Modelling and analysis of PKI-based systems using process calculi

Benjamin Aziz; Geoff Hamilton

doi:10.1142/S0129054107004851

Modelling and analysis of PKI-based systems using process calculi

Benjamin Aziz^*, Geoff Hamilton

^*Corresponding author for this work

School of Computing

Research output: Contribution to journal › Article › peer-review

Abstract

In this paper, we present a process algebra aimed at modelling PKI-based systems. The new language, SPIKY, extends the spi-calculus by adding primitives for the retrieval of certified/uncertified public keys as well as private keys belonging to users of the PKI-based system. SPIKY also formalises the notion of process ownership by PKI users, which is necessary in controlling the semantics of the key retrieval capabilities. We also construct a static analysis for SPIKY that captures the property of term substitutions resulting from message-passing and PKI/cryptographic operations. This analysis is shown to be safe and computable. Finally, we use the analysis to define the term secrecy and peer participation properties for a couple of examples of authentication protocols.

Original language	English
Pages (from-to)	593-618
Number of pages	26
Journal	International Journal of Foundations of Computer Science
Volume	18
Issue number	3
DOIs	https://doi.org/10.1142/S0129054107004851
Publication status	Published - 1 Jun 2007

Access to Document

10.1142/S0129054107004851

Cite this

@article{9d32abb5fef245cd9d359a0c3e74bf15,

title = "Modelling and analysis of PKI-based systems using process calculi",

abstract = "In this paper, we present a process algebra aimed at modelling PKI-based systems. The new language, SPIKY, extends the spi-calculus by adding primitives for the retrieval of certified/uncertified public keys as well as private keys belonging to users of the PKI-based system. SPIKY also formalises the notion of process ownership by PKI users, which is necessary in controlling the semantics of the key retrieval capabilities. We also construct a static analysis for SPIKY that captures the property of term substitutions resulting from message-passing and PKI/cryptographic operations. This analysis is shown to be safe and computable. Finally, we use the analysis to define the term secrecy and peer participation properties for a couple of examples of authentication protocols.",

author = "Benjamin Aziz and Geoff Hamilton",

year = "2007",

month = jun,

day = "1",

doi = "10.1142/S0129054107004851",

language = "English",

volume = "18",

pages = "593--618",

journal = "International Journal of Foundations of Computer Science",

issn = "0129-0541",

publisher = "World Scientific Publishing Co. Pte Ltd",

number = "3",

}

TY - JOUR

T1 - Modelling and analysis of PKI-based systems using process calculi

AU - Aziz, Benjamin

AU - Hamilton, Geoff

PY - 2007/6/1

Y1 - 2007/6/1

N2 - In this paper, we present a process algebra aimed at modelling PKI-based systems. The new language, SPIKY, extends the spi-calculus by adding primitives for the retrieval of certified/uncertified public keys as well as private keys belonging to users of the PKI-based system. SPIKY also formalises the notion of process ownership by PKI users, which is necessary in controlling the semantics of the key retrieval capabilities. We also construct a static analysis for SPIKY that captures the property of term substitutions resulting from message-passing and PKI/cryptographic operations. This analysis is shown to be safe and computable. Finally, we use the analysis to define the term secrecy and peer participation properties for a couple of examples of authentication protocols.

AB - In this paper, we present a process algebra aimed at modelling PKI-based systems. The new language, SPIKY, extends the spi-calculus by adding primitives for the retrieval of certified/uncertified public keys as well as private keys belonging to users of the PKI-based system. SPIKY also formalises the notion of process ownership by PKI users, which is necessary in controlling the semantics of the key retrieval capabilities. We also construct a static analysis for SPIKY that captures the property of term substitutions resulting from message-passing and PKI/cryptographic operations. This analysis is shown to be safe and computable. Finally, we use the analysis to define the term secrecy and peer participation properties for a couple of examples of authentication protocols.

UR - http://www.scopus.com/inward/record.url?scp=34249734226&partnerID=8YFLogxK

U2 - 10.1142/S0129054107004851

DO - 10.1142/S0129054107004851

M3 - Article

AN - SCOPUS:34249734226

VL - 18

SP - 593

EP - 618

JO - International Journal of Foundations of Computer Science

JF - International Journal of Foundations of Computer Science

SN - 0129-0541

IS - 3

ER -

Modelling and analysis of PKI-based systems using process calculi

Abstract

Access to Document

Fingerprint

Cite this