Little tweak to the key compromise modelling, model key compromise agent as a

responder instead of an initiator, remove empty roles from key compromise protocol.
2005-06-15 09:17:15 +00:00 · 2005-06-15 09:17:15 +00:00 · f8a91d744d
commit f8a91d744d
parent ba47af0c42
1 changed files with 8 additions and 11 deletions
--- a/spdl/SPORE/key-compromise/needham-schroeder-sk.spdl
+++ b/spdl/SPORE/key-compromise/needham-schroeder-sk.spdl
@ -16,15 +16,17 @@ const dec,inc: Function;
 inversekeys(dec,inc);
 usertype SessionKey;

-protocol needhamschroederSessionKeyCompromise(I,R,S)
+protocol needhamschroederSessionKeyCompromise(C)
 {
-    // Disclose an entire session and the corresponding session key
-    // to simulate key compromise
-    role I {
+    // Read the names of 3 agents and disclose a session between them including
+    // corresponding session key to simulate key compromise
+    role C {
        const Ni,Nr: Nonce;
        const Kir: SessionKey;
+        var I,R,S: Agent;

-        send_D1(I,I,    (I,R,Ni),
+        read_C1(C,C,    I,R,S);
+        send_C2(C,C,    (I,R,Ni),
                        {Ni,R,Kir,{Kir,I}k(R,S)}k(I,S),
                        {Kir,I}k(R,S),
                        {Nr}Kir,
@ -32,13 +34,8 @@ protocol needhamschroederSessionKeyCompromise(I,R,S)
                        Kir
               );
    }
-
-    role R {
-    }
-
-    role S {
-    }
 }
+
 protocol needhamschroedersk(I,R,S)
 {
    role I