Model-Driven Engineering for Formal Verification and Security Testing of Authentication Protocols
Even if the verification of authentication protocols can be achieved by means of formal analysis, the modelling of such an activity is an error-prone task due to the lack of automated and integrated processes. This paper proposes a comprehensive approach, based on the Unified Modeling Language (UML)...
Gespeichert in:
| Veröffentlicht in: | arXiv.org 2022-10 |
|---|---|
| Hauptverfasser: | , , |
| Format: | Artikel |
| Sprache: | eng |
| Schlagworte: | |
| Online-Zugang: | Volltext |
| Tags: |
Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
|
| container_end_page | |
|---|---|
| container_issue | |
| container_start_page | |
| container_title | arXiv.org |
| container_volume | |
| creator | Raimondo, Mariapia Marrone, Stefano Palladino, Angelo |
| description | Even if the verification of authentication protocols can be achieved by means of formal analysis, the modelling of such an activity is an error-prone task due to the lack of automated and integrated processes. This paper proposes a comprehensive approach, based on the Unified Modeling Language (UML) profiling technique and on model-transformation, to enable automatic analysis of authentication protocols starting from high-level models. In particular, a UML-based approach is able to generate an annotated model of communication protocols from which formal notations (e.g., AnBx, Tamarin) can be generated. Such models in lower-level languages can be analysed with existing solvers and/or with traditional testing techniques by means of test case generation approaches. The industrial impact of the research is high due to the growing need of security and the necessity to connect industrial processes and equipment to virtualised computing infrastructures. The research is conducted on two case studies: railway signalling systems and blockchain based applications. |
| format | Article |
| fullrecord | <record><control><sourceid>proquest</sourceid><recordid>TN_cdi_proquest_journals_2722601551</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>2722601551</sourcerecordid><originalsourceid>FETCH-proquest_journals_27226015513</originalsourceid><addsrcrecordid>eNqNyz0LwjAYBOAgCBbtfwg4F9LEtK6iLS6CoLiW0CY1JebVfAj-eyvo7nRw99wEJZSxPFuvKJ2h1PuBEEKLknLOEiQO0EmT7Zx-Sosr22srpdO2xwocrsHdhMGXsVG6FUGDxcJ2-CTb6HR44bP04YNB4U0MV2nDjx0dBGjB-AWaKmG8TL85R8u6Om_32d3BI47_ZoDo7Dg1tKS0IDnnOftPvQFe_0Wj</addsrcrecordid><sourcetype>Aggregation Database</sourcetype><iscdi>true</iscdi><recordtype>article</recordtype><pqid>2722601551</pqid></control><display><type>article</type><title>Model-Driven Engineering for Formal Verification and Security Testing of Authentication Protocols</title><source>Free E- Journals</source><creator>Raimondo, Mariapia ; Marrone, Stefano ; Palladino, Angelo</creator><creatorcontrib>Raimondo, Mariapia ; Marrone, Stefano ; Palladino, Angelo</creatorcontrib><description>Even if the verification of authentication protocols can be achieved by means of formal analysis, the modelling of such an activity is an error-prone task due to the lack of automated and integrated processes. This paper proposes a comprehensive approach, based on the Unified Modeling Language (UML) profiling technique and on model-transformation, to enable automatic analysis of authentication protocols starting from high-level models. In particular, a UML-based approach is able to generate an annotated model of communication protocols from which formal notations (e.g., AnBx, Tamarin) can be generated. Such models in lower-level languages can be analysed with existing solvers and/or with traditional testing techniques by means of test case generation approaches. The industrial impact of the research is high due to the growing need of security and the necessity to connect industrial processes and equipment to virtualised computing infrastructures. The research is conducted on two case studies: railway signalling systems and blockchain based applications.</description><identifier>EISSN: 2331-8422</identifier><language>eng</language><publisher>Ithaca: Cornell University Library, arXiv.org</publisher><subject>Authentication ; Authentication protocols ; Cryptography ; Railroad signaling equipment ; Security ; Signalling systems ; Software engineering ; Verification</subject><ispartof>arXiv.org, 2022-10</ispartof><rights>2022. This work is published under http://creativecommons.org/licenses/by/4.0/ (the “License”). Notwithstanding the ProQuest Terms and Conditions, you may use this content in accordance with the terms of the License.</rights><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><link.rule.ids>780,784</link.rule.ids></links><search><creatorcontrib>Raimondo, Mariapia</creatorcontrib><creatorcontrib>Marrone, Stefano</creatorcontrib><creatorcontrib>Palladino, Angelo</creatorcontrib><title>Model-Driven Engineering for Formal Verification and Security Testing of Authentication Protocols</title><title>arXiv.org</title><description>Even if the verification of authentication protocols can be achieved by means of formal analysis, the modelling of such an activity is an error-prone task due to the lack of automated and integrated processes. This paper proposes a comprehensive approach, based on the Unified Modeling Language (UML) profiling technique and on model-transformation, to enable automatic analysis of authentication protocols starting from high-level models. In particular, a UML-based approach is able to generate an annotated model of communication protocols from which formal notations (e.g., AnBx, Tamarin) can be generated. Such models in lower-level languages can be analysed with existing solvers and/or with traditional testing techniques by means of test case generation approaches. The industrial impact of the research is high due to the growing need of security and the necessity to connect industrial processes and equipment to virtualised computing infrastructures. The research is conducted on two case studies: railway signalling systems and blockchain based applications.</description><subject>Authentication</subject><subject>Authentication protocols</subject><subject>Cryptography</subject><subject>Railroad signaling equipment</subject><subject>Security</subject><subject>Signalling systems</subject><subject>Software engineering</subject><subject>Verification</subject><issn>2331-8422</issn><fulltext>true</fulltext><rsrctype>article</rsrctype><creationdate>2022</creationdate><recordtype>article</recordtype><sourceid>ABUWG</sourceid><sourceid>AFKRA</sourceid><sourceid>AZQEC</sourceid><sourceid>BENPR</sourceid><sourceid>CCPQU</sourceid><sourceid>DWQXO</sourceid><recordid>eNqNyz0LwjAYBOAgCBbtfwg4F9LEtK6iLS6CoLiW0CY1JebVfAj-eyvo7nRw99wEJZSxPFuvKJ2h1PuBEEKLknLOEiQO0EmT7Zx-Sosr22srpdO2xwocrsHdhMGXsVG6FUGDxcJ2-CTb6HR44bP04YNB4U0MV2nDjx0dBGjB-AWaKmG8TL85R8u6Om_32d3BI47_ZoDo7Dg1tKS0IDnnOftPvQFe_0Wj</recordid><startdate>20221006</startdate><enddate>20221006</enddate><creator>Raimondo, Mariapia</creator><creator>Marrone, Stefano</creator><creator>Palladino, Angelo</creator><general>Cornell University Library, arXiv.org</general><scope>8FE</scope><scope>8FG</scope><scope>ABJCF</scope><scope>ABUWG</scope><scope>AFKRA</scope><scope>AZQEC</scope><scope>BENPR</scope><scope>BGLVJ</scope><scope>CCPQU</scope><scope>DWQXO</scope><scope>HCIFZ</scope><scope>L6V</scope><scope>M7S</scope><scope>PIMPY</scope><scope>PQEST</scope><scope>PQQKQ</scope><scope>PQUKI</scope><scope>PRINS</scope><scope>PTHSS</scope></search><sort><creationdate>20221006</creationdate><title>Model-Driven Engineering for Formal Verification and Security Testing of Authentication Protocols</title><author>Raimondo, Mariapia ; Marrone, Stefano ; Palladino, Angelo</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-proquest_journals_27226015513</frbrgroupid><rsrctype>articles</rsrctype><prefilter>articles</prefilter><language>eng</language><creationdate>2022</creationdate><topic>Authentication</topic><topic>Authentication protocols</topic><topic>Cryptography</topic><topic>Railroad signaling equipment</topic><topic>Security</topic><topic>Signalling systems</topic><topic>Software engineering</topic><topic>Verification</topic><toplevel>online_resources</toplevel><creatorcontrib>Raimondo, Mariapia</creatorcontrib><creatorcontrib>Marrone, Stefano</creatorcontrib><creatorcontrib>Palladino, Angelo</creatorcontrib><collection>ProQuest SciTech Collection</collection><collection>ProQuest Technology Collection</collection><collection>Materials Science & Engineering Collection</collection><collection>ProQuest Central (Alumni Edition)</collection><collection>ProQuest Central UK/Ireland</collection><collection>ProQuest Central Essentials</collection><collection>ProQuest Central</collection><collection>Technology Collection</collection><collection>ProQuest One Community College</collection><collection>ProQuest Central Korea</collection><collection>SciTech Premium Collection</collection><collection>ProQuest Engineering Collection</collection><collection>Engineering Database</collection><collection>Publicly Available Content Database</collection><collection>ProQuest One Academic Eastern Edition (DO NOT USE)</collection><collection>ProQuest One Academic</collection><collection>ProQuest One Academic UKI Edition</collection><collection>ProQuest Central China</collection><collection>Engineering Collection</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext</fulltext></delivery><addata><au>Raimondo, Mariapia</au><au>Marrone, Stefano</au><au>Palladino, Angelo</au><format>book</format><genre>document</genre><ristype>GEN</ristype><atitle>Model-Driven Engineering for Formal Verification and Security Testing of Authentication Protocols</atitle><jtitle>arXiv.org</jtitle><date>2022-10-06</date><risdate>2022</risdate><eissn>2331-8422</eissn><abstract>Even if the verification of authentication protocols can be achieved by means of formal analysis, the modelling of such an activity is an error-prone task due to the lack of automated and integrated processes. This paper proposes a comprehensive approach, based on the Unified Modeling Language (UML) profiling technique and on model-transformation, to enable automatic analysis of authentication protocols starting from high-level models. In particular, a UML-based approach is able to generate an annotated model of communication protocols from which formal notations (e.g., AnBx, Tamarin) can be generated. Such models in lower-level languages can be analysed with existing solvers and/or with traditional testing techniques by means of test case generation approaches. The industrial impact of the research is high due to the growing need of security and the necessity to connect industrial processes and equipment to virtualised computing infrastructures. The research is conducted on two case studies: railway signalling systems and blockchain based applications.</abstract><cop>Ithaca</cop><pub>Cornell University Library, arXiv.org</pub><oa>free_for_read</oa></addata></record> |
| fulltext | fulltext |
| identifier | EISSN: 2331-8422 |
| ispartof | arXiv.org, 2022-10 |
| issn | 2331-8422 |
| language | eng |
| recordid | cdi_proquest_journals_2722601551 |
| source | Free E- Journals |
| subjects | Authentication Authentication protocols Cryptography Railroad signaling equipment Security Signalling systems Software engineering Verification |
| title | Model-Driven Engineering for Formal Verification and Security Testing of Authentication Protocols |
| url | https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-05T18%3A17%3A36IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-proquest&rft_val_fmt=info:ofi/fmt:kev:mtx:book&rft.genre=document&rft.atitle=Model-Driven%20Engineering%20for%20Formal%20Verification%20and%20Security%20Testing%20of%20Authentication%20Protocols&rft.jtitle=arXiv.org&rft.au=Raimondo,%20Mariapia&rft.date=2022-10-06&rft.eissn=2331-8422&rft_id=info:doi/&rft_dat=%3Cproquest%3E2722601551%3C/proquest%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_pqid=2722601551&rft_id=info:pmid/&rfr_iscdi=true |