Witness-Functions versus Interpretation-Functions for Secrecy in Cryptographic Protocols: What to Choose?

Autor: Fattahi, Jaouhar, Mejri, Mohamed, Ziadia, Marwa, Omrani, Takwa, Pricop, Emil
Rok vydání: 2017
Předmět:
Druh dokumentu: Working Paper
DOI: 10.1109/SMC.2017.8123025
Popis: Proving that a cryptographic protocol is correct for secrecy is a hard task. One of the strongest strategies to reach this goal is to show that it is increasing, which means that the security level of every single atomic message exchanged in the protocol, safely evaluated, never deceases. Recently, two families of functions have been proposed to measure the security level of atomic messages. The first one is the family of interpretation-functions. The second is the family of witness-functions. In this paper, we show that the witness-functions are more efficient than interpretation-functions. We give a detailed analysis of an ad-hoc protocol on which the witness-functions succeed in proving its correctness for secrecy while the interpretation-functions fail to do so.
Comment: Accepted at the IEEE SMC (6 two column pages) on 2017-07-10
Databáze: arXiv