Sciweavers

ICDCS
2005
IEEE

Equational Approach to Formal Analysis of TLS

14 years 6 months ago
Equational Approach to Formal Analysis of TLS
TLS has been formally analyzed with the OTS/CafeOBJ method. In the method, distributed systems are modeled as transition systems, which are written in terms of equations, and it is verified that the models have properties by means of equational reasoning. TLS is the latest version, or the successor of SSL, which is probably the most widely deployed security protocol. Among the results of the analysis are that pre-master secrets cannot be leaked, when a client has negotiated a cipher suite and security parameters with a server, the server has really agreed on them, and client cannot be identified if they do not send their certificates to servers.
Kazuhiro Ogata, Kokichi Futatsugi
Added 24 Jun 2010
Updated 24 Jun 2010
Type Conference
Year 2005
Where ICDCS
Authors Kazuhiro Ogata, Kokichi Futatsugi
Comments (0)