作者投稿和查稿 主编审稿 专家审稿 编委审稿 远程编辑

计算机工程 ›› 2007, Vol. 33 ›› Issue (13): 1-3,39. doi: 10.3969/j.issn.1000-3428.2007.13.001

• 博士论文 •    下一篇

检测模型在安全协议分析中的应用

李谢华,杨树堂,李建华,诸鸿文   

  1. (上海交通大学电子工程系,上海 200030)
  • 收稿日期:1900-01-01 修回日期:1900-01-01 出版日期:2007-07-05 发布日期:2007-07-05

Application of Checking Model in Security Protocol Analysis

LI Xiehua, YANG Shutang, LI Jianhua, ZHU Hongwen   

  1. (Department of Electronic Engineering, Shanghai Jiaotong University, Shanghai 200030)
  • Received:1900-01-01 Revised:1900-01-01 Online:2007-07-05 Published:2007-07-05

摘要: 以认证测试方法为基础提出一种检测模型,通过对消息类型的检测和核对能够明确消息的初始产生主体,进而对主体的身份进行认证。将检测模型同认证测试方法相结合,能够克服原有认证测试方法缺乏判断消息初始产生者的缺点,从而在安全协议的分析中能够检测出协议可能存在的安全漏洞。通过对Neuman-Stubblebine协议的安全性验证表明,该方法能够有效地检测到原认证测试方法无法发现的类型攻击。

关键词: 检测模型, 认证测试, Neuman-Stubblebine协议, 类型攻击

Abstract: This paper proposes a new checking model based on the authentication tests for security protocol analysis. With the model, each component of the ciphertext is verified to determine its originator, so that the replayed attack can be detected in time. The combination of the check model and authentication tests can overcome the deficiency of the original authentication tests in detecting message replay attacks. The proof of neuman-stubblebine protocol shows that the checking model can detect the type flaw attack efficiently, while the original authentication tests cannot.

Key words: checking model, authentication test, Neuman-Stubblebine protocol, type flaw attack

中图分类号: