Title: Structured intuition: a new methodology to analyse authentication protocols

Authors: Naveed Ahmed; Christian Damsgaard Jensen

Addresses: Department of Informatics and Mathematical Modelling, Technical University of Denmark, Richard Petersens Plads, DK-2800 Lyngby, Denmark ' Department of Informatics and Mathematical Modelling, Technical University of Denmark, Richard Petersens Plads, DK-2800 Lyngby, Denmark

Abstract: Entity authentication is a process of verifying a claimed identity of a network party, but, depending on the application, it entails a number of modalities, such as whether the party is currently active on the network and whether the party is willing to communicate. Combining such modalities in different ways leads to different notions of entity authentication. We propose a new methodology, called the structured intuition (SI), which provides a detailed analysis of entity authentication. There is a single notion of security in our methodology, which is called canonicity, which is a weaker form of message authenticity. As compared to many contemporary analysis techniques, an SI-based analysis provides detailed results regarding the design rationales and entity authentication goals of a protocol.

Keywords: entity authentication; canonicity; dependency graph; structured intuition; authentication protocols; security.

DOI: 10.1504/IJCCBS.2012.053205

International Journal of Critical Computer-Based Systems, 2012 Vol.3 No.4, pp.262 - 283

Published online: 16 Aug 2014 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article