中国科学院软件研究所机构知识库
Advanced  
ISCAS OpenIR  > 中科院软件所  > 中科院软件所
题名:
串空间理论及其对公平交换协议的分析
作者: 卢凤清
答辩日期: 2007-06-05
授予单位: 中国科学院软件研究所
授予地点: 软件研究所
学位: 博士
关键词: 串空间理论 ; 认证测试 ; 公平交换协议 ; 可追究性 ; 公平性
其他题名: The Research of Strand Spaces Theory and Analysis of Fair Exchange Protocols
摘要: 串空间理论是近年来提出的一种新的形式化分析方法。但是已有的串空间理论只适用于一些简单协议当中对于秘密性和认证性的分析,对于一些复杂情况下的协议安全性的描述与分析(例如协议交叉运行情况下的安全性或者群组协议当中动态情形下的安全性)仍然没有有效的方法。2000年Guttman和Fabrega提出了Authentication Tests的思想,该思想使得我们无需考虑协议的动态执行情况。我们对Guttman等人提出的三种测试中的输入测试(incoming test)进行扩展,使其能够用来分析使用签名和验证的协议,如CCITT X.509协议等。使用扩展后的输入测试来分析CCITT X.509协议的正确性,发现了它的不足之处。在使用串空间理论对Otway-Rees协议进行分析时发现协议的双方不能保证收到的会话密钥的一致性。针对这一点,我们提出了一种改进方法。改进后的方法不仅保证了会话密钥的一致性,而且使双方的认证性得到了改善。由于互联网应用的越来越普遍,对公平交换协议的研究变得越来越重要。公平交换协议是电子商务和电子交易成功的关键的理论基础。公平交换协议的目标是保护客户、商家彼此互不欺骗,保护互不信任的合作伙伴互不侵犯并公平完成商业交易。我们介绍了现有的公平交换协议并最后分析了它与传统安全协议的差别,考察了目前对公平交换协议的形式化分析的研究情况及串空间理论在公平交换协议研究方面的成果。我们对串空间理论进行扩展使其可以分析公平交换协议的安全性质,例如可追究性和公平性。我们引入了知识集等概念,与原理论中的认证测试中的主动测试相结合,对Deng等提出的在线挂号电子邮件协议进行了形式化分析,得出了与以往文献相同的结论。
英文摘要: The strand space theory is one of the newest formal analysis method proposed recent years. But now the applicability of strand space theory is just focus on the secrecy and authentication of simple protocols, it is still helpless to more security properties under complex environment (such as in mixed run protocols or the danymic security of group protocols). In 2000,Guttman and Fabrega introduced authentication tests and proved their soundness. The authentication results allow us to establish many authentication results without any consideration of the dynamic execution of protocols, involving the activity of several principals. In this paper, we present an extension of incoming test which introduced by Guttman et al. Then, we use it to analyze the protocols containing signing and verifying .After we apply our extension to CCITT X.509,we find an flaw in it. On the analysis of Otway-Rees protocol using strand space theory, a missing guarantee was founded, that is the protocol cannot guarantee the two principals agree on the session key distributed. In this paper, one kind of modified version of this protocol is offered, which not only guarantee the agreement of the session key, but also improve the two principals’ guarantees. Due to the impressive growth of the Internet and of open networks in general, the interest in fair exchange protocols has become more and more important during the last years. Fair echange porotocols are a crucial theoretic basic to make secure electronic commerce and electronic business transactions possible. Fair exchange protocols aim to protect clients against malicious merchants, as well as merchants against dishonest clients, business partners that do not trust each other, etc. We give an overview of fair exchange protocols, show some important differences between classical protocols, aiming authentication or secrecy, and fair exchange protocols, review some of work done on fair exchange protocols, especially strand space theory on fair exchange protocols. In this paper, we present an extension of strand space theory to analyze security properties such as accountability and fairness in fair exchange protocols. We introduce knowledge set, combined with unsolicited test, to analyze CMP1 protocol and have a same result as former literatures.
语种: 中文
内容类型: 学位论文
URI标识: http://ir.iscas.ac.cn/handle/311060/6584
Appears in Collections:中科院软件所

Files in This Item:
File Name/ File Size Content Type Version Access License
10001_200428015029072卢凤清_paper.doc(3431KB)----限制开放-- 联系获取全文

Recommended Citation:
卢凤清. 串空间理论及其对公平交换协议的分析[D]. 软件研究所. 中国科学院软件研究所. 2007-06-05.
Service
Recommend this item
Sava as my favorate item
Show this item's statistics
Export Endnote File
Google Scholar
Similar articles in Google Scholar
[卢凤清]'s Articles
CSDL cross search
Similar articles in CSDL Cross Search
[卢凤清]‘s Articles
Related Copyright Policies
Null
Social Bookmarking
Add to CiteULike Add to Connotea Add to Del.icio.us Add to Digg Add to Reddit
所有评论 (0)
暂无评论
 
评注功能仅针对注册用户开放,请您登录
您对该条目有什么异议,请填写以下表单,管理员会尽快联系您。
内 容:
Email:  *
单位:
验证码:   刷新
您在IR的使用过程中有什么好的想法或者建议可以反馈给我们。
标 题:
 *
内 容:
Email:  *
验证码:   刷新

Items in IR are protected by copyright, with all rights reserved, unless otherwise indicated.

 

 

Valid XHTML 1.0!
Copyright © 2007-2017  中国科学院软件研究所 - Feedback
Powered by CSpace