Upload File

model checking the eapnoob protocol• modelled with mcrl2 (micro common representation language 2)...

  • Home
  • Documents
  • Model Checking the EAPNOOB Protocol• Modelled with mCRL2 (micro Common Representation Language 2) • Goals of model checking: Protocol simulation and visualisation Debugging the
1
Aleksi Peltonen, Mohit Sethi, Tuomas Aura Model Checking the EAP-NOOB Protocol Contact: aleksi.peltonen@aalto.fi, mohit.sethi@aalto.fi, tuomas.aura@aalto.fi Specification: https://tools.ietf.org/html/draft-aura-eap-noob-03 Implementation: https://github.com/tuomaura/eap-noob aalto.fi aalto.fi AAA/cloud account login aalto.fi EAP-NOOB protocol background New IoT appliance has no owner or domain, no credentials for cloud or Wi-Fi EAP-NOOB: Connects the device to access network Registers the device to AAA server/cloud Security from a single user-assisted out-of-band message between peer device and AAA server Modelling EAP-NOOB Modelled with mCRL2 (micro Common Representation Language 2) Goals of model checking: Protocol simulation and visualisation Debugging the specification, liveness and safety properties Reachability of good and bad states Deadlock freedom Recovery from errors and timeouts Handling persistent vs. ephemeral data Detecting persistent denial of service Recovery after message loss and manipulation Results and changes In the protocol: Recovering from rejected nonces caused by attackers or unreliable channels Recovering from expired out-of-band messages caused by timeouts Handling of redundant out-of-band messages caused by delays or replays In the implementation: Recovering from message type mismatches In the modelling language: Detected and reported a bug in the linearisation of user-defined type aliases Visualisation of states and transitions

Upload: others

Post on 15-Jul-2020

2 views

Category:

Documents


0 download

Report

TRANSCRIPT

  • Aleksi Peltonen, Mohit Sethi, Tuomas Aura

    Model Checking the EAPNOOB Protocol

    Contact: [email protected], [email protected], [email protected]: https://tools.ietf.org/html/draft-aura-eap-noob-03Implementation: https://github.com/tuomaura/eap-noob

    aalto.fi aalto.fi

    AAA/cloud account login

    aalto.fi

    EAPNOOB protocol background• New IoT appliance has no owner or domain, no credentials for cloud or WiFi• EAPNOOB:

    Connects the device to access network Registers the device to AAA server/cloud

    • Security from a single userassisted outofband message between peer device and AAA server

    Modelling EAPNOOB• Modelled with mCRL2 (micro Common Representation 

    Language 2)• Goals of model checking:

    Protocol simulation and visualisation Debugging the specification, liveness and safety 

    properties Reachability of good and bad states Deadlock freedom Recovery from errors and timeouts Handling persistent vs. ephemeral data

    Detecting persistent denial of service Recovery after message loss and manipulation

    Results and changesIn the protocol:• Recovering from rejected nonces caused by attackers or unreliable channels• Recovering from expired outofband messages caused by timeouts• Handling of redundant outofband messages caused by delays or replays

    In the implementation:● Recovering from message type mismatches

    In the modelling language:● Detected and reported a bug in the linearisation of userdefined type aliases

    Visualisation of states and transitions


Model checking the AMBA protocol in HOL - cl.cam.ac.uk · PDF fileModel checking the AMBA protocol in HOL Hasan Amjad Abstract The Advanced Microcontroller Bus Architecture (AMBA)

Alexandre Madeira (based on Lu s S. Barbosa 2014/15 course ...alfa.di.uminho.pt/~madeira/UC/Bloco6.pdf · mCRL2: A toolset for process algebra mCRL2 provides: a generic process algebra,

Model-Checking A Secure Group Communication · Model-Checking A Secure Group Communication Protocol: A Case Study Alan J. HU, Rui LI, Xizheng SHI, and Son VUONG Department of Computer

Model Checking in Protocol Analysis · 2011-11-17 · Model Checking in Protocol Analysis Alisa Pankova University of Tartu Abstract. Model checking is being widely used in cryptograhic

Model checking a cache coherence protocol of a Java DSM … · 2016. 12. 9. · that we analyzed a cache coherence protocol within a Java DSM system that is already implemented and

2008 GLITNIR CDS PROTOCOL - isda.org · receipt by ISDA, as agent, of an Adherence Letter checking the box entitled "2008 Glitnir CDS Protocol" from the later of the Adhering Parties

The mCRL2 toolset

Modelling and Analysing of Security Protocol: Lecture 7 Automatically Checking Protocols

Model checking the AMBA protocol in · PDF fileModel checking the AMBA protocol in HOL Hasan Amjad Abstract The Advanced Microcontroller Bus Architecture (AMBA) ... arbitration, coherence

Analysis of system behaviour using the mCRL2 toolset · mCRL2 toolset Overview Overview of the mCRL2 toolset: 20 years ofhistory: Late 1980s: Common Representation Language (CRL)

Analysing AWN-speci cations using mCRL2 …...mCRL2 is a formal speci cation language with an associated collection of tools o ering support for model checking, simulation, state-space

Overview of Internet Protocol · PDF file• Overview of Internet Protocol ... This means that station A sends a packet to station B without checking if station B ... network address

1 Shared Memory Consistency Protocol Verification against Weak Memory Models: Refinement via Model-checking Prosenjit Chatterjee, Hemanthkumar Sivaraj,

Type checking mCRL2 - Eindhoven University of Technology · Type checking mCRL2 Jeroen J.A. Keiren1 and Michel A. Reniers2 1Department of Mathematics and Computer Science, 2 Department

Failure Analysis of an E-commerce Protocol using Model Checking

A Short Talk on A CCS and MCRL2 Case-Study: A Safety ... · Introduction to formal verification and model checking A level crossing control system Architecture of the system Introduction

Kripke Structures The Model-Checking Problempeople.irisa.fr/Sophie.Pinchinat/VTS2011/coursAutLogGames4p4.pdf · Logics of Programs Kripke Structures Mutual Exclusion Protocol Example

A generic framework for n-protocol compatibility checking · Our compatibility checking framework has been fully implemented into a prototype tool which relies on the rewriting logic-based

Logic Model Checking of the Delay Tolerant Networking's ...flightsoftware.jhuapl.edu/files/2010/FSW10_Gamble.pdfLogic Model Checking of the Delay Tolerant Networking’s Bundling Protocol

Checking Account Simulation Understanding Checking Accounts

Experience in developing the mCRL2 toolset · mCRL2, what is it? Toolset for veri cation of software Process algebra based Explicit state model checking + symbolic transformations

Model Checking Model Checking forfor Probabilistic Hybrid … · 2013. 4. 8. · • CSMA protocol, 802.11 Wireless LAN −Random choice of waiting time • IEEE1394 Firewire (root

SELF-CHECKING PROTOCOL

Behavioural Type-Based Static Verification Framework for ... · Model checking with mCRL2 Generate LTS model and formulae from types Finite control (no parallel composition in recursion)

Towards Model Checking Executable UML Specifications in mCRL2€¦ · Introduction mCRL2 xUML Translating xUML Model Checking Conclusion Towards Model Checking Executable UML Speci

Modelling and Analysing of Security Protocol: Lecture 7 Automatically Checking Protocols Tom Chothia CWI

Practical API Protocol Checking with Access Permissionskbierhof/papers/permission-practice.pdf · Practical API Protocol Checking with Access Permissions Kevin Bierho , Nels E. Beckman,

Aalborg Universitet Model Checking Process Algebra of ...mCRL2 is a process algebra that includes data and time suitable for the specification and verification of real-time systems

Finite sets in mCRL2alexandria.tue.nl/extra1/afstversl/wsk-i/louwers2007.pdf · 2008-05-16 · mCRL2 is a formal specification language and an overview of mCRL2 can be found in [4]

Paladin Advantage Universal Programmable Transducer ......3.5.1 Parity Checking 13 3.5.2 CRC Checking 13 3.6 Function Codes 14 3.7 MODBUS Protocol Commands supported 14 3.8 Holding

Idle Port Scanning and Non-interference Analysis of Network Protocol Stacks Using Model Checking

Behavioural Analysis using mCRL2 - Faculteit Wiskunde en …fstapper/talks/ipacfm2008-06-26.pdf · 7 Behavioural Analysis using mCRL2 Aad Mathijssen Bas Ploeger Frank Stappers Tim

Model Checking the SELENE E-Voting Protocol in Multi-Agent ... · Abstract Selene is a recently proposed voting protocol that provides reasonable protection against coercion. In this

Modelling and Analysing of Security Protocol: Lecture 8 Automatically Checking Protocols II Tom Chothia CWI

pa book mcrl2 - Eindhoven University of Technologyjfg/articles/pa_book_mcrl2.pdf · 2010-07-19 · 4 Analysis of Distributed Systems with mCRL2 Processes and actions can be parameterised