An Extended UML Method for the Verification of Security Protocols

Gang Shen; Xiaohong Li; Ruitao Feng; Guangquan Xu; Jing Hu; Zhiyong Feng

doi:10.1109/ICECCS.2014.12

Back

Conference proceeding

An Extended UML Method for the Verification of Security Protocols

Gang Shen, Xiaohong Li, Ruitao Feng, Guangquan Xu, Jing Hu and Zhiyong Feng

19th International Conference on Engineering of Complex Computer Systems, pp.19-28

IEEE International Conference on Engineering of Complex Computer Systems-ICECCS

International Conference on Engineering of Complex Computer Systems, 19th (Tianjin, China, 04/08/2014 - 07/08/2014)

2014

DOI: https://doi.org/10.1109/ICECCS.2014.12

Metrics

1 Record Views

Abstract

Unified modeling language

Protocols

Cryptography

Cognition

Calculus

Data models

This paper presents a formal modeling method of security protocols based on the extended UML framework. In order to simplify the process and reduce the difficulty of security protocol modelling, extending mechanisms for the class diagram and sequence diagram of UML are presented, which provide an engineering specification for the security protocol formalizing. Therefore, for verifying the confidentiality and correspondence of security protocols by ProVerif, a transformation from extended UML model to ProVerif Spi calculus model is realized with matching rules and knowledge reasoning, and then the verifying results are analyzed through a regular expression. Finally, the handshake, NS public key and buyer-seller watermarking protocols are verified, the attack traces of unsatisfied security properties are exported, that show the validity and applicability of the approach provided by this paper.

Details

Title: An Extended UML Method for the Verification of Security Protocols
Creators: Gang Shen - Tianjin University
Xiaohong Li - Tianjin University
Ruitao Feng - Tianjin University
Guangquan Xu - Tianjin University
Jing Hu - Tianjin University
Zhiyong Feng - Tianjin University
Publication Details: 19th International Conference on Engineering of Complex Computer Systems, pp.19-28
Conference: International Conference on Engineering of Complex Computer Systems, 19th (Tianjin, China, 04/08/2014 - 07/08/2014)
Series: IEEE International Conference on Engineering of Complex Computer Systems-ICECCS
Publisher: IEEE
Number of pages: 10
Identifiers: 991013214783002368
Academic Unit: Information Technology; Faculty of Science and Engineering
Language: English
Resource Type: Conference proceeding

An Extended UML Method for the Verification of Security Protocols

Related links

Metrics

Abstract

Details

Southern Cross University Social media