Transforming Password Protocols to Compose
Identifieur interne : 001F62 ( Main/Exploration ); précédent : 001F61; suivant : 001F63Transforming Password Protocols to Compose
Auteurs : Céline Chevalier [France] ; Stéphanie Delaune [France] ; Steve Kremer [France]Source :
Abstract
Formal, symbolic techniques are extremely useful for modelling and analysing security protocols. They improved our understanding of security protocols, allowed to discover flaws, and also provide support for protocol design. However, such analyses usually consider that the protocol is executed in isolation or assume a bounded number of protocol sessions. Hence, no security guarantee is provided when the protocol is executed in a more complex environment. In this paper, we study whether password protocols can be safely composed, even when a same password is reused. More precisely, we present a transformation which maps a password protocol that is secure for a single protocol session (a decidable problem) to a protocol that is secure for an unbounded number of sessions. Our result provides an effective strategy to design secure password protocols: (i) design a protocol intended to be secure for one protocol session; (ii) apply our transformation and obtain a protocol which is secure for an unbounded number of sessions. Our technique also applies to compose different password protocols allowing us to obtain both inter-protocol and inter-session composition.
Url:
Affiliations:
Links toward previous steps (curation, corpus...)
- to stream Hal, to step Corpus: 004F49
- to stream Hal, to step Curation: 004F49
- to stream Hal, to step Checkpoint: 001A07
- to stream Main, to step Merge: 002003
- to stream Main, to step Curation: 001F62
Le document en format XML
<record><TEI><teiHeader><fileDesc><titleStmt><title xml:lang="en">Transforming Password Protocols to Compose</title><author><name sortKey="Chevalier, Celine" sort="Chevalier, Celine" uniqKey="Chevalier C" first="Céline" last="Chevalier">Céline Chevalier</name><affiliation wicri:level="1"><hal:affiliation type="laboratory" xml:id="struct-2571" status="VALID"><orgName>Laboratoire Spécification et Vérification [Cachan]</orgName><orgName type="acronym">LSV</orgName><desc><address><addrLine>Bâtiment d'Alembert 61 Avenue du Président Wilson 94235 CACHAN CEDEX</addrLine><country key="FR"></country></address><ref type="url">http://www.lsv.ens-cachan.fr/</ref></desc><listRelation><relation active="#struct-6862" type="direct"></relation><relation name="UMR8643" active="#struct-441569" type="direct"></relation></listRelation><tutelles><tutelle active="#struct-6862" type="direct"><org type="institution" xml:id="struct-6862" status="VALID"><orgName>École normale supérieure - Cachan</orgName><orgName type="acronym">ENS Cachan</orgName><desc><address><addrLine>61, avenue du Président Wilson - 94230 Cachan</addrLine><country key="FR"></country></address><ref type="url">http://www.ens-cachan.fr/</ref></desc></org></tutelle><tutelle name="UMR8643" active="#struct-441569" type="direct"><org type="institution" xml:id="struct-441569" status="VALID"><idno type="IdRef">02636817X</idno><idno type="ISNI">0000000122597504</idno><orgName>Centre National de la Recherche Scientifique</orgName><orgName type="acronym">CNRS</orgName><date type="start">1939-10-19</date><desc><address><country key="FR"></country></address><ref type="url">http://www.cnrs.fr/</ref></desc></org></tutelle></tutelles></hal:affiliation><country>France</country></affiliation></author><author><name sortKey="Delaune, Stephanie" sort="Delaune, Stephanie" uniqKey="Delaune S" first="Stéphanie" last="Delaune">Stéphanie Delaune</name><affiliation wicri:level="1"><hal:affiliation type="laboratory" xml:id="struct-2571" status="VALID"><orgName>Laboratoire Spécification et Vérification [Cachan]</orgName><orgName type="acronym">LSV</orgName><desc><address><addrLine>Bâtiment d'Alembert 61 Avenue du Président Wilson 94235 CACHAN CEDEX</addrLine><country key="FR"></country></address><ref type="url">http://www.lsv.ens-cachan.fr/</ref></desc><listRelation><relation active="#struct-6862" type="direct"></relation><relation name="UMR8643" active="#struct-441569" type="direct"></relation></listRelation><tutelles><tutelle active="#struct-6862" type="direct"><org type="institution" xml:id="struct-6862" status="VALID"><orgName>École normale supérieure - Cachan</orgName><orgName type="acronym">ENS Cachan</orgName><desc><address><addrLine>61, avenue du Président Wilson - 94230 Cachan</addrLine><country key="FR"></country></address><ref type="url">http://www.ens-cachan.fr/</ref></desc></org></tutelle><tutelle name="UMR8643" active="#struct-441569" type="direct"><org type="institution" xml:id="struct-441569" status="VALID"><idno type="IdRef">02636817X</idno><idno type="ISNI">0000000122597504</idno><orgName>Centre National de la Recherche Scientifique</orgName><orgName type="acronym">CNRS</orgName><date type="start">1939-10-19</date><desc><address><country key="FR"></country></address><ref type="url">http://www.cnrs.fr/</ref></desc></org></tutelle></tutelles></hal:affiliation><country>France</country></affiliation></author><author><name sortKey="Kremer, Steve" sort="Kremer, Steve" uniqKey="Kremer S" first="Steve" last="Kremer">Steve Kremer</name><affiliation wicri:level="1"><hal:affiliation type="researchteam" xml:id="struct-2337" status="OLD"><idno type="RNSR">200218376V</idno><orgName>Security of information systems</orgName><orgName type="acronym">SECSI</orgName><desc><address><country key="FR"></country></address><ref type="url">http://www.inria.fr/equipes/secsi</ref></desc><listRelation><relation active="#struct-2571" type="direct"></relation><relation name="UMR8643" active="#struct-441569" type="direct"></relation><relation active="#struct-6862" type="direct"></relation><relation active="#struct-118511" type="direct"></relation><relation active="#struct-300009" type="indirect"></relation></listRelation><tutelles><tutelle active="#struct-2571" type="direct"><org type="laboratory" xml:id="struct-2571" status="VALID"><orgName>Laboratoire Spécification et Vérification [Cachan]</orgName><orgName type="acronym">LSV</orgName><desc><address><addrLine>Bâtiment d'Alembert 61 Avenue du Président Wilson 94235 CACHAN CEDEX</addrLine><country key="FR"></country></address><ref type="url">http://www.lsv.ens-cachan.fr/</ref></desc><listRelation><relation active="#struct-6862" type="direct"></relation><relation name="UMR8643" active="#struct-441569" type="direct"></relation></listRelation></org></tutelle><tutelle name="UMR8643" active="#struct-441569" type="direct"><org type="institution" xml:id="struct-441569" status="VALID"><idno type="IdRef">02636817X</idno><idno type="ISNI">0000000122597504</idno><orgName>Centre National de la Recherche Scientifique</orgName><orgName type="acronym">CNRS</orgName><date type="start">1939-10-19</date><desc><address><country key="FR"></country></address><ref type="url">http://www.cnrs.fr/</ref></desc></org></tutelle><tutelle active="#struct-6862" type="direct"><org type="institution" xml:id="struct-6862" status="VALID"><orgName>École normale supérieure - Cachan</orgName><orgName type="acronym">ENS Cachan</orgName><desc><address><addrLine>61, avenue du Président Wilson - 94230 Cachan</addrLine><country key="FR"></country></address><ref type="url">http://www.ens-cachan.fr/</ref></desc></org></tutelle><tutelle active="#struct-118511" type="direct"><org type="laboratory" xml:id="struct-118511" status="VALID"><idno type="RNSR">200818248E</idno><orgName>INRIA Saclay - Ile de France</orgName><desc><address><addrLine>1 rue Honoré d'Estienne d'OrvesBâtiment Alan TuringCampus de l'École Polytechnique91120 Palaiseau</addrLine><country key="FR"></country></address><ref type="url">http://www.inria.fr/centre/saclay</ref></desc><listRelation><relation active="#struct-300009" type="direct"></relation></listRelation></org></tutelle><tutelle active="#struct-300009" type="indirect"><org type="institution" xml:id="struct-300009" status="VALID"><orgName>Institut National de Recherche en Informatique et en Automatique</orgName><orgName type="acronym">Inria</orgName><desc><address><addrLine>Domaine de VoluceauRocquencourt - BP 10578153 Le Chesnay Cedex</addrLine><country key="FR"></country></address><ref type="url">http://www.inria.fr/en/</ref></desc></org></tutelle></tutelles></hal:affiliation><country>France</country></affiliation></author></titleStmt><publicationStmt><idno type="wicri:source">HAL</idno><idno type="RBID">Hal:inria-00636753</idno><idno type="halId">inria-00636753</idno><idno type="halUri">https://hal.inria.fr/inria-00636753</idno><idno type="url">https://hal.inria.fr/inria-00636753</idno><date when="2011-12-12">2011-12-12</date><idno type="wicri:Area/Hal/Corpus">004F49</idno><idno type="wicri:Area/Hal/Curation">004F49</idno><idno type="wicri:Area/Hal/Checkpoint">001A07</idno><idno type="wicri:explorRef" wicri:stream="Hal" wicri:step="Checkpoint">001A07</idno><idno type="wicri:Area/Main/Merge">002003</idno><idno type="wicri:Area/Main/Curation">001F62</idno><idno type="wicri:Area/Main/Exploration">001F62</idno></publicationStmt><sourceDesc><biblStruct><analytic><title xml:lang="en">Transforming Password Protocols to Compose</title><author><name sortKey="Chevalier, Celine" sort="Chevalier, Celine" uniqKey="Chevalier C" first="Céline" last="Chevalier">Céline Chevalier</name><affiliation wicri:level="1"><hal:affiliation type="laboratory" xml:id="struct-2571" status="VALID"><orgName>Laboratoire Spécification et Vérification [Cachan]</orgName><orgName type="acronym">LSV</orgName><desc><address><addrLine>Bâtiment d'Alembert 61 Avenue du Président Wilson 94235 CACHAN CEDEX</addrLine><country key="FR"></country></address><ref type="url">http://www.lsv.ens-cachan.fr/</ref></desc><listRelation><relation active="#struct-6862" type="direct"></relation><relation name="UMR8643" active="#struct-441569" type="direct"></relation></listRelation><tutelles><tutelle active="#struct-6862" type="direct"><org type="institution" xml:id="struct-6862" status="VALID"><orgName>École normale supérieure - Cachan</orgName><orgName type="acronym">ENS Cachan</orgName><desc><address><addrLine>61, avenue du Président Wilson - 94230 Cachan</addrLine><country key="FR"></country></address><ref type="url">http://www.ens-cachan.fr/</ref></desc></org></tutelle><tutelle name="UMR8643" active="#struct-441569" type="direct"><org type="institution" xml:id="struct-441569" status="VALID"><idno type="IdRef">02636817X</idno><idno type="ISNI">0000000122597504</idno><orgName>Centre National de la Recherche Scientifique</orgName><orgName type="acronym">CNRS</orgName><date type="start">1939-10-19</date><desc><address><country key="FR"></country></address><ref type="url">http://www.cnrs.fr/</ref></desc></org></tutelle></tutelles></hal:affiliation><country>France</country></affiliation></author><author><name sortKey="Delaune, Stephanie" sort="Delaune, Stephanie" uniqKey="Delaune S" first="Stéphanie" last="Delaune">Stéphanie Delaune</name><affiliation wicri:level="1"><hal:affiliation type="laboratory" xml:id="struct-2571" status="VALID"><orgName>Laboratoire Spécification et Vérification [Cachan]</orgName><orgName type="acronym">LSV</orgName><desc><address><addrLine>Bâtiment d'Alembert 61 Avenue du Président Wilson 94235 CACHAN CEDEX</addrLine><country key="FR"></country></address><ref type="url">http://www.lsv.ens-cachan.fr/</ref></desc><listRelation><relation active="#struct-6862" type="direct"></relation><relation name="UMR8643" active="#struct-441569" type="direct"></relation></listRelation><tutelles><tutelle active="#struct-6862" type="direct"><org type="institution" xml:id="struct-6862" status="VALID"><orgName>École normale supérieure - Cachan</orgName><orgName type="acronym">ENS Cachan</orgName><desc><address><addrLine>61, avenue du Président Wilson - 94230 Cachan</addrLine><country key="FR"></country></address><ref type="url">http://www.ens-cachan.fr/</ref></desc></org></tutelle><tutelle name="UMR8643" active="#struct-441569" type="direct"><org type="institution" xml:id="struct-441569" status="VALID"><idno type="IdRef">02636817X</idno><idno type="ISNI">0000000122597504</idno><orgName>Centre National de la Recherche Scientifique</orgName><orgName type="acronym">CNRS</orgName><date type="start">1939-10-19</date><desc><address><country key="FR"></country></address><ref type="url">http://www.cnrs.fr/</ref></desc></org></tutelle></tutelles></hal:affiliation><country>France</country></affiliation></author><author><name sortKey="Kremer, Steve" sort="Kremer, Steve" uniqKey="Kremer S" first="Steve" last="Kremer">Steve Kremer</name><affiliation wicri:level="1"><hal:affiliation type="researchteam" xml:id="struct-2337" status="OLD"><idno type="RNSR">200218376V</idno><orgName>Security of information systems</orgName><orgName type="acronym">SECSI</orgName><desc><address><country key="FR"></country></address><ref type="url">http://www.inria.fr/equipes/secsi</ref></desc><listRelation><relation active="#struct-2571" type="direct"></relation><relation name="UMR8643" active="#struct-441569" type="direct"></relation><relation active="#struct-6862" type="direct"></relation><relation active="#struct-118511" type="direct"></relation><relation active="#struct-300009" type="indirect"></relation></listRelation><tutelles><tutelle active="#struct-2571" type="direct"><org type="laboratory" xml:id="struct-2571" status="VALID"><orgName>Laboratoire Spécification et Vérification [Cachan]</orgName><orgName type="acronym">LSV</orgName><desc><address><addrLine>Bâtiment d'Alembert 61 Avenue du Président Wilson 94235 CACHAN CEDEX</addrLine><country key="FR"></country></address><ref type="url">http://www.lsv.ens-cachan.fr/</ref></desc><listRelation><relation active="#struct-6862" type="direct"></relation><relation name="UMR8643" active="#struct-441569" type="direct"></relation></listRelation></org></tutelle><tutelle name="UMR8643" active="#struct-441569" type="direct"><org type="institution" xml:id="struct-441569" status="VALID"><idno type="IdRef">02636817X</idno><idno type="ISNI">0000000122597504</idno><orgName>Centre National de la Recherche Scientifique</orgName><orgName type="acronym">CNRS</orgName><date type="start">1939-10-19</date><desc><address><country key="FR"></country></address><ref type="url">http://www.cnrs.fr/</ref></desc></org></tutelle><tutelle active="#struct-6862" type="direct"><org type="institution" xml:id="struct-6862" status="VALID"><orgName>École normale supérieure - Cachan</orgName><orgName type="acronym">ENS Cachan</orgName><desc><address><addrLine>61, avenue du Président Wilson - 94230 Cachan</addrLine><country key="FR"></country></address><ref type="url">http://www.ens-cachan.fr/</ref></desc></org></tutelle><tutelle active="#struct-118511" type="direct"><org type="laboratory" xml:id="struct-118511" status="VALID"><idno type="RNSR">200818248E</idno><orgName>INRIA Saclay - Ile de France</orgName><desc><address><addrLine>1 rue Honoré d'Estienne d'OrvesBâtiment Alan TuringCampus de l'École Polytechnique91120 Palaiseau</addrLine><country key="FR"></country></address><ref type="url">http://www.inria.fr/centre/saclay</ref></desc><listRelation><relation active="#struct-300009" type="direct"></relation></listRelation></org></tutelle><tutelle active="#struct-300009" type="indirect"><org type="institution" xml:id="struct-300009" status="VALID"><orgName>Institut National de Recherche en Informatique et en Automatique</orgName><orgName type="acronym">Inria</orgName><desc><address><addrLine>Domaine de VoluceauRocquencourt - BP 10578153 Le Chesnay Cedex</addrLine><country key="FR"></country></address><ref type="url">http://www.inria.fr/en/</ref></desc></org></tutelle></tutelles></hal:affiliation><country>France</country></affiliation></author></analytic></biblStruct></sourceDesc></fileDesc><profileDesc><textClass></textClass></profileDesc></teiHeader><front><div type="abstract" xml:lang="en">Formal, symbolic techniques are extremely useful for modelling and analysing security protocols. They improved our understanding of security protocols, allowed to discover flaws, and also provide support for protocol design. However, such analyses usually consider that the protocol is executed in isolation or assume a bounded number of protocol sessions. Hence, no security guarantee is provided when the protocol is executed in a more complex environment. In this paper, we study whether password protocols can be safely composed, even when a same password is reused. More precisely, we present a transformation which maps a password protocol that is secure for a single protocol session (a decidable problem) to a protocol that is secure for an unbounded number of sessions. Our result provides an effective strategy to design secure password protocols: (i) design a protocol intended to be secure for one protocol session; (ii) apply our transformation and obtain a protocol which is secure for an unbounded number of sessions. Our technique also applies to compose different password protocols allowing us to obtain both inter-protocol and inter-session composition.</div></front></TEI><affiliations><list><country><li>France</li></country></list><tree><country name="France"><noRegion><name sortKey="Chevalier, Celine" sort="Chevalier, Celine" uniqKey="Chevalier C" first="Céline" last="Chevalier">Céline Chevalier</name></noRegion><name sortKey="Delaune, Stephanie" sort="Delaune, Stephanie" uniqKey="Delaune S" first="Stéphanie" last="Delaune">Stéphanie Delaune</name><name sortKey="Kremer, Steve" sort="Kremer, Steve" uniqKey="Kremer S" first="Steve" last="Kremer">Steve Kremer</name></country></tree></affiliations></record>Pour manipuler ce document sous Unix (Dilib)
EXPLOR_STEP=$WICRI_ROOT/Wicri/Lorraine/explor/InforLorV4/Data/Main/Exploration
HfdSelect -h $EXPLOR_STEP/biblio.hfd -nk 001F62 | SxmlIndent | more
Ou
HfdSelect -h $EXPLOR_AREA/Data/Main/Exploration/biblio.hfd -nk 001F62 | SxmlIndent | more
Pour mettre un lien sur cette page dans le réseau Wicri
{{Explor lien
|wiki= Wicri/Lorraine
|area= InforLorV4
|flux= Main
|étape= Exploration
|type= RBID
|clé= Hal:inria-00636753
|texte= Transforming Password Protocols to Compose
}}
| This area was generated with Dilib version V0.6.33. |  |