From y.hadjer at gmail.com Thu Jul 9 12:17:55 2009 From: y.hadjer at gmail.com (Hadjer Yala) Date: Thu, 9 Jul 2009 17:17:55 +0100 Subject: [Avispa-users] Need help on ad hoc protocol specification Message-ID: <23e723f20907090917x40faac5av5dc86357291835fd@mail.gmail.com> Hi there, I am trying to write an HLPSL specification of an ad hoc secure protocol but need help on some points: - Can we use AVISPA for ad hoc routing protocols? if yes: 1. how can we modelize multicast in HLPSL. 2. how can modelize the infinite number of nodes (roles). 3. can overhear function be written in HLPSL? 4. is there an example of a secure routing protocol in Mobile ad hoc networks specified in AVISPA? if yes, please provide me with this example. Thanks in advance best regards, Hadjer -------------- next part -------------- An HTML attachment was scrubbed... URL: http://mail63.csoft.net/pipermail/avispa-users/attachments/20090709/d627fff0/attachment.htm From yosra_bensaied at yahoo.fr Fri Jul 10 12:52:04 2009 From: yosra_bensaied at yahoo.fr (yosra ben saied) Date: Fri, 10 Jul 2009 16:52:04 +0000 (GMT) Subject: [Avispa-users] (no subject) Message-ID: <538056.59320.qm@web28107.mail.ukl.yahoo.com> Dear sir i have a problem with my hlpsl code when i execute the file avispa returns he HLPSL2IF translator is reporting the following error: ? %% Syntax error: Line 25, Col 0 (offset 786-789, string "init") %%?? Syn.Err(37): missing constant identifier ??????? please help me !!!!!!!!!! -------------- next part -------------- An HTML attachment was scrubbed... URL: http://mail63.csoft.net/pipermail/avispa-users/attachments/20090710/ac1032d7/attachment.htm From David.von.Oheimb at siemens.com Mon Jul 13 12:34:52 2009 From: David.von.Oheimb at siemens.com (David von Oheimb) Date: Mon, 13 Jul 2009 18:34:52 +0200 Subject: [Avispa-users] (no subject) In-Reply-To: <538056.59320.qm@web28107.mail.ukl.yahoo.com> References: <538056.59320.qm@web28107.mail.ukl.yahoo.com> Message-ID: <4A5B622C.4010700@siemens.com> Dear yosra ben saied, > i have a problem with my hlpsl code when i execute the file > avispa returns he HLPSL2IF translator is reporting the following error: > > %% Syntax error: Line 25, Col 0 (offset 786-789, string "init") > %% Syn.Err(37): missing constant identifier > please help me !!!!!!!!!! please consult the syntax description e.g. in the User Section of the AVISPA v1.1. User Manual. If this does not help, provide the section of your spec that produced the above error. Best, David From mathieu.ferrandez at gmail.com Fri Jul 17 08:25:50 2009 From: mathieu.ferrandez at gmail.com (mathieu) Date: Fri, 17 Jul 2009 14:25:50 +0200 Subject: [Avispa-users] new equational theory?? Message-ID: <4A606DCE.1070309@gmail.com> Hello world, Firstly, I apologize beforehand for my inferior English. Secondly and more seriously, I'm searching a way to create a new operator in the target to define a new equational theory with HLPSL. It's specially for representing messages in XML format (i.e: algebraic theory of trees where nodes are data, key, agent...) , like in web-services for example, and where the channel is "open". The actual choice is a misappropriation of the operator of concatenation. For example, in Alice-Bob notation: A -> B: {m1.{m2}_k2.{m3}_k3}_k1 representing a tree: m1 / \ m2_k2 m3_k3 and where all the tree is encrypted with k1. Is there a way more efficient ? Thanks for all. From Thomas.Genet at irisa.fr Fri Jul 17 18:28:35 2009 From: Thomas.Genet at irisa.fr (Thomas Genet) Date: Sat, 18 Jul 2009 00:28:35 +0200 Subject: [Avispa-users] SPAN: Avispa animator-- version 1.6 with CAS+ and HLSPL specifications! Message-ID: <4A60FB13.6050000@irisa.fr> An HTML attachment was scrubbed... URL: http://mail63.csoft.net/pipermail/avispa-users/attachments/20090718/08914d33/attachment-0001.htm -------------- next part -------------- A non-text attachment was scrubbed... Name: span_final_mail.jpg Type: image/jpeg Size: 15912 bytes Desc: not available Url : http://mail63.csoft.net/pipermail/avispa-users/attachments/20090718/08914d33/attachment-0001.jpg From georgy3k at gmail.com Sun Jul 19 08:32:55 2009 From: georgy3k at gmail.com (George Stewart) Date: Sun, 19 Jul 2009 13:32:55 +0100 Subject: [Avispa-users] Problem with SPAN version 1.6 Message-ID: Dear All, I'm having problems using the new version of SPAN, 1.6. I've previously been using version 1.5 without any trouble but when I try to use the protocol simulation or any other simulator for that matter with version 1.6 nothing happens and in the command screen in the background I'm receiving a message saying access is denied? I'm working with Windows Vista, any help would be greatly appreciated! Regards, George -------------- next part -------------- An HTML attachment was scrubbed... URL: http://mail63.csoft.net/pipermail/avispa-users/attachments/20090719/3bb5dc4d/attachment.htm From David.von.Oheimb at siemens.com Mon Jul 20 11:41:28 2009 From: David.von.Oheimb at siemens.com (David von Oheimb) Date: Mon, 20 Jul 2009 17:41:28 +0200 Subject: [Avispa-users] Need your suggestion: how to check integrity In-Reply-To: <457621.69207.qm@web33204.mail.mud.yahoo.com> References: <457621.69207.qm@web33204.mail.mud.yahoo.com> Message-ID: <4A649028.3060109@siemens.com> Dear Ali, very sorry for the long delay answering your question! As far as I can see, no-one has privided a response on this list so far. I have been given the responsibility for some period to answer any open questions on the list, and for various reasons this got delayed for quite some time. The integrity of data that is communicated over a protocol is typically checked in conjunction with its authenticity. So as described e.g. in section 2.3.1: "Discussion and Analysis Results" of the HLPSL tutorial, you put a "witness" event on the sender's side and a corresponding "request" on the receiver's side after the data is accepted. This acceptance is typically done by some pattern matching, but you may use equality, too. If you really want, you can also code the integrity failure e.g. by sending some "secret" to the intruder after in case of inequality. If the secrecy of this value is violated, the tool has found an attack. Hope this (still) helps, David alinur noman wrote: > Dear all, > I am verifying a protocol where the job is to check the integrity. > The conclusion would be like this: > if ( Mac_receivedfromA = Mac_calculatedbyB) > then the protcol will be marked as safe > and otherwise it will be unsafe. > > How can I do that in AVISPA? > > 1. As you know in avispa, if the comparison operation(e.g. mac1 =mac2 > or mac1 /=mac2, to be more precise an event) does not succeed, the > corresponding action will not be executed and the protocol will be > called as safe.It becomes unsafe if an intruder somehow manage to > satisfy the comparison operation. But in my protcol , the concentration > is solely on integrity checking. > > Is there any way, to directly declare a protocol unsafe after checking > the comparison operation? > If you know an easy solution for this please inform me quickly. > > > I will eagerly wait for your quick reply. > Best Regards > Ali Noman > > > > > ------------------------------------------------------------------------ > > _______________________________________________ > Avispa-users mailing list > Avispa-users at avispa-project.org > http://mail63.csoft.net/mailman/listinfo/avispa-users From David.von.Oheimb at siemens.com Mon Jul 20 12:03:04 2009 From: David.von.Oheimb at siemens.com (David von Oheimb) Date: Mon, 20 Jul 2009 18:03:04 +0200 Subject: [Avispa-users] Secure routing protocol specification In-Reply-To: <5628be9d0905040632w355a7f0fy9d6d019f40f0d97e@mail.gmail.com> References: <5628be9d0905040631k6b921908n353490a2ecf4e439@mail.gmail.com> <5628be9d0905040632w355a7f0fy9d6d019f40f0d97e@mail.gmail.com> Message-ID: <4A649538.7070306@siemens.com> Hello Srsini, I am not aware of an example of secure routing specified in HLPSL. Maybe this helps: http://freehaven.net/anonbib/papers/onion21.pdf A similar question has already been asked before, see: http://avispa-project.org/avispa-users-old/2005-November/000130.html Does anyone else have a concrete example in HLPSL? Best, David srsini meharsara wrote: > Hello > I want to write a specification for secure routing protocol (signature > ....), where can i fin a good example to do it > Any suggestion or Help > Please any useful link > Best Regards > > > > > ------------------------------------------------------------------------ > > _______________________________________________ > Avispa-users mailing list > Avispa-users at avispa-project.org > http://mail63.csoft.net/mailman/listinfo/avispa-users From David.von.Oheimb at siemens.com Mon Jul 20 12:07:02 2009 From: David.von.Oheimb at siemens.com (David von Oheimb) Date: Mon, 20 Jul 2009 18:07:02 +0200 Subject: [Avispa-users] Specification In-Reply-To: <737321.24392.qm@web27202.mail.ukl.yahoo.com> References: <737321.24392.qm@web27202.mail.ukl.yahoo.com> Message-ID: <4A649626.1070403@siemens.com> Hi, the best way to learn specifying such protocols is to read the HLPSL tutorial. See http://www.avispa-project.org/package/tutorial.pdf Best, David CHIKOUCHE Noureddine wrote: > Dear all, > I am specifies a protocol : > > A ---> B : A, Na > B ----> A : h(fh(A), (A,Na)) > Such as: > A, B : user > Na : Number > h, fh : function hachage > > > > How to specify this protocol in HLPSL? > > I will eagerly wait for your quick reply. > Best Regards > CHIKOUCHE Noureddine > > > > ------------------------------------------------------------------------ > > _______________________________________________ > Avispa-users mailing list > Avispa-users at avispa-project.org > http://mail63.csoft.net/mailman/listinfo/avispa-users From David.von.Oheimb at siemens.com Mon Jul 20 12:12:42 2009 From: David.von.Oheimb at siemens.com (David von Oheimb) Date: Mon, 20 Jul 2009 18:12:42 +0200 Subject: [Avispa-users] pseudorandom function In-Reply-To: References: Message-ID: <4A64977A.2010403@siemens.com> Hi, depending on what properties you are after, you can probably simulate pseudo-random value generation by nonce generation ("new()" operator). There is no proper support for CRC in HLPSL, but maybe it suffices to use an uninterpreted function like "crc" which will behave like a hash function. Hope this helps, David nouri nano wrote: > if we can use the pseudorandom function and CRC (Cyclic Redundancy > Check) in HLPSL, How? > > waiting for your replay, > > > ------------------------------------------------------------------------ > > _______________________________________________ > Avispa-users mailing list > Avispa-users at avispa-project.org > http://mail63.csoft.net/mailman/listinfo/avispa-users From David.von.Oheimb at siemens.com Mon Jul 20 12:22:03 2009 From: David.von.Oheimb at siemens.com (David von Oheimb) Date: Mon, 20 Jul 2009 18:22:03 +0200 Subject: [Avispa-users] outputs security terms In-Reply-To: References: Message-ID: <4A6499AB.9080406@siemens.com> Hi again, UNSAFE means that an attack has been found. A trace of events leading to the attack will also be printed. SAFE means that not attack has been found. INCONCLUSIVE means that the tool was not able to arrive at real answer. According to the AVISPA v1.1 User Manual, there may be several reasons for this: InconclusiveExplanation ::= "TIME_OUT" | "MEMORY_OUT" | "NOT_SUPPORTED" | "OVER_APPROXIMATION" | "UNDER_APPROXIMATION" So maybe the tool does not support some of the features used in the model. The most common problem is that it would take too long or consume too much memory to check all possible paths. In such cases, try reducing the complexity of your model (e.g. the number of transitions and/or sessions). Best, David nouri nano wrote: > Please tell me the datailed explanation of AVISPA Back-ends tool outputs : > > UNSAFE > SAFE > INCONCLUSIVE > > Please send me reply as soon as possible > _______________________________________________ > Avispa-users mailing list > Avispa-users at avispa-project.org > http://mail63.csoft.net/mailman/listinfo/avispa-users From David.von.Oheimb at siemens.com Mon Jul 20 12:25:20 2009 From: David.von.Oheimb at siemens.com (David von Oheimb) Date: Mon, 20 Jul 2009 18:25:20 +0200 Subject: [Avispa-users] timeouts in avispa In-Reply-To: <20090611153653.1gjesypwzogk08w4@webmailv1.loria.fr> References: <20090611153653.1gjesypwzogk08w4@webmailv1.loria.fr> Message-ID: <4A649A70.1040004@siemens.com> Bon Jour, unfortunately, AVISPA cannot deal with time. Yet in some cases it may suffice to model timeouts by spontaneous "timeout" messages. David Ambuj.Ojha at loria.fr wrote: > Bon Jour, > > Can we model time-outs in AVISPA? > > _______________________________________________ > Avispa-users mailing list > Avispa-users at avispa-project.org > http://mail63.csoft.net/mailman/listinfo/avispa-users From David.von.Oheimb at siemens.com Mon Jul 20 12:29:01 2009 From: David.von.Oheimb at siemens.com (David von Oheimb) Date: Mon, 20 Jul 2009 18:29:01 +0200 Subject: [Avispa-users] memory requirement in avispa In-Reply-To: <20090623112713.acczq3brkcs0k80g@webmailv1.loria.fr> References: <20090623112713.acczq3brkcs0k80g@webmailv1.loria.fr> Message-ID: <4A649B4D.4070302@siemens.com> Bonjour encore une fois, a TTP should be modeled by a HLPSL role played by an honest agent. It can store any information in its local variables. Best, David Ambuj.Ojha at loria.fr wrote: > Bonjour, > > How do I model the storage of information by a TTP in AVISPA? > > _______________________________________________ > Avispa-users mailing list > Avispa-users at avispa-project.org > http://mail63.csoft.net/mailman/listinfo/avispa-users From David.von.Oheimb at siemens.com Mon Jul 20 12:38:59 2009 From: David.von.Oheimb at siemens.com (David von Oheimb) Date: Mon, 20 Jul 2009 18:38:59 +0200 Subject: [Avispa-users] what is 'fNRO' in avispa code In-Reply-To: <595c4ffa0906160835sc0456c1pe45b92b7238aa455@mail.gmail.com> References: <595c4ffa0906160829l5e5c140q2e14189e6540df02@mail.gmail.com> <595c4ffa0906160835sc0456c1pe45b92b7238aa455@mail.gmail.com> Message-ID: <4A649DA3.7050204@siemens.com> Dear Khin, yes, fNRO is of type 'text', and is modeled as a constant. It is not a variable. Variable names start with an uppercase letter. Constants in HLPSL have some unspecified value which usually is different from (the value of) any other constant. In the given protocol, fNRO is known to the intruder. For any further details on the FairZG protocol, I suggest contacting its author: Judson.Santiago at loria.fr Best, David khat khat wrote: > Hi, > > I just know fNRO is also a text > > > > > On Tue, Jun 16, 2009 at 5:29 PM, khat khat > wrote: > > Dear all, > > I am studying the following example in library. > > http://avispa-project.org/library/FairZG.html > > In hlpsl code, they use 'f' for fNRO,fNRR and so on. > What does 'f' work in hlpsl language? > 'NRO' is declared as 'text type' in local variable. > In transition, A send > > /\ NRO':={fNRO.B.L'.C'}_inv(Ka) > > What 'f' works? > > > > Best regards, > Khin > > > > ------------------------------------------------------------------------ > > _______________________________________________ > Avispa-users mailing list > Avispa-users at avispa-project.org > http://mail63.csoft.net/mailman/listinfo/avispa-users From David.von.Oheimb at siemens.com Mon Jul 20 16:35:32 2009 From: David.von.Oheimb at siemens.com (David von Oheimb) Date: Mon, 20 Jul 2009 22:35:32 +0200 Subject: [Avispa-users] Need help on ad hoc protocol specification In-Reply-To: <23e723f20907090917x40faac5av5dc86357291835fd@mail.gmail.com> References: <23e723f20907090917x40faac5av5dc86357291835fd@mail.gmail.com> Message-ID: <4A64D514.5090507@siemens.com> Hi Hadjer, > I am trying to write an HLPSL specification of an ad hoc secure protocol > but need help on some points: > > * Can we use AVISPA for ad hoc routing protocols? if yes: I'm not an expert on such protocols, but I think that some aspects can be modeled. See also my response on routing protocols earlier today. > 1. how can we modelize multicast in HLPSL. Due to the built-in Dolev-Yao model, all messages may be copied by the intruder to any number of receivers. You may also explicitly specify withing the message the intended set of receivers, etc. > 2. how can modelize the infinite number of nodes (roles). I guess you mean an infinite number of role instances. AFAIK, one cannot express these in HLPSL but one can in the Intermediate Format IF. (Also HLPSL's successor language, ASLan v.2, will support unbounded number of instances.) Yet this won't be of much help since the model checkers will only be able to cope with a very small number of active instances. You will probably have to restrict the model to e.g. three nodes and manually instantiate the role describing one node that many times. > 3. can overhear function be written in HLPSL? You mean, dropping certain messages? This is implicit in the D-Y model. > 4. is there an example of a secure routing protocol in Mobile ad hoc > networks specified in AVISPA? if yes, please provide me with this example. Not that I am aware of. Anyone else? Best, David From carbone at dist.unige.it Thu Jul 23 12:45:51 2009 From: carbone at dist.unige.it (Roberto Carbone) Date: Thu, 23 Jul 2009 18:45:51 +0200 Subject: [Avispa-users] AVISPA: user-contributed library Message-ID: <4A6893BF.5020708@dist.unige.it> Dear AVISPA users, The AVISPA Library is a collection of specifications of security protocols and problems written in the HLPSL by the AVISPA Team. We are happy to announce our intention to provide another library, collecting protocol specifications independently developed by users of the AVISPA Tool. If you wish to add your protocol specifications to this list, please send them to the avispa-users mailing list, following the template enclosed. (Email Subject: "user-contributed protocol specification") Both the AVISPA library and the user-contributed library are available at http://www.avispa-project.org/library -- The AVISPA Team http://www.avispa-project.org -------------- next part -------------- A non-text attachment was scrubbed... Name: template.hlpsl Type: application/x-extension-hlpsl Size: 820 bytes Desc: not available Url : http://mail63.csoft.net/pipermail/avispa-users/attachments/20090723/2782b4ad/attachment.bin From khat81 at gmail.com Mon Jul 27 09:01:09 2009 From: khat81 at gmail.com (khat khat) Date: Mon, 27 Jul 2009 15:01:09 +0200 Subject: [Avispa-users] how to solve 'out of memory' Message-ID: <595c4ffa0907270601r1cc2c1e2u7135eb029efa1bfc@mail.gmail.com> Dear all, I tried to run the ZG nonrepudiation protocol described in library protocols. I ran like 'avispa zgnonrepudiation.hlpsl --ofmc' the system responses like the following: khin at fscws1:~/protocols$ avispa zgnonrepudiation.hlpsl --ofmc % OFMC % Version of 2006/02/13 SUMMARY ofmc: out of memory (requested 1048576 bytes) please advise me how to fix the memory status. I am now using 'ununtu' with best regards, Khin -------------- next part -------------- An HTML attachment was scrubbed... URL: http://mail63.csoft.net/pipermail/avispa-users/attachments/20090727/6fa20069/attachment.htm From SMO at zurich.ibm.com Mon Jul 27 12:14:38 2009 From: SMO at zurich.ibm.com (Sebastian Moedersheim) Date: Mon, 27 Jul 2009 18:14:38 +0200 Subject: [Avispa-users] how to solve 'out of memory' In-Reply-To: <595c4ffa0907270601r1cc2c1e2u7135eb029efa1bfc@mail.gmail.com> References: <595c4ffa0907270601r1cc2c1e2u7135eb029efa1bfc@mail.gmail.com> Message-ID: Hi, sorry, will fix that bug, but there is a simple work-around: use the option " -d 10000000000 " --- this performs depth-first search with a given depth limit and does not require much memory. Cheers, Sebastian avispa-users-bounces at avispa-project.org wrote on 07/27/2009 03:01:09 PM: > [image removed] > > [Avispa-users] how to solve 'out of memory' > > khat khat > > to: > > avispa-users > > 07/27/2009 03:09 PM > > Sent by: > > avispa-users-bounces at avispa-project.org > > Dear all, > > > I tried to run the ZG nonrepudiation protocol described in library protocols. > I ran like 'avispa zgnonrepudiation.hlpsl --ofmc' > the system responses like the following: > > khin at fscws1:~/protocols$ avispa zgnonrepudiation.hlpsl --ofmc > % OFMC > % Version of 2006/02/13 > SUMMARY > ofmc: out of memory (requested 1048576 bytes) > > please advise me how to fix the memory status. > I am now using 'ununtu' > > with best regards, > Khin_______________________________________________ > Avispa-users mailing list > Avispa-users at avispa-project.org > http://mail63.csoft.net/mailman/listinfo/avispa-users -------------- next part -------------- An HTML attachment was scrubbed... URL: http://mail63.csoft.net/pipermail/avispa-users/attachments/20090727/870dfb06/attachment.htm