%0 Book Section
%A Boreale, Michele
%A Buscemi, Maria Grazia
%B Proceedings of the 13th International Conference on Concurrency Theory (CONCUR ’02)
%D 2002
%E Brim, Luboš
%E Jancar, Petr
%E Kretínský,, Mojmír
%E Kucera, Antonín
%F eprints:132
%I Springer
%P 483-498
%S Lecture Notes in Computer Science
%T A Framework for the Analysis of Security Protocols
%U http://eprints.imtlucca.it/132/
%V 2421
%X Properties of security protocols such as authentication and secrecy are often verified by explictly generating an operational model of the protocol and then seeking for insecure states. However, message exchange between the intruder and the honest participants induces a form of state explosion that makes the model infinite in principle. Building on previous work on symbolic semantics, we propose a general framework for automatic analysis of security protocols that make use of a variety of crypto-functions. We start from a base language akin to the spi-calculus, equipped with a set of generic cryptographic primitives. We propose a symbolic operational semantics that relies on unification and provides finite and effective protocol models. Next, we give a method to carry out trace analysis directly on the symbolic model. Under certain conditions on the given cryptographic primitives, our method is proven complete for the considered class of properties.
%Z The final publication is available at www.springerlink.com