Verification methods for the computationally complete symbolic attacker based on indistinguishability

Gergei Bana, Rohit Chadha, Ajay Kumar Eeralla, Mitsuhiro Okada

Research output: Contribution to journalArticle

Abstract

In recent years, a new approach has been developed for verifying security protocols with the aim of combining the benefits of symbolic attackers and the benefits of unconditional soundness: the technique of the computationally complete symbolic attacker of Bana and Comon (BC) [8]. In this article, we argue that the real breakthrough of this technique is the recent introduction of its version for indistinguishability [9], because, with the extensions we introduce here, for the first time, there is a computationally sound symbolic technique that is syntactically strikingly simple, to which translating standard computational security notions is a straightforward matter, and that can be effectively used for verification of not only equivalence properties but trace properties of protocols as well. We first fully develop the core elements of this newer version by introducing several new axioms. We illustrate the power and the diverse use of the introduced axioms on simple examples first. We introduce an axiom expressing the Decisional Diffie-Hellman property. We analyze the Diffie-Hellman key exchange, both in its simplest form and an authenticated version as well. We provide computationally sound verification of real-or-random secrecy of the Diffie-Hellman key exchange protocol formultiple sessions, without any restrictions on the computational implementation other than the DDH assumption. We also show authentication for a simplified version of the station-to-station protocol using UF-CMA assumption for digital signatures. Finally, we axiomatize IND-CPA, IND-CCA1, and IND-CCA2 security properties and illustrate their usage. We have formalized the axiomatic system in an interactive theorem prover, Coq, and have machine-checked the proofs of various auxiliary theorems and security properties of Diffie-Hellman and station-to-station protocol.

Original languageEnglish
Article number2
JournalACM Transactions on Computational Logic
Volume21
Issue number1
DOIs
Publication statusPublished - 2019 Oct

Keywords

  • Authentication
  • Computational model
  • Computational soundness
  • Dolev-Yao model
  • First-order logic
  • Secrecy

ASJC Scopus subject areas

  • Theoretical Computer Science
  • Computer Science(all)
  • Logic
  • Computational Mathematics

Fingerprint Dive into the research topics of 'Verification methods for the computationally complete symbolic attacker based on indistinguishability'. Together they form a unique fingerprint.

  • Cite this