Commit Graph

194 Commits

Author SHA1 Message Date
ccremers
fe38647c06 - Too many tls to go with other misc 2006-11-30 15:17:30 +00:00
ccremers
45bfeb58e6 - Added Boyd Mathuria TLS version 2006-11-30 13:00:47 +00:00
ccremers
15822a303f - New version of the protocol after communication with Anupam Datta. 2006-11-29 23:25:40 +00:00
ccremers
6a6e2a5834 - Improved version of tls by the Mitchell group 2006-11-24 08:10:52 +00:00
ccremers
96da9e087a - Improved description of protocol as in Corin/Etalle paper. 2006-11-23 18:51:28 +00:00
ccremers
4c469c542b - Added Mitchell et al fourway protocol. 2006-11-21 16:31:15 +00:00
ccremers
45dbcfad21 - Added SPORE protocols. 2006-11-21 13:42:06 +00:00
ccremers
567d629dd0 - Added protocols 2006-11-21 13:40:50 +00:00
ccremers
44e8771de8 - Remove spdl subdirectory: it is now part of the ecss repository. 2005-12-22 10:52:11 +00:00
ccremers
34484a28f9 - Added two simple demos. 2005-12-22 10:44:50 +00:00
ccremers
15a56b07fc - Cleanup. 2005-12-22 10:41:23 +00:00
ccremers
7ee029dc41 - Also moved nsl3. 2005-12-22 10:40:21 +00:00
ccremers
64f041e176 - Moved many old protocols to the misc directory. 2005-12-22 10:38:00 +00:00
ccremers
00e49601eb - Modified the multinsl generator to also be able to generate bke
variants (--protocol bke).
2005-12-21 18:44:34 +00:00
ccremers
1527773ae2 - Added Boyd's NSL fix, which is broken. 2005-11-09 11:51:38 +00:00
gijs
cb0f72a23d - Use I and R as role names instead of A and B in ksl 2005-09-19 10:13:17 +00:00
gijs
053a76e5fb - oops forgot to update 1 message, we really need some option to check
input files for correctness (i.e. will it finish without an intruder)
2005-08-31 13:17:54 +00:00
gijs
a4c9303781 - Fix a modelling error in wmf-lowe 2005-08-31 13:08:10 +00:00
gijs
40f881b125 - Fix 2 incomplete/incorrect modellings 2005-08-22 13:52:29 +00:00
ccremers
fb2c0f1d7a - Whoops, too readable (i.e. wrong) 2005-08-19 15:25:35 +00:00
ccremers
0a9c0fbfac - Implemented a much beter naming convention for the roles, which should
make hand proofs much easier.
2005-08-18 14:00:51 +00:00
ccremers
95d33810ce - Added some heuristics testing. 2005-08-15 14:01:01 +00:00
gijs
0f54f2ed23 - Update modeling of needham schroeder to better reflect the modelling in
SPORE:
    - pk is not known to all agents, only pk(Simon) is known
- Use new naming convention:
    - Protocol name starting with an @ means internal protocol
    - For non internal protocols naming is as follows:
      protocolname-variant^subprotocol
    For example: yahalom-Lowe^KeyCompromise meaning the key compromise sub
    protocol of the Lowe variant of the Yahalom protocol.
2005-08-15 13:31:48 +00:00
ccremers
7e246cf4f3 - Added some agreement/synchronisation claims. 2005-08-12 13:56:37 +00:00
ccremers
6f900f1d47 - More narrowing down. 2005-08-12 13:52:38 +00:00
gijs
5a027cc00a - Forgot to update wmf to the ExpiredTimeStamp 2005-08-12 13:24:00 +00:00
gijs
44bc36edc5 - Add @ to swapkey, to disable it in classification
- Modify key Compromise for protocols that contain a timestamp to make the
  key compromise disclose a timestamp with a different type, namely 
  ExpiredTimeStamp so that they will not be accepted as timestamps in a new
  session, thereby simulating that they are expired.
2005-08-12 11:55:24 +00:00
ccremers
149b774b18 - Interesting intermediate results. 2005-08-12 11:28:18 +00:00
ccremers
56f7cf5df2 - Added switch '--la-tupling' to enforce left-associative tupling
instead of the default right-associative tupling. Note that this only
  matters for full typeflaw matching.
- Adapted multi-nsl test script to test for both association variants.
2005-08-12 07:28:44 +00:00
gijs
eb948b8009 - Fix a small modelling error in wmf-lowe 2005-07-07 14:03:48 +00:00
ccremers
b7f82212c0 - Some improvements. 2005-07-05 09:54:00 +00:00
gijs
53e7a7c55d - Fixed a modelling error in the key compromise part of WMF-Lowe
- Included agent names in WMF-Lowe messages
2005-07-04 13:40:09 +00:00
gijs
92356a2d43 - Add names to WMF messages so that the system property described in SPORE
(agents will not accepted messages they have created them selves) can be
  modelled.
2005-07-04 13:29:49 +00:00
ccremers
12b5d96ddb - Added script to test all variants of something. 2005-07-04 11:52:36 +00:00
ccremers
4c4fe45555 - Better name. 2005-07-04 11:12:39 +00:00
ccremers
cf52f34dab - Working version. 2005-07-04 11:12:27 +00:00
ccremers
86b1a8295c - Strange stuff. 2005-07-01 12:32:00 +00:00
ccremers
053c3b046b - Added protocol 2, three party version. 2005-07-01 09:51:12 +00:00
ccremers
342d968895 - Better text.
- Added four-party version.
2005-07-01 09:32:53 +00:00
ccremers
0cf19b98a3 - Added the BuNaVa protocol 1. 2005-07-01 08:59:05 +00:00
gijs
49cd9b1271 - Use variable type SessionKey every where instead of a combination
between Key and SessionKey
- Make KSL working again
2005-06-29 12:42:25 +00:00
ccremers
eef9072324 - Started to work on multiparty protocol generator. 2005-06-28 13:41:55 +00:00
gijs
c2b3f6492f - Remove some small modelling errors
- New way to model Neumann Stub (it should be 2 distinct protocols)
2005-06-27 11:50:24 +00:00
gijs
6fb6aa33dd - Add session compromise to all protocols that establish a session key 2005-06-24 10:53:15 +00:00
gijs
658f4f392a - Add Compromised claim to test my new definition of freshness in combination
with key compromise (appears to be working pretty well)
2005-06-23 12:49:34 +00:00
gijs
4c224dc6f4 - Add freshness claims to the protocols that should guarantee freshness 2005-06-23 12:45:32 +00:00
gijs
f8a91d744d Little tweak to the key compromise modelling, model key compromise agent as a
responder instead of an initiator, remove empty roles from key compromise
protocol.
2005-06-15 09:17:15 +00:00
gijs
ba47af0c42 - Test out a possible way to model key compromise:
Add a role that sends out all messages that would occur in a legit
  run of the protocol including the session key (simulating a previously
  recorded run with its compromised session key)

- Adding a directory to play around with key compromise
2005-06-14 13:51:51 +00:00
gijs
b212e0b1ec - Add a dummy role in andrew-ban-concrete to work around the key symmetry
issue (k(I,R) != k(R,I))
- Fix a typo in splice-as-cj
2005-06-14 12:24:42 +00:00
gijs
56c032f4a5 Update SPORE protocols to use new ticket mechanism:
- Use builtin Ticket type instead of user type
- Remove remark that -m2 matching is required as it no longer is
2005-06-02 12:41:24 +00:00