Skip to main content

Composing Security Protocols: From Confidentiality to Privacy

Myrto Arapinis‚ Vincent Cheval and Stéphanie Delaune

Abstract

Security protocols are used in many of our daily-life applications, and our privacy largely depends on their design. Formal verification techniques have proved their usefulness to analyse these protocols, but they become so complex that modular techniques have to be developed. We propose several results to safely compose security protocols. We consider arbitrary primitives modeled using an equational theory, and a rich process algebra close to the applied pi calculus.

Relying on these composition results, we derive some security properties on a protocol from the security analysis performed on each of its subprotocols individually. We consider parallel composition and the case of key-exchange protocols. Our results apply to deal with confidentiality but also privacy-type properties (e.g. anonymity) expressed using a notion of equivalence. We illustrate the usefulness of our composition results on protocols from the 3G phone application and electronic passport.

Book Title
Principles of Security and Trust − 4th International Conference‚ POST 2015‚ Held as Part of the European Joint Conferences on Theory and Practice of Software‚ ETAPS 2015‚ London‚ UK‚ April 11−18‚ 2015‚ Proceedings
Editor
Riccardo Focardi and Andrew C. Myers
Pages
324–343
Publisher
Springer
Series
Lecture Notes in Computer Science
Volume
9036
Year
2015