- Add session compromise to all protocols that establish a session key

2005-06-24 10:53:15 +00:00
parent 658f4f392a
commit 6fb6aa33dd
23 changed files with 552 additions and 17 deletions
--- a/spdl/SPORE/ksl-lowe.spdl
+++ b/spdl/SPORE/ksl-lowe.spdl
@@ -17,6 +17,7 @@ secret k: Function;
 const a, b, e: Agent;
 const s: Server;
 const Fresh: Function;
+const Compromised: Function;


 const ne: Nonce;
@@ -24,6 +25,34 @@ const kee: SessionKey;
 untrusted e;
 compromised k(e,s);

+protocol kslLoweSessionKeyCompromise(C)
+{
+    // Read the names of 3 agents and disclose a session between them including
+    // corresponding session key to simulate key compromise
+    role C {
+        const Ni,Nr,Nc,Ma,Mb: Nonce;
+        const Kir: SessionKey;
+        const Kbb: TicketKey;
+        const Tr: GeneralizedTimestamp;
+        var I,R,S: Agent;
+
+        read_C1(C,C,    I,R,S);
+        send_C2(C,C,    (Ni,I),
+                        (Ni,I,Nr,R),
+                        {I,Nr,Kir}k(R,S),{Ni,R,Kir}k(I,S),
+                        {Tr,I,Kir}Kbb,Nc,{R,Ni}k(I,R),
+                        {Nc}Kir,
+                        Ma,
+                        Mb,{Ma,R}Kir,
+                        {I,Mb}Kir,
+                        Kir,
+                        Kbb
+               );
+        claim_C3(C,Empty, (Compromised,Kir));
+        claim_C4(C,Empty, (Compromised,Kbb));
+    }
+}
+
 protocol kslLowe(A,B,S)
 {
    role A