Dynamic epistemic verification of security protocols: framework and case study

We propose a dynamic epistemic framework for the verification of security protocols. First, we introduce a dynamic epistemic logic equipped with iteration and cryptographic supplements in which we can formalize and check (epistemic) requirements of security protocols. On top of this, we give a general guide how to go from a protocol specification to its representation in our framework. We demonstrate this by checking requirements of a simplified version of a protocol for confidential message comparison

Reconciling operational and epistemic approaches to the formal analysis of crypto-based security protocols

We propose a unifying framework for formal specification and verification of both epistemic and behavioral aspects of security protocols. The main novelty of the proposed framework is the explicit support for cryptographic constructs, which is among the most essential ingredients of security protocols. Due to this feature, the indistinguishability relation for the epistemic constructs gets a dynamic semantics by taking the communicated keys and cryptographic terms in the operational specification into account

Who may say what? Thoughts about objectivity, group ability and permission in dynamic epistemic logic

De nombreuses situations font intervenir la notion de communication ainsi que des restrictions sur cette communication. C'est le cas lorsque l'on pense à des informations militaires, des communications médicales, des normes morales, des jeux, etc. Dans certaines des ces situations, il se peut qu'existent des structures pour penser et organiser le droit de communiquer. Dans l'armée par exemple une telle structure est assez simple et facile à comprendre: plus on est haut-placé dans la hiérarchie militaire, plus on a le droit de savoir et moins on a l'autorisation de dire. Le champ médical est un exemple où des restrictions plus subtiles empêchent un patron d'avoir accès à des données médicales d'un de ses travailleurs, alors qu'un docteur devrait pouvoir y avoir accès. Souvent, ces structures sont présentées sous la forme d'un ensemble de règles informelles, ensemble qui peut être incomplet et même contradictoire, laissant la justice décider ce qu'il convient de faire en cas de conflits. L'objectif de ce mémoire est d'apporter quelques éléments, dans le champ de la logique, pour une meilleure compréhension de la notion de `droit de savoir', éléments qui pourraient nous aider à comprendre et répondre aux problèmes pour lesquels cette notion rentre en jeu. On concentre notre réflexion sur la partie informative de la communication, ce qui amène notre sujet central à la notion de `droit de donner une information'.Many situations involve communication and some kind of restrictions on this communication. This is the case when we think about military information, medical communication, moral norms, games, etc. In some situations, we may have structures to think about and organize the right to communicate in such situations. In the army, for example, such a structure is quite simple and easy to understand: the higher you are in the hierarchy, the more you may know and the less you are allowed to say. Indeed, a general can know any secret information but have no right to reveal it to his soldiers, while a soldier can give any information he wants (and may have to give the information he has) without having the right to access most of the information. As another example, in the medical field, more subtle restrictions prevent a boss from getting one of his workers' medical information, while a doctor may have access to it. Often such structures are presented as an informal and incomplete set of rules, that may be contradictory (and let the justice decide what should be done in case of conflict). But we have no general framework to analyze such situations. The aim of this dissertation is to make some progress, in the field of logic, in the understanding of the notion of `right to say', progress that may help us understand and answer problems that involve such a notion. We focus on the informative part of communication (and not on its form) leading our topic to the notion of `right to give a piece of information'

Update Semantics of Security Protocols

Contains fulltext : 60368.pdf (publisher's version ) (Closed access