Verifying Confidentiality and Authentication in Kerberos 5

Verifying Confidentiality and Authentication in Kerberos 5

We present results from a recent project analyzing Kerberos 5. The main expected properties of this protocol, namely confidentiality and authentication, hold throughout the protocol. Our analysis also highlights a number of behaviors that do not follow the script of the protocol, although they do no...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Butler, Frederick, Cervesato, Iliano, Jaggard, Aaron D., Scedrov, Andre
Format: Buchkapitel
Sprache:eng
Schlagworte:
Applied sciences
Computer science
control theory
systems
Computer systems performance. Reliability
Encryption Type
Error Message
Exact sciences and technology
Level Formalization
Memory and file management (including protection and security)
Memory organisation. Data processing
Protocol Participant
Service Ticket
Software
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:We present results from a recent project analyzing Kerberos 5. The main expected properties of this protocol, namely confidentiality and authentication, hold throughout the protocol. Our analysis also highlights a number of behaviors that do not follow the script of the protocol, although they do not appear harmful for the principals involved. We obtained these results by formalizing Kerberos 5 at two levels of detail in the multiset rewriting formalism MSR and by adapting an inductive proof methodology pioneered by Schneider. Our more detailed specification takes into account encryption types, flags and options, error messages, and a few timestamps.
ISSN:0302-9743
1611-3349
DOI:10.1007/978-3-540-37621-7_1