties. Intuitively, two protocols P, Q are equivalent if an adversary can not distinguish P from Q by interacting with these processes. In the literature, several notions of equivalence were studied, e.g. trace equivalence or a stronger one, observational equivalence. However, it is often very difficult to prove by hand any of these equivalences, hence the need for efficient and automatic tools. We first worked on an approach that rely on constraint solving techniques and that is well suited for bounded number of sessions. We provided a new algorithm for deciding the trace equivalence between processes that may contain negative tests and non-determinism. We applied our results on concrete examples such as anonymity of the Private Authentication protocol and the E-passport protocol. We also investigated composition results. More precisely, we focused on parallel composition under shared secrets. We showed that under certain conditions on the protocols, the privacy type properties are preserved under parallel composition and under shared secrets. We applied our result on the e-passport protocol. At last this work presents an extension of the automatic protocol verifier ProVerif in order to prove more observational equivalences. This extension have been implemented in ProVerif and allows us to automatically prove anonymity in the private authentication protocol.
Document type :
Theses
Complete list of metadatas

Cited literature [10 references]  Display  Hide  Download

https://tel.archives-ouvertes.fr/tel-00861389
Contributor : Abes Star :  Contact
Submitted on : Thursday, September 12, 2013 - 3:57:11 PM
Last modification on : Thursday, July 2, 2020 - 5:26:02 PM
Long-term archiving on: : Friday, December 13, 2013 - 4:22:30 AM

File

Cheval2012.pdf
Version validated by the jury (STAR)

Identifiers

  • HAL Id : tel-00861389, version 1

Collections

Citation

Vincent Cheval. Automatic verification of cryptographic protocols : privacy-type properties. Other [cs.OH]. École normale supérieure de Cachan - ENS Cachan, 2012. English. ⟨NNT : 2012DENS0075⟩. ⟨tel-00861389⟩

Share

Metrics

Record views

496

Files downloads

390