NDLI: Generating network security protocol implementations from formal specifications.

Please wait, while we are loading the content...

Generating network security protocol implementations from formal specifications.

Content Provider	CiteSeerX
Abstract	We describe the Spi2Java code generation tool, which we have developed in an attempt to bridge the gap between formal security protocol specification and executable implementation. Implemented in Prolog, Spi2Java can input a formal security protocol specification in a variation of the Spi Calculus, and generate a Java code implementation of that protocol. Initially we discuss the role of code generation in the wider context of security protocol design and development. We cover the design and implementation of Spi2Java which we relate to the high integrity code generation requirements identified by Whalen and Heimdahl. We show that by defining a Security Protocol Implementation API that abstracts cryptographic and network communication functionality, protocol logic code can be separated from underlying cryptographic algorithm and network stack implementation concerns. The design of this API is also discussed, particularly its support for pluggable implementation providers. Spi2Java’s functionality is demonstrated by way of example: we specify the Needham- Schröeder Public Key Authentication Protocol, and Lowe’s attack on it, in the Spi Calculus and examine a successful attack run using Spi2Java generated implementation of the protocol roles.
File Format	PDF
Access Restriction	Open
Subject Keyword	Network Stack Implementation Concern Executable Implementation Pluggable Implementation Provider Formal Security Protocol Specification Successful Attack Run Spi Calculus Needham Schr Wider Context High Integrity Code Generation Requirement Security Protocol Implementation Api Formal Specification Code Generation Spi2java Code Generation Tool Network Security Protocol Implementation Protocol Role Public Key Authentication Protocol Java Code Implementation Security Protocol Design Spi2java Functionality Cryptographic Algorithm Network Communication Functionality Protocol Logic Code
Content Type	Text

Central Library (ISO-9001:2015 Certified)
Indian Institute of Technology Kharagpur
Kharagpur, West Bengal, India | PIN - 721302

See location in the Map
03222 282435
Mail: support@ndl.gov.in

Sl.	Authority	Responsibilities	Communication Details
1	Ministry of Education (GoI), Department of Higher Education	Sanctioning Authority	https://www.education.gov.in/ict-initiatives
2	Indian Institute of Technology Kharagpur	Host Institute of the Project: The host institute of the project is responsible for providing infrastructure support and hosting the project	https://www.iitkgp.ac.in
3	National Digital Library of India Office, Indian Institute of Technology Kharagpur	The administrative and infrastructural headquarters of the project	Dr. B. Sutradhar bsutra@ndl.gov.in
4	Project PI / Joint PI	Principal Investigator and Joint Principal Investigators of the project	Dr. B. Sutradhar bsutra@ndl.gov.in Prof. Saswat Chakrabarti will be added soon
5	Website/Portal (Helpdesk)	Queries regarding NDLI and its services	support@ndl.gov.in
6	Contents and Copyright Issues	Queries related to content curation and copyright issues	content@ndl.gov.in
7	National Digital Library of India Club (NDLI Club)	Queries related to NDLI Club formation, support, user awareness program, seminar/symposium, collaboration, social media, promotion, and outreach	clubsupport@ndl.gov.in
8	Digital Preservation Centre (DPC)	Assistance with digitizing and archiving copyright-free printed books	dpc@ndl.gov.in
9	IDR Setup or Support	Queries related to establishment and support of Institutional Digital Repository (IDR) and IDR workshops	idr@ndl.gov.in