Vrushali Lanjewar, profile picture
Uploaded byVrushali Lanjewar
PPTX, PDF811 views

Cryptographic protocols

This document discusses cryptographic protocols and their analysis. It begins by covering the origins of cryptographic protocols and some key concepts like primitives, definitions, and modeling adversaries. It then addresses information policies protocols aim to achieve, like maintaining privacy or authenticating parties. The document outlines principles for analyzing protocols like Simmons's heuristics and separation of concerns. It also notes challenges like proving correctness and dealing with protocol composition. Finally, it introduces tools like Scyther for automated security analysis of protocols. In summary, the document provides an overview of cryptographic protocols, issues in their design and analysis, and techniques for evaluating their security.

Embed presentation

Download to read offline
Cryptographic Protocols Presented By : Vrushali T.Lanjewar ME 1st yr CSIT, PG. Department of SGBAU
Contents 1. The Origins 2. Information Policies 3. Some concepts  Primitive and protocols  Definitions  The Protocol as a Language  Provability  Modeling the Adversary  The Problem of Protocol Composition 4. Protocol Failures 5. Heuristics 6. Tools for Automated Security Analysis
Origins  Classical model of Crypto-System involves only sender and receiver - One way transmission  IFF protocols started in 1952 by Feistel Group at Air Force Research Center  Roger Needham solve the problem of protecting password by applying the concept of protocols.  Public-key cryptography inventor Whitfield Diffie solve the problem of authentication.  Zero-knowledge interactive protocols
Information Policies The following list indicates a classification of some concerns that may arise:  Release of Information - Maintain private information. - Prove the possession of secrets without releasing more information. - Exclusive sharing of information. - Gradual release of information. - Oblivious release of information. - Exchange of secret information. - Anonymity of sender and receiver.
 Preservation of information: - Maintain correct and complete information among two or more parties. - Correct senders and receivers. - Correct time and complete sequence of events. We will find all these concerns in various application areas of networked communications. For example, e-commerce, transactions, financial trading, on-line auctions.
Some Concepts Primitives and protocols  Cryptographic Primitives: The mathematical operations and functions in local cryptographic transformations are computed by communicating parties (e.g. encryption, hash function, public key trapdoor function ,secret key stream, block cipher)  Cryptographic Protocols : The communication procedures that use cryptographic primitives in achieving some goals (e.g. key distribution entity authentication, confidential information sharing. ) - Small programs designed to secure communication (various security goals)
 Definitions - Communication protocol is a set of rules that controls the interaction of communicating parties. Two party case, n=2 Multi-party case n>=3(single sender and multiple recipients) - Cryptographic protocol is a communication protocol that includes one or more cryptographic primitives. - Communication channel is the communication medium enabling the message exchange between communicating parties.
Protocol as a Language  A language consist of an alphabet of symbols, the syntax of acceptable words of language and grammar of acceptable sentences.  The service provided to communicating parties by the protocol.  The vocabulary of messages that can be used in the exchange. Provability  Correctness – For all possible input values when all parties behave according to protocol rules.  Soundness – The security of the protocol principals relative to adversary.
Modeling of Adversary  We may assume weak adversary with limited power, or stronger adversary with extended power over communication and participants.  The weakest adversary model is the passive eavesdropping model of Shannon.  In even stronger attack model, Malice can also be acknowledged the power to take over(“corrupt”) other principals, making the opportunity for collusion attacks by all “maliced” principals on remaining principals.
Problem of Protocol Composition  Security of arbitrary cryptographic protocol composition is a grand challenge.  One concern is interdependencies between security requirement and execution environment. Types of protocol composition:  Sequential composition of runs of one or more protocols.  Parallel composition of runs of one or more protocols.  Concurrent protocol composition allowing arbitrary message interleaving of simultaneous runs of one or more protocols.
Protocol Failure  Reasons for Failure It can come from: 1. Incorrect design of the cryptographic primitives 2. Incorrect design of the cryptographic protocol 3. Incorrect implementation 4. Incorrect environment 5. Incorrect operational management All these concerns must be observed to ensure the correctness and soundness of operational cryptographic protocol as part of larger system.
Heuristics  Simmons's principle Principle1- Enumerate all of the properties of all of quantities involved. Principle2- 1. Go through the list of properties assuming that none of them are as they are claimed or tacitly assumed to be unless a proof technique exist to either or verify their nature. 2. For each possible violation of property, critically examine the protocol to see if this makes any difference in the outcome of execution of the protocol. 3. Consider combinations of parameters as well as single parameters.
Principle 3-  If the outcome of protocol can be influenced as a result of a violation of one or more of the assumed properties, it is essential to determine whether this can be exploited to advance some meaningful deception.  Protocol failure occur whenever the function of protocol can be subverted as consequence of violations.
Separation of concerns  Divide and conquer is a useful principle in algorithmic design.  A direct and natural problem partitioning attempt for cryptographic protocol is to separate the concern of crypto-primitives and cryptographic protocols.  An encryption of message m under secret key k becomes abstracted and an ideal with [m]k, though a detailed definition of what this notation means in terms of security must be made too.
 A simple approach to cryptographic protocol specification between an initiator I and responder R, based on initialization of crypto-primitives c an go like this: 1. I --> R: [NI, I] pk(R) 2. R--> I: [NI, NR] pk(I) 3. I --> R: [NR] pk(R) This describes Needham -Schroeder public based mutual authentication protocol.
ResponderInitiator Nonce NI [NI, I] pk(R) [NI, NR] pk(I) Nonce NR R authenticated NI , NR Secret [NR] pk(R) I authenticated NI , NR Secret Fig. Needham –Schroder public key based authentication protocol
More prudent engineering advice  Basic principle1: Explicit communication Every message should say what it means : its interpretation depends on its content.  Basic principle2: Appropriate Conditions for Actions The conditions for [received] message to be acted upon should be clearly set out so that someone receiving a design may see whether they are acceptable or not.
Tools for Automated Security Analysis  Scyther is a formal analysis method tool .  Scyther is a tool for the automatic verification of security protocols.  It is a specialized model checker for authentication protocol that emulate simple theorem proving methods.  Scyther tool illustrates the attack scenarios found by graphical diagram.
Summary  Cryptographic protocols are used to provide security guarantees for the exchanged data when multiple parties are communicating in an insecure environment.  The need for such security guarantees arises because there are malicious parties who have interest in obtaining or tampering with the exchanged information.  In this we studied information policies, protocol failures, heuristics ,tools for automated security.
Questions ?  Explain Cryptographic protocol and primitives.  State and explain reasons for protocol failure.  Short note on- 1.Protocol as language, 2.Simmons principle , 3. Problem of protocol composition, 4.Modeling adversary.
Thank you!

More Related Content

PPTX
CRYPTOGRAPHY & NETWORK SECURITY - unit 1
byRAMESHBABU311293
 
PPTX
RSA Algorithm
bySrinadh Muvva
 
PPTX
Operating System Security
byRamesh Upadhaya
 
PPTX
Transport layer security (tls)
byKalpesh Kalekar
 
PPT
Operating system vulnerability and control
byأحلام انصارى
 
PPTX
Computer security concepts
byPrachi Gulihar
 
PPTX
Hash Function
byssuserdfb2da
 
PPTX
Topic1 substitution transposition-techniques
byMdFazleRabbi18
 
CRYPTOGRAPHY & NETWORK SECURITY - unit 1
byRAMESHBABU311293
 
RSA Algorithm
bySrinadh Muvva
 
Operating System Security
byRamesh Upadhaya
 
Transport layer security (tls)
byKalpesh Kalekar
 
Operating system vulnerability and control
byأحلام انصارى
 
Computer security concepts
byPrachi Gulihar
 
Hash Function
byssuserdfb2da
 
Topic1 substitution transposition-techniques
byMdFazleRabbi18
 

What's hot

PDF
symmetric key encryption algorithms
byRashmi Burugupalli
 
PDF
Chapter 1 Introduction of Cryptography and Network security
byDr. Kapil Gupta
 
PDF
Block Cipher Modes of Operation And Cmac For Authentication
byVittorio Giovara
 
PPTX
Cryptography
byJens Patel
 
PPTX
Cryptography.ppt
bykusum sharma
 
PPTX
Secure Socket Layer (SSL)
bySamip jain
 
PPT
X.509 Certificates
bySou Jana
 
PDF
2. Stream Ciphers
bySam Bowne
 
PPTX
Network Security Issues
byAfreenYousaf
 
PPTX
Network Security
bymoviebro1
 
PPTX
Introduction to Cryptography
byMd. Afif Al Mamun
 
PPTX
Data Encryption Standard (DES)
byHaris Ahmed
 
PPTX
IP Security
byKeshab Nath
 
PPTX
Diffie hellman key exchange algorithm
bySunita Kharayat
 
PPT
chapter 1. Introduction to Information Security
byelmuhammadmuhammad
 
PDF
Classical encryption techniques
byDr.Florence Dayana
 
PPTX
Cryptography and Network Security
byPa Van Tanku
 
PPTX
Information Security (Digital Signatures)
byZara Nawaz
 
PPTX
Cryptographic tools
byCAS
 
PPTX
Cryptography
byDarshini Parikh
 
symmetric key encryption algorithms
byRashmi Burugupalli
 
Chapter 1 Introduction of Cryptography and Network security
byDr. Kapil Gupta
 
Block Cipher Modes of Operation And Cmac For Authentication
byVittorio Giovara
 
Cryptography
byJens Patel
 
Cryptography.ppt
bykusum sharma
 
Secure Socket Layer (SSL)
bySamip jain
 
X.509 Certificates
bySou Jana
 
2. Stream Ciphers
bySam Bowne
 
Network Security Issues
byAfreenYousaf
 
Network Security
bymoviebro1
 
Introduction to Cryptography
byMd. Afif Al Mamun
 
Data Encryption Standard (DES)
byHaris Ahmed
 
IP Security
byKeshab Nath
 
Diffie hellman key exchange algorithm
bySunita Kharayat
 
chapter 1. Introduction to Information Security
byelmuhammadmuhammad
 
Classical encryption techniques
byDr.Florence Dayana
 
Cryptography and Network Security
byPa Van Tanku
 
Information Security (Digital Signatures)
byZara Nawaz
 
Cryptographic tools
byCAS
 
Cryptography
byDarshini Parikh
 

Similar to Cryptographic protocols

PDF
Survey of universal authentication protocol for mobile communication
byAhmad Sharifi
 
PPT
security lecture and final powepoint presentation
bysrajece
 
PPTX
Network security concepts cryptographic protocols
bysaifimannu957
 
PDF
Cryptographic Protocol is and isn't like LEGO.
byShin'ichiro Matsuo
 
PPT
Chapter lecture 1 & 2.pptChapter lecture 1 & 2.ppt
bymadeellegend
 
PPTX
CRYPTOGRAPHY & NETWORK SECURITY [Autosaved].pptx
byasjadzaki2021
 
PPTX
Basic Cryptography unit 4 CSS
byDr. SURBHI SAROHA
 
PPTX
CNS new ppt unit 1.pptx
byRizwanBasha12
 
PPTX
3_Protocols chapter from book that explain the subject protocol in chapter th...
bydrhamdan2
 
PDF
CS6701 CRYPTOGRAPHY AND NETWORK SECURITY
byKathirvel Ayyaswamy
 
PDF
CNS Unit1 Notes-intorduction to machine learning
byvoilaalberto
 
PPT
Fundamentals of cryptography
byHossain Md Shakhawat
 
PPTX
Information Security and Privacy-Unit-2.pptx
byNiharikaDubey17
 
PDF
chapter 1-4.pdf
byzerihunnana
 
PDF
information technology cryptography Msc chapter 1-4.pdf
bywondimagegndesta
 
PPTX
Cryptography and Network Security-ch1-4.pptx
bySamiDan3
 
PPT
Network security cryptography ppt
byThushara92
 
PPT
CNS Unit-I_final.ppt
bySwapnaPavan2
 
PDF
Lecture-3Lecture-3Lecture-3Lecture-3.pdf
byFutureTechnologies3
 
PPTX
Seminar Information Protection & Computer Security (Cryptography).pptx
byumardanjumamaiwada
 
Survey of universal authentication protocol for mobile communication
byAhmad Sharifi
 
security lecture and final powepoint presentation
bysrajece
 
Network security concepts cryptographic protocols
bysaifimannu957
 
Cryptographic Protocol is and isn't like LEGO.
byShin'ichiro Matsuo
 
Chapter lecture 1 & 2.pptChapter lecture 1 & 2.ppt
bymadeellegend
 
CRYPTOGRAPHY & NETWORK SECURITY [Autosaved].pptx
byasjadzaki2021
 
Basic Cryptography unit 4 CSS
byDr. SURBHI SAROHA
 
CNS new ppt unit 1.pptx
byRizwanBasha12
 
3_Protocols chapter from book that explain the subject protocol in chapter th...
bydrhamdan2
 
CS6701 CRYPTOGRAPHY AND NETWORK SECURITY
byKathirvel Ayyaswamy
 
CNS Unit1 Notes-intorduction to machine learning
byvoilaalberto
 
Fundamentals of cryptography
byHossain Md Shakhawat
 
Information Security and Privacy-Unit-2.pptx
byNiharikaDubey17
 
chapter 1-4.pdf
byzerihunnana
 
information technology cryptography Msc chapter 1-4.pdf
bywondimagegndesta
 
Cryptography and Network Security-ch1-4.pptx
bySamiDan3
 
Network security cryptography ppt
byThushara92
 
CNS Unit-I_final.ppt
bySwapnaPavan2
 
Lecture-3Lecture-3Lecture-3Lecture-3.pdf
byFutureTechnologies3
 
Seminar Information Protection & Computer Security (Cryptography).pptx
byumardanjumamaiwada
 

More from Vrushali Lanjewar

DOCX
Best performance evaluation metrics for image Classification.docx
byVrushali Lanjewar
 
PPTX
Studies based on Deep learning in recent years.pptx
byVrushali Lanjewar
 
PDF
Word art1
byVrushali Lanjewar
 
PPTX
My Dissertation 2016
byVrushali Lanjewar
 
PDF
Comparison of thresholding methods
byVrushali Lanjewar
 
DOCX
Software Engineering Testing & Research
byVrushali Lanjewar
 
PDF
Real Time Embedded System
byVrushali Lanjewar
 
PDF
Performance Anaysis for Imaging System
byVrushali Lanjewar
 
PDF
Advance Computer Architecture
byVrushali Lanjewar
 
PDF
Wireless Communication Network Communication
byVrushali Lanjewar
 
PDF
Distributed Database practicals
byVrushali Lanjewar
 
PPTX
Pmgdisha
byVrushali Lanjewar
 
PPT
Distributed system
byVrushali Lanjewar
 
Best performance evaluation metrics for image Classification.docx
byVrushali Lanjewar
 
Studies based on Deep learning in recent years.pptx
byVrushali Lanjewar
 
Word art1
byVrushali Lanjewar
 
My Dissertation 2016
byVrushali Lanjewar
 
Comparison of thresholding methods
byVrushali Lanjewar
 
Software Engineering Testing & Research
byVrushali Lanjewar
 
Real Time Embedded System
byVrushali Lanjewar
 
Performance Anaysis for Imaging System
byVrushali Lanjewar
 
Advance Computer Architecture
byVrushali Lanjewar
 
Wireless Communication Network Communication
byVrushali Lanjewar
 
Distributed Database practicals
byVrushali Lanjewar
 
Pmgdisha
byVrushali Lanjewar
 
Distributed system
byVrushali Lanjewar
 

Recently uploaded

PDF
Shear Strength of Soil (Direct shear test).pdf
byMahmoodKhalid11
 
PPTX
ME3592 - Metrology and Measurements - Unit - 1 - Lecture Notes
bypprakash21252
 
PPTX
Theory to Practice of Unsaturated Soil Mechanics-1.pptx
byMahmoodKhalid11
 
PDF
Module 4 python programming-1BPLCK105B-2025 by Dr.SV.pdf
bySURESHA V
 
PPTX
Basic Volume Mass Relationship and unit weight as function of volumetric wate...
byMahmoodKhalid11
 
PDF
Chad Ayach - An Accomplished Mechanical Engineer
byChad Ayach
 
PPTX
Presentation-WPS Office.pptx afgouvhyhgfccf
byEndaleTimerga
 
PDF
NS unit wise unit wise 1 -5 so prepare,.
bykumaransudhan1512
 
PPTX
What Green Hydrogen Is Definition: Hydrogen produced via electrolysis of wate...
byThit57
 
PPTX
uADPF Topology_SFP requirements_locked slides.pptx
byMd Bellal Hossain
 
PPTX
Batch-1(End Semester) Student Of Shree Durga Tech. PPT.pptx
byrashesw1122s
 
PPTX
operating_systems.pptx m,nm,nm,n,nm,n,nm,nikl
bykirthigaaiml
 
PPTX
GET 211- Computing and Software Engineering (1).pptx
byfestusdaniel142
 
PDF
Chemical Hazards at Workplace – Types, Properties & Exposure Routes, CORE-EHS
byCORE EHS
 
PPTX
Day 3 Module 5_Optical fiber Network (operation and management).pptx
bySachayaG
 
PDF
PROBLEM SLOVING AND PYTHON PROGRAMMING UNIT 3.pdf
byA R SIVANESH M.E., QIP-PG (Cyber Security)., (Ph.D)
 
PDF
Basics of Electronics Task by Vivaan Jo Varghese.pdf
byVivaan Jo Varghese
 
PPT
Cloud computing-1.ppt presentation preview
byMohanaPriya780617
 
PPTX
1.Module 4-Clamping of jigs and fixtures for manufacturing.pptx
bycondieki
 
PPT
Ceramic Matrix Composites Slide from Composite Materials
byUsman635773
 
Shear Strength of Soil (Direct shear test).pdf
byMahmoodKhalid11
 
ME3592 - Metrology and Measurements - Unit - 1 - Lecture Notes
bypprakash21252
 
Theory to Practice of Unsaturated Soil Mechanics-1.pptx
byMahmoodKhalid11
 
Module 4 python programming-1BPLCK105B-2025 by Dr.SV.pdf
bySURESHA V
 
Basic Volume Mass Relationship and unit weight as function of volumetric wate...
byMahmoodKhalid11
 
Chad Ayach - An Accomplished Mechanical Engineer
byChad Ayach
 
Presentation-WPS Office.pptx afgouvhyhgfccf
byEndaleTimerga
 
NS unit wise unit wise 1 -5 so prepare,.
bykumaransudhan1512
 
What Green Hydrogen Is Definition: Hydrogen produced via electrolysis of wate...
byThit57
 
uADPF Topology_SFP requirements_locked slides.pptx
byMd Bellal Hossain
 
Batch-1(End Semester) Student Of Shree Durga Tech. PPT.pptx
byrashesw1122s
 
operating_systems.pptx m,nm,nm,n,nm,n,nm,nikl
bykirthigaaiml
 
GET 211- Computing and Software Engineering (1).pptx
byfestusdaniel142
 
Chemical Hazards at Workplace – Types, Properties & Exposure Routes, CORE-EHS
byCORE EHS
 
Day 3 Module 5_Optical fiber Network (operation and management).pptx
bySachayaG
 
PROBLEM SLOVING AND PYTHON PROGRAMMING UNIT 3.pdf
byA R SIVANESH M.E., QIP-PG (Cyber Security)., (Ph.D)
 
Basics of Electronics Task by Vivaan Jo Varghese.pdf
byVivaan Jo Varghese
 
Cloud computing-1.ppt presentation preview
byMohanaPriya780617
 
1.Module 4-Clamping of jigs and fixtures for manufacturing.pptx
bycondieki
 
Ceramic Matrix Composites Slide from Composite Materials
byUsman635773
 

Cryptographic protocols

  • 1.
    Cryptographic Protocols Presented By: Vrushali T.Lanjewar ME 1st yr CSIT, PG. Department of SGBAU
  • 2.
    Contents 1. The Origins 2.Information Policies 3. Some concepts  Primitive and protocols  Definitions  The Protocol as a Language  Provability  Modeling the Adversary  The Problem of Protocol Composition 4. Protocol Failures 5. Heuristics 6. Tools for Automated Security Analysis
  • 3.
    Origins  Classical modelof Crypto-System involves only sender and receiver - One way transmission  IFF protocols started in 1952 by Feistel Group at Air Force Research Center  Roger Needham solve the problem of protecting password by applying the concept of protocols.  Public-key cryptography inventor Whitfield Diffie solve the problem of authentication.  Zero-knowledge interactive protocols
  • 4.
    Information Policies The followinglist indicates a classification of some concerns that may arise:  Release of Information - Maintain private information. - Prove the possession of secrets without releasing more information. - Exclusive sharing of information. - Gradual release of information. - Oblivious release of information. - Exchange of secret information. - Anonymity of sender and receiver.
  • 5.
     Preservation ofinformation: - Maintain correct and complete information among two or more parties. - Correct senders and receivers. - Correct time and complete sequence of events. We will find all these concerns in various application areas of networked communications. For example, e-commerce, transactions, financial trading, on-line auctions.
  • 6.
    Some Concepts Primitives andprotocols  Cryptographic Primitives: The mathematical operations and functions in local cryptographic transformations are computed by communicating parties (e.g. encryption, hash function, public key trapdoor function ,secret key stream, block cipher)  Cryptographic Protocols : The communication procedures that use cryptographic primitives in achieving some goals (e.g. key distribution entity authentication, confidential information sharing. ) - Small programs designed to secure communication (various security goals)
  • 7.
     Definitions - Communicationprotocol is a set of rules that controls the interaction of communicating parties. Two party case, n=2 Multi-party case n>=3(single sender and multiple recipients) - Cryptographic protocol is a communication protocol that includes one or more cryptographic primitives. - Communication channel is the communication medium enabling the message exchange between communicating parties.
  • 8.
    Protocol as aLanguage  A language consist of an alphabet of symbols, the syntax of acceptable words of language and grammar of acceptable sentences.  The service provided to communicating parties by the protocol.  The vocabulary of messages that can be used in the exchange. Provability  Correctness – For all possible input values when all parties behave according to protocol rules.  Soundness – The security of the protocol principals relative to adversary.
  • 9.
    Modeling of Adversary We may assume weak adversary with limited power, or stronger adversary with extended power over communication and participants.  The weakest adversary model is the passive eavesdropping model of Shannon.  In even stronger attack model, Malice can also be acknowledged the power to take over(“corrupt”) other principals, making the opportunity for collusion attacks by all “maliced” principals on remaining principals.
  • 10.
    Problem of ProtocolComposition  Security of arbitrary cryptographic protocol composition is a grand challenge.  One concern is interdependencies between security requirement and execution environment. Types of protocol composition:  Sequential composition of runs of one or more protocols.  Parallel composition of runs of one or more protocols.  Concurrent protocol composition allowing arbitrary message interleaving of simultaneous runs of one or more protocols.
  • 11.
    Protocol Failure  Reasonsfor Failure It can come from: 1. Incorrect design of the cryptographic primitives 2. Incorrect design of the cryptographic protocol 3. Incorrect implementation 4. Incorrect environment 5. Incorrect operational management All these concerns must be observed to ensure the correctness and soundness of operational cryptographic protocol as part of larger system.
  • 12.
    Heuristics  Simmons's principle Principle1-Enumerate all of the properties of all of quantities involved. Principle2- 1. Go through the list of properties assuming that none of them are as they are claimed or tacitly assumed to be unless a proof technique exist to either or verify their nature. 2. For each possible violation of property, critically examine the protocol to see if this makes any difference in the outcome of execution of the protocol. 3. Consider combinations of parameters as well as single parameters.
  • 13.
    Principle 3-  Ifthe outcome of protocol can be influenced as a result of a violation of one or more of the assumed properties, it is essential to determine whether this can be exploited to advance some meaningful deception.  Protocol failure occur whenever the function of protocol can be subverted as consequence of violations.
  • 14.
    Separation of concerns Divide and conquer is a useful principle in algorithmic design.  A direct and natural problem partitioning attempt for cryptographic protocol is to separate the concern of crypto-primitives and cryptographic protocols.  An encryption of message m under secret key k becomes abstracted and an ideal with [m]k, though a detailed definition of what this notation means in terms of security must be made too.
  • 15.
     A simpleapproach to cryptographic protocol specification between an initiator I and responder R, based on initialization of crypto-primitives c an go like this: 1. I --> R: [NI, I] pk(R) 2. R--> I: [NI, NR] pk(I) 3. I --> R: [NR] pk(R) This describes Needham -Schroeder public based mutual authentication protocol.
  • 16.
    ResponderInitiator Nonce NI [NI, I]pk(R) [NI, NR] pk(I) Nonce NR R authenticated NI , NR Secret [NR] pk(R) I authenticated NI , NR Secret Fig. Needham –Schroder public key based authentication protocol
  • 17.
    More prudent engineeringadvice  Basic principle1: Explicit communication Every message should say what it means : its interpretation depends on its content.  Basic principle2: Appropriate Conditions for Actions The conditions for [received] message to be acted upon should be clearly set out so that someone receiving a design may see whether they are acceptable or not.
  • 18.
    Tools for AutomatedSecurity Analysis  Scyther is a formal analysis method tool .  Scyther is a tool for the automatic verification of security protocols.  It is a specialized model checker for authentication protocol that emulate simple theorem proving methods.  Scyther tool illustrates the attack scenarios found by graphical diagram.
  • 19.
    Summary  Cryptographic protocolsare used to provide security guarantees for the exchanged data when multiple parties are communicating in an insecure environment.  The need for such security guarantees arises because there are malicious parties who have interest in obtaining or tampering with the exchanged information.  In this we studied information policies, protocol failures, heuristics ,tools for automated security.
  • 20.
    Questions ?  ExplainCryptographic protocol and primitives.  State and explain reasons for protocol failure.  Short note on- 1.Protocol as language, 2.Simmons principle , 3. Problem of protocol composition, 4.Modeling adversary.
  • 21.