Informatics Report Series


Report   

EDI-INF-RR-0269


Related Pages

Report (by Number) Index
Report (by Date) Index
Author Index
Institute Index

Home
Title:Attacking Group Multicast Key Management Protocols Using CORAL
Authors: Graham Steel ; Alan Bundy
Date: 2004
Publication Title:Proceedings of the ARSPA Workshop at IJCAR 2004, ENTCS
Publication Type:Conference Paper
Volume No:125(1) Page Nos:125-144
Abstract:
This paper describes the modelling of a two multicast group key management protocols in a first-order inductive model, and the discovery of previously unknown attacks on them by the automated inductive counterexample finder CORAL. These kinds of protocols had not been analysed in a scenario with an active intruder before. CORAL proved to be a suitable tool for a job because, unlike most automated tools for discovering attacks, it deals directly with an open-ended model where the number of agents and the roles they play are unbounded. Additionally, CORAL s model allows us to reason explicitly about lists of terms in a message, which proved to be essential for modelling the second protocol. In the course of the case studies, we also discuss other issues surrounding multicast protocol analysis, including identifying the goals of the protocol with respect to the intended trust model, modelling of the control conditions, which are considerably more complex than for standard two and three party protocols, and effective searching of the state space generated by the model, which has a much larger branching rate than for standard protocols.
Links To Paper
1st link
Bibtex format
@InProceedings{EDI-INF-RR-0269,
author = { Graham Steel and Alan Bundy },
title = {Attacking Group Multicast Key Management Protocols Using CORAL},
book title = {Proceedings of the ARSPA Workshop at IJCAR 2004, ENTCS},
year = 2004,
volume = {125(1)},
pages = {125-144},
url = {http://homepages.inf.ed.ac.uk/gsteel/papers/arspa04.pdf},
}


Home : Publications : Report 

Please mail <reports@inf.ed.ac.uk> with any changes or corrections.
Unless explicitly stated otherwise, all material is copyright The University of Edinburgh