scyther/spdl/misc/bkepk-ce2.spdl

/* 
	Bilateral Key Exchange with Public Key protocol (bkepkCE2)

	Version from Corin/Etalle: An Improved Constraint-Based System for the Verification of Security Protocols.
	Tried to stay as close as possible to compare timing results.
*/

usertype Key;

const pk,hash: Function;
secret sk: Function;

inversekeys (pk,sk);

protocol bkepkCE2(A,B,testnonce)
{
	role B
	{
		const nb: Nonce;
		var na: Nonce;
		var kab: Key;

		send_1 (B,A, B,{ nb,B }pk(A) );
		read_2 (A,B, { hash(nb),na,A,kab }pk(B) );
		send_3 (B,A, { hash(na) }kab );
	}

	role A
	{
		var nb: Nonce;
		const na: Nonce;
		const kab: Key;

		read_1 (B,A, B,{ nb,B }pk(A) );
		send_2 (A,B, { hash(nb),na,A,kab }pk(B) );
		read_3 (B,A, { hash(na) }kab );
	}

	role testnonce
	{
		var n: Nonce;

		read_4 (testnonce,testnonce, n);
	}
}

const Alice,Bob,Eve;

compromised sk(Eve);
untrusted Eve;


run bkepkCE2.A(Alice,Bob,Alice);
run bkepkCE2.A(Alice,Bob,Alice);
run bkepkCE2.A(Alice,Bob,Alice);
run bkepkCE2.B(Alice,Bob,Alice);
run bkepkCE2.B(Alice,Bob,Alice);
run bkepkCE2.B(Alice,Bob,Alice);

run bkepkCE2.testnonce(Alice,Bob,Alice);
run bkepkCE2.testnonce(Alice,Bob,Alice);
run bkepkCE2.testnonce(Alice,Bob,Alice);
- This is required as well. 2004-03-10 07:19:27 +00:00			`/*`
- Updated many protocols according to the tests. 2004-10-18 14:45:58 +01:00			`Bilateral Key Exchange with Public Key protocol (bkepkCE2)`
- This is required as well. 2004-03-10 07:19:27 +00:00
			`Version from Corin/Etalle: An Improved Constraint-Based System for the Verification of Security Protocols.`
			`Tried to stay as close as possible to compare timing results.`
			`*/`

			`usertype Key;`

			`const pk,hash: Function;`
			`secret sk: Function;`

			`inversekeys (pk,sk);`

- Updated many protocols according to the tests. 2004-10-18 14:45:58 +01:00			`protocol bkepkCE2(A,B,testnonce)`
- This is required as well. 2004-03-10 07:19:27 +00:00			`{`
			`role B`
			`{`
			`const nb: Nonce;`
			`var na: Nonce;`
			`var kab: Key;`

			`send_1 (B,A, B,{ nb,B }pk(A) );`
			`read_2 (A,B, { hash(nb),na,A,kab }pk(B) );`
			`send_3 (B,A, { hash(na) }kab );`
			`}`

			`role A`
			`{`
			`var nb: Nonce;`
			`const na: Nonce;`
			`const kab: Key;`

			`read_1 (B,A, B,{ nb,B }pk(A) );`
			`send_2 (A,B, { hash(nb),na,A,kab }pk(B) );`
			`read_3 (B,A, { hash(na) }kab );`
			`}`

			`role testnonce`
			`{`
			`var n: Nonce;`

- Updated many protocols according to the tests. 2004-10-18 14:45:58 +01:00			`read_4 (testnonce,testnonce, n);`
- This is required as well. 2004-03-10 07:19:27 +00:00			`}`
			`}`

			`const Alice,Bob,Eve;`

			`compromised sk(Eve);`
- Updated many protocols according to the tests. 2004-10-18 14:45:58 +01:00			`untrusted Eve;`
- This is required as well. 2004-03-10 07:19:27 +00:00

- Updated many protocols according to the tests. 2004-10-18 14:45:58 +01:00			`run bkepkCE2.A(Alice,Bob,Alice);`
			`run bkepkCE2.A(Alice,Bob,Alice);`
			`run bkepkCE2.A(Alice,Bob,Alice);`
			`run bkepkCE2.B(Alice,Bob,Alice);`
			`run bkepkCE2.B(Alice,Bob,Alice);`
			`run bkepkCE2.B(Alice,Bob,Alice);`
- This is required as well. 2004-03-10 07:19:27 +00:00
- Updated many protocols according to the tests. 2004-10-18 14:45:58 +01:00			`run bkepkCE2.testnonce(Alice,Bob,Alice);`
			`run bkepkCE2.testnonce(Alice,Bob,Alice);`
			`run bkepkCE2.testnonce(Alice,Bob,Alice);`