- Add session compromise to all protocols that establish a session key

2005-06-24 10:53:15 +00:00
parent 658f4f392a
commit 6fb6aa33dd
23 changed files with 552 additions and 17 deletions
--- a/spdl/SPORE/ksl.spdl
+++ b/spdl/SPORE/ksl.spdl
@@ -15,12 +15,42 @@ secret k: Function;
 const a, b, e: Agent;
 const s: Server;
 const Fresh: Function;
+const Compromised: Function;

 const ne: Nonce;
 const kee: SessionKey;
 untrusted e;
 compromised k(e,s);

+protocol kslSessionKeyCompromise(C)
+{
+    // Read the names of 3 agents and disclose a session between them including
+    // corresponding session key to simulate key compromise
+    role C {
+        const Ni,Nr,Nc,Ma,Mb: Nonce;
+        const Kir: SessionKey;
+        const Kbb: TicketKey;
+        const Tr: GeneralizedTimestamp;
+        var I,R,S: Agent;
+
+        read_C1(C,C,    I,R,S);
+        send_C2(C,C,    (Ni,I),
+                        (Ni,I,Nr,R),
+                        {Nr,I,Kir}k(R,S),{Ni,R,Kir}k(I,S),
+                        {Tr,I,Kir}Kbb,Nc,{Ni}k(I,R),
+                        {Nc}Kir,
+                        Ma,
+                        Mb,{Ma}Kir,
+                        {Mb}Kir,
+                        Kir,
+                        Kbb
+               );
+        claim_C3(C,Empty, (Compromised,Kir));
+        claim_C4(C,Empty, (Compromised,Kbb));
+    }
+}
+
+
 protocol ksl(A,B,S)
 {
    role A