Engineering Security Protocols with Modelchecking – Radius-SHA256 and Secured Simple Protocol

Kammueller, Florian; Mapp, Glenford; Patel, Sandip; Sadiq Sani, Abubaker

Home // ICIMP 2012, The Seventh International Conference on Internet Monitoring and Protection // View article

Engineering Security Protocols with Modelchecking – Radius-SHA256 and Secured Simple Protocol

Authors:
Florian Kammueller
Glenford Mapp
Sandip Patel
Abubaker Sadiq Sani

Keywords: Modelchecking, Security Protocols

Abstract:
This paper presents Radius-SHA256, an adaptation of the Radius protocol for remote authentication for network access to the secure hash function SHA- 256 and a Secure Simple Protocol. Both protocols have been formalized in the Avispa model checker, an automated verification tool for security of protocols. The work on Radius utilizes the existing formalization of the standard Radius protocol thereby establishing general validity and transferability of the established security proof and showing how refactoring can be applied in security protocol engineering. The development of a secured version of the SP protocol shows how gradually adding cryptographic keys to a transport protocol can introduce verified security while maintaining a level of trust in the adapted protocol.

Pages: 88 to 94

Copyright: Copyright (c) IARIA, 2012

Publication date: May 27, 2012

Published in: conference

ISSN: 2308-3980

ISBN: 978-1-61208-201-1

Location: Stuttgart, Germany

Dates: from May 27, 2012 to June 1, 2012