2006-11-21 13:42:06 +00:00
|
|
|
# CCITT X.509 (1c)
|
|
|
|
|
#
|
|
|
|
|
# Modelled after the description in the SPORE library
|
|
|
|
|
# http://www.lsv.ens-cachan.fr/spore/ccittx509_1c.html
|
|
|
|
|
#
|
|
|
|
|
# Note:
|
|
|
|
|
# According to SPORE there are no known attacks on this protocol
|
|
|
|
|
#
|
|
|
|
|
|
2012-04-23 14:53:28 +01:00
|
|
|
hashfunction hash;
|
2006-11-21 13:42:06 +00:00
|
|
|
usertype Timestamp;
|
|
|
|
|
|
|
|
|
|
protocol ccitt509-1c(I,R)
|
|
|
|
|
{
|
|
|
|
|
role I
|
|
|
|
|
{
|
2012-05-02 22:01:08 +01:00
|
|
|
fresh Ta: Timestamp;
|
|
|
|
|
fresh Na,Xa,Ya: Nonce;
|
2006-11-21 13:42:06 +00:00
|
|
|
send_1(I,R, I,{Ta, Na, R, Xa,{Ya,{hash(Ya)}sk(I)}pk(R)}sk(I));
|
|
|
|
|
# claim_2(I,Nisynch);
|
2012-04-26 15:40:01 +01:00
|
|
|
# This claim is useless as there are no preceding receive events
|
2006-11-21 13:42:06 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
role R
|
|
|
|
|
{
|
|
|
|
|
var Ta: Timestamp;
|
|
|
|
|
var Na,Xa,Ya: Nonce;
|
|
|
|
|
|
2012-04-26 15:40:01 +01:00
|
|
|
recv_1(I,R, I,{Ta, Na, R, Xa,{Ya,{hash(Ya)}sk(I)}pk(R)}sk(I));
|
2006-11-21 13:42:06 +00:00
|
|
|
claim_3(R,Nisynch);
|
|
|
|
|
# There should also be Fresh Xa and Fresh Ya claims here
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
