Modelling and Analysis of Security Protocols
Peter Ryan, Steve Schneider, Michael Goldsmith, Gavin Lowe, Bill Roscoe
- 出版商: Addison Wesley
- 出版日期: 2000-12-21
- 售價: $1,950
- 貴賓價: 9.8 折 $1,911
- 語言: 英文
- 頁數: 320
- 裝訂: Paperback
- ISBN: 0201674718
- ISBN-13: 9780201674712
-
相關分類:
資訊安全
下單後立即進貨 (約5~7天)
買這商品的人也買了...
-
$1,029Fundamentals of Data Structures in C++
-
$1,060$1,007 -
$680$578 -
$650$553 -
$880$695 -
$560$504 -
$560$476 -
$590$466 -
$750$675 -
$490$382 -
$720$569 -
$560$504 -
$720$569 -
$550$468 -
$490$417 -
$420$328 -
$550$495 -
$990$782 -
$580$493 -
$480$408 -
$450$383 -
$1,127Database System Concepts, 5/e (IE) (美國版ISBN:0072958863)
-
$680$537 -
$1,274Data Mining: Concepts and Techniques, 2/e (IE-Paperback)
-
$1,560$1,404
相關主題
商品描述
Description
The definitive technical reference to security protocols: mechanisms, roles, vulnerabilities, and design.
- Modeling security properties, protocols, environments, and hostile agents.
- Introduces the Communicating Sequential Processes (CSP) mathematical framework for describing and analyzing interactions amongst distributed agents.
- Covers key distribution systems, authentication, integrity, confidentiality, anonymity, non-repudiation, availability, and more.
Peter Ryan initiated a major research program at the UK Defence Research Agency that utilized the Communicating Sequential Processes framework and model checking to analyze SP5. He chairs the Steering Committee of ESORICS, and serves on the Organizing Committee of the IEEE Computer Security Foundations Workshop, and IEEE Symposium on Security and Privacy. Steve Schneider has published extensively on concurrency theory and security protocols, and is a member of several conference committees.
Table Of Contents
0. Introduction.Security Properties.
Cryptography.
Public-key Certificates and Infrastructures.
Encryption Modes.
Cryptographic Hash Functions.
Digital Signatures.
Security Protocol Vulnerabilities.
The CSP Aproach.
Casper: the User-friendly Interface of FDR.
Limits of Formal Analysis.
Summary.
1. An Introduction to CSP.
Parallel Operators.
Hiding and Renaming.
Further Operators.
Process Behaviour.
Discrete Time.
2. Modelling Security Protocols in CSP.
Data Types for Protocol Models.
Modelling an Intruder.
Putting the Network Together.
3. Expressing Protocol Goals.
Secrecy.
Authentication.
Non-repudiation.
Anonymity.
Summary.
4. Overview of FDR.
Labelled Transition Systems.
Exploiting Compositional Structure.
Counterexamples.
5. Casper.
The %-notation.
Case Study: The Wide-Mouthed-Frog Protocol.
Protocol Specifications.
Hash Functions and Vernam Encryption.
Summary.
6. Encoding Protocols and Intruders for FDR.
Modelling the Intruder: The Perfect Spy.
Wiring the Network Together.
Example Deduction System.
Algebraic Equivalences.
Specifying Desired Properties.
7. Theorem Proving.
Secrecy of the Shared Key: a Rank Function.
Secrecy on nB.
Authentication.
Machine Assistance.
Summary.
8. Simplifying Transformations.
Transformations on Protocols.
Examples of Safe Simplifying Transformations.
Structural Transformations.
Case Study: The CyberCash Main Sequence Protocol.
Summary.
9. Other Approaches.
The Dolev-Yao Model.
BAN Logic and Derivatives.
FDM and InaJo.
NRL Analyser.
The B-method Approach.
The Non-interference Approach.
Strand Spaces.
The Inductive Approach.
Spi Calculus.
Provable Security.
10. Prospects and Wider Issues.
Abstraction of Cryptographic Primitives.
The Refinement Problem.
Combining Formal and Cryptographic Styles of Analysis.
Dependence on Infrastructure Assumptions.
Conference and Group Keying.
Quantum Cryptography.
Data Independence.
Appendix A. Background Cryptography.
The ElGamal Public Key System.
Complexity Theory.
Appendix B. The Yahalom Protocol in Casper.
Casper Output.
Appendix C. CyberCash Rank Function Analysis.
Authentication.
Bibliography.
Notation.
Index. 0201674718T04062001
商品描述(中文翻譯)
《安全協議:機制、角色、漏洞和設計的權威技術參考》是關於安全協議的技術參考書籍,涵蓋了安全協議的目標、機制、特性以及漏洞。書中詳細介紹了通信順序處理(CSP)數學框架,用於描述和分析分布式代理之間的交互作用,這是設計、驗證和評估高度安全協議的最強大工具之一。作者Peter Ryan和Steve Schneider是領先的安全協議研究人員,他們回顧了安全協議所要解決的關鍵安全問題,包括身份驗證、完整性、機密性、匿名性、不可否認性和可用性;並介紹了對稱和非對稱加密、哈希、數字簽名和密鑰管理等機制。此外,他們還介紹了CSP過程代數,這是一個用於建模安全特性、協議和環境的數學框架,包括敵對代理。書中還詳細介紹了描述和分析分布式代理之間的交互作用的技術,包括模型檢查和定理證明技術,這對於任何需要評估或驗證安全協議的人來說都是必不可少的。
作者Peter Ryan在英國國防研究機構發起了一個利用通信順序處理框架和模型檢查來分析SP5的重大研究計劃。他是ESORICS的主席,並擔任IEEE計算機安全基礎研討會和IEEE安全與隱私研討會的組織委員會成員。Steve Schneider在並發理論和安全協議方面發表了大量論文,並擔任多個會議委員會的成員。
目錄包括:
0. 簡介
1. CSP簡介
2. 在CSP中建模安全協議
3. 表達協議目標
4. FDR概述
5. Casper
該書提供了對安全協議的全面介紹和分析,並介紹了相關的數學框架和工具,對於研究和實踐安全協議的專業人士非常有價值。