ePrints@IIScePrints@IISc Home | About | Browse | Latest Additions | Advanced Search | Contact | Help

Formal analysis of a security protocol for e-passports based on rewrite theory specifications

Mandadi, MR and Mandadi, VR and Ogata, K (2018) Formal analysis of a security protocol for e-passports based on rewrite theory specifications. In: Journal of Information Security and Applications, 42 . pp. 71-86.

[img] PDF
jou_inf_sec_app_42_71-86_2018.pdf - Published Version
Restricted to Registered users only
Download (1MB) | Request a copy
Official URL: https://doi.org/10.1016/j.jisa.2018.08.005

Abstract

We report on a case study in which Password Authentication Connection Establishment (PACE) protocol has been formally analyzed based on its rewrite theory specification with Maude, a rewriting logic-based computer language and system. Dominik Klein has formally verified with interactive theorem proving that PACE enjoys the key secrecy property under the condition that the password shared by a passport chip C and a terminal T would be never leaked to the third party. In contrast, our analysis supposes that the password is leaked to an intruder once it has been used in a session completed. Under the condition, the analysis unveils some security weakness that PACE does not enjoy the correspondence (or authentication or agreement) properties from both C and T points of view. Then, we propose that one-time password is used in PACE. We have formally analyzed that the revised version enjoys the correspondence properties under the latter condition. We have used the Maude search command that can be used to conduct reachability analysis because the correspondence properties can be formalized as invariant properties.

Item Type: Journal Article
Publication: Journal of Information Security and Applications
Publisher: Elsevier Ltd
Additional Information: The copyright for this article belongs to the Elsevier Ltd.
Keywords: Model checking; Specifications, E-passport; Interactive theorem proving; Invariant properties; Key exchange; Maude; Password authentication; Reachability analysis; Rewriting, Authentication
Department/Centre: Division of Physical & Mathematical Sciences > Physics
Date Deposited: 03 Aug 2022 07:02
Last Modified: 03 Aug 2022 07:02
URI: https://eprints.iisc.ac.in/id/eprint/75228

Actions (login required)

View Item View Item
Powered by EPrints A service from The J.R.D. Tata Memorial Library Indian Institute of Science, Bengaluru-560012, India