scyther/testing/woolam-cmv.spdl

/*
 * Woo-lam version from Spore, as it is in Sjouke's list
 */

usertype Server, SessionKey, Token, Ticket;
secret k: Function;

const Simon: Server;

/* give the intruder something to work with */
// Scyther finds an attack using basic type flaws

const ke: SessionKey;

const authToken: Token;

protocol woolamcmv(A,B,S)
{
	role A
	{
		fresh Na: Nonce;
		var Nb: Nonce;
		var Kab: SessionKey;
		var t1,t2;

		send_1(A,B, A,Na);
		recv_2(B,A, B,Nb);
		send_3(A,B, { A,B, Na,Nb }k(A,S) );
   		recv_6(B,A, { B,Na,Nb,Kab }k(A,S), { Na,Nb }Kab );
		send_7(A,B, { Nb }Kab );	

		claim_8(A,Secret, Kab);
		claim_9(A,Niagree);
		claim_10(A,Nisynch);
	}

	role B
	{
		var Na: Nonce;
		fresh Nb: Nonce;
		var Kab: SessionKey;
		var t1,t2;

		recv_1(A,B, A,Na);
		send_2(B,A, B,Nb);
		recv_3(A,B, t1 );
		send_4(B,S, t1, { A,B,Na,Nb }k(B,S) );
		recv_5(S,B, t2, { A,Na,Nb,Kab }k(B,S) );
   		send_6(B,A, t2, { Na,Nb }Kab );
		recv_7(A,B, { Nb }Kab );	

		claim_11(B,Secret, Kab);
		claim_12(B,Niagree);
		claim_13(B,Nisynch);
	}

	role S
	{
		var Na, Nb: Nonce;
		fresh Kab: SessionKey;

		recv_4(B,S, { A,B, Na,Nb }k(A,S), { A,B,Na,Nb }k(B,S) );
		send_5(S,B, { B,Na,Nb,Kab }k(A,S), { A,Na,Nb,Kab }k(B,S) );

		claim_14(S,Secret, Kab);
	}
}
- Added protocols 2006-11-21 13:40:50 +00:00			`/*`
			`* Woo-lam version from Spore, as it is in Sjouke's list`
			`*/`

			`usertype Server, SessionKey, Token, Ticket;`
			`secret k: Function;`

			`const Simon: Server;`

			`/* give the intruder something to work with */`
			`// Scyther finds an attack using basic type flaws`

			`const ke: SessionKey;`

			`const authToken: Token;`

			`protocol woolamcmv(A,B,S)`
			`{`
			`role A`
			`{`
Fixed obsolete notation in protocol specification files. Not everything is fixed yet. However, we fixed: - 'const' -> 'fresh' - Removed lines specifying 'runs' - Removed some specifications of compromised Eve and its long-term keys being compromised. 2012-05-02 22:01:08 +01:00			`fresh Na: Nonce;`
- Added protocols 2006-11-21 13:40:50 +00:00			`var Nb: Nonce;`
			`var Kab: SessionKey;`
			`var t1,t2;`

			`send_1(A,B, A,Na);`
Fixing remaining 'read's to 'recv'. 2012-05-02 22:26:41 +01:00			`recv_2(B,A, B,Nb);`
- Added protocols 2006-11-21 13:40:50 +00:00			`send_3(A,B, { A,B, Na,Nb }k(A,S) );`
Fixing remaining 'read's to 'recv'. 2012-05-02 22:26:41 +01:00			`recv_6(B,A, { B,Na,Nb,Kab }k(A,S), { Na,Nb }Kab );`
- Added protocols 2006-11-21 13:40:50 +00:00			`send_7(A,B, { Nb }Kab );`

			`claim_8(A,Secret, Kab);`
			`claim_9(A,Niagree);`
			`claim_10(A,Nisynch);`
			`}`

			`role B`
			`{`
			`var Na: Nonce;`
Fixed obsolete notation in protocol specification files. Not everything is fixed yet. However, we fixed: - 'const' -> 'fresh' - Removed lines specifying 'runs' - Removed some specifications of compromised Eve and its long-term keys being compromised. 2012-05-02 22:01:08 +01:00			`fresh Nb: Nonce;`
- Added protocols 2006-11-21 13:40:50 +00:00			`var Kab: SessionKey;`
			`var t1,t2;`

Fixing remaining 'read's to 'recv'. 2012-05-02 22:26:41 +01:00			`recv_1(A,B, A,Na);`
- Added protocols 2006-11-21 13:40:50 +00:00			`send_2(B,A, B,Nb);`
Fixing remaining 'read's to 'recv'. 2012-05-02 22:26:41 +01:00			`recv_3(A,B, t1 );`
- Added protocols 2006-11-21 13:40:50 +00:00			`send_4(B,S, t1, { A,B,Na,Nb }k(B,S) );`
Fixing remaining 'read's to 'recv'. 2012-05-02 22:26:41 +01:00			`recv_5(S,B, t2, { A,Na,Nb,Kab }k(B,S) );`
- Added protocols 2006-11-21 13:40:50 +00:00			`send_6(B,A, t2, { Na,Nb }Kab );`
Fixing remaining 'read's to 'recv'. 2012-05-02 22:26:41 +01:00			`recv_7(A,B, { Nb }Kab );`
- Added protocols 2006-11-21 13:40:50 +00:00
			`claim_11(B,Secret, Kab);`
			`claim_12(B,Niagree);`
			`claim_13(B,Nisynch);`
			`}`

			`role S`
			`{`
			`var Na, Nb: Nonce;`
Fixed obsolete notation in protocol specification files. Not everything is fixed yet. However, we fixed: - 'const' -> 'fresh' - Removed lines specifying 'runs' - Removed some specifications of compromised Eve and its long-term keys being compromised. 2012-05-02 22:01:08 +01:00			`fresh Kab: SessionKey;`
- Added protocols 2006-11-21 13:40:50 +00:00
Fixing remaining 'read's to 'recv'. 2012-05-02 22:26:41 +01:00			`recv_4(B,S, { A,B, Na,Nb }k(A,S), { A,B,Na,Nb }k(B,S) );`
- Added protocols 2006-11-21 13:40:50 +00:00			`send_5(S,B, { B,Na,Nb,Kab }k(A,S), { A,Na,Nb,Kab }k(B,S) );`

			`claim_14(S,Secret, Kab);`
			`}`
			`}`