andr3/scyther
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

- Added BKE versions used in secrecy reduction article.

Browse Source
This commit is contained in:
ccremers 2004-07-13 19:36:13 +00:00
parent 8dee89217e
commit 33441613e4
2 changed files with 85 additions and 40 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

67
spdl/bke-broken.spdl
View File

@ -1,61 +1,48 @@
/* /*
Bilateral Key Exchange with Public Key protocol (BKEPK) Bilateral Key Exchange with Public Key protocol (BKEPK)
Broken version with man in the middle attack.
CMV version with explicit secrecy claims.
*/ */
usertype Key; usertype Key;
const pk,hash: Function; const PK,h: Function;
secret sk,unhash: Function; secret SK,hinv: Function;
inversekeys (pk,sk); inversekeys (PK,SK);
inversekeys (hash,unhash); inversekeys (h,hinv);
protocol bkepk(Initiator,Responder) protocol bkepk(I,R)
{ {
role Initiator role I
{ {
const NI: Nonce; const ni: Nonce;
var NR: Nonce; var nr: Nonce;
var kab: Key; var kir: Key;
send_1 (Initiator,Responder, { NI,Responder }pk(Responder) ); send_1 (I,R, { ni,I }PK(R) );
read_2 (Responder,Initiator, { hash(NI),NR,Responder,kab }pk(Initiator) ); read_2 (R,I, { h(ni),nr,kir }PK(I) );
send_3 (Initiator,Responder, { hash(NR) }kab ); send_3 (I,R, { h(nr),kir }PK(R) );
claim_4 (Initiator, Secret, kab ); claim_4 (I, Secret, kir );
} }
role Responder role R
{ {
var NI: Nonce; var ni: Nonce;
const NR: Nonce; const nr: Nonce;
const kab: Key; const kir: Key;
read_1 (Initiator,Responder, { NI,Responder }pk(Responder) ); read_1 (I,R, { ni,I }PK(R) );
send_2 (Responder,Initiator, { hash(NI),NR,Responder,kab }pk(Initiator) ); send_2 (R,I, { h(ni),nr,kir }PK(I) );
read_3 (Initiator,Responder, { hash(NR) }kab ); read_3 (I,R, { h(nr),kir }PK(R) );
claim_5 (Responder, Secret, kab ); claim_5 (R, Secret, kir );
} }
} }
const Alice,Bob,Eve: Agent; const a,b,e: Agent;
untrusted Eve; untrusted e;
compromised sk(Eve); compromised SK(e);
const ne: Nonce; const ne: Nonce;
run bkepk.Initiator(Alice,Agent); run bkepk.I(a,Agent);
run bkepk.Responder(Agent,Bob); run bkepk.R(Agent,b);
run bkepk.Initiator(Alice,Agent);
run bkepk.Responder(Agent,Bob);
run bkepk.Initiator(Alice,Agent);
run bkepk.Responder(Agent,Bob);
run bkepk.Initiator(Alice,Agent);
run bkepk.Responder(Agent,Bob);
run bkepk.Initiator(Alice,Agent);
run bkepk.Responder(Agent,Bob);

58
spdl/bke.spdl Normal file
View File

@ -0,0 +1,58 @@
/*
Bilateral Key Exchange with Public Key protocol (BKEPK)
*/
usertype Key;
const pk,hash: Function;
secret sk,unhash: Function;
inversekeys (pk,sk);
inversekeys (hash,unhash);
protocol bkepk(I,R)
{
role I
{
const ni: Nonce;
var nr: Nonce;
var kir: Key;
send_1 (I,R, { ni,I }pk(R) );
read_2 (R,I, { hash(ni),nr,R,kir }pk(I) );
send_3 (I,R, { hash(nr) }kir );
claim_4 (I, Secret, kir );
}
role R
{
var ni: Nonce;
const nr: Nonce;
const kir: Key;
read_1 (I,R, { ni,I }pk(R) );
send_2 (R,I, { hash(ni),nr,R,kir }pk(I) );
read_3 (I,R, { hash(nr) }kir );
claim_5 (R, Secret, kir );
}
}
const a,b,e: Agent;
untrusted e;
compromised sk(e);
const ne: Nonce;
run bkepk.I(a,Agent);
run bkepk.R(Agent,b);
run bkepk.I(a,Agent);
run bkepk.R(Agent,b);
run bkepk.I(a,Agent);
run bkepk.R(Agent,b);
run bkepk.I(a,Agent);
run bkepk.R(Agent,b);
run bkepk.I(a,Agent);
run bkepk.R(Agent,b);