From alshadly09 at googlemail.com Wed Jun 3 03:52:05 2009 From: alshadly09 at googlemail.com (SALEH AL-SHADLY) Date: Wed, 03 Jun 2009 09:52:05 +0200 Subject: [Avispa-users] Modeling functions Message-ID: <4A262BA5.1010903@googlemail.com> Dear All, if i ve a protocol like this: 1. A ---> B: Na 2. B ---> A: MAC_Kab(A,B,Na), Nb 3. A ---> B: MAC_Kab(A,B,Nb) where Na, Nb are nonces chosen by A and B, respectively , Kab an initially shared key between A and B and MAC; message authentication code. MAC_Kab is a generated MAC usin Kab. my question is: what is the perfect way to model the MAC_Kab part of the message? i mean how to use a hash function with a particular key in my model (HLPSL)? is there an example in the AVISPA library similar? thank you very much for your help. yours Saleh From alshadly09 at googlemail.com Wed Jun 3 03:56:33 2009 From: alshadly09 at googlemail.com (SALEH AL-SHADLY) Date: Wed, 03 Jun 2009 09:56:33 +0200 Subject: [Avispa-users] modeling function Message-ID: <4A262CB1.50203@googlemail.com> Dear All, if i ve a protocol like this: 1. A ---> B: Na 2. B ---> A: MAC_Kab(A,B,Na), Nb 3. A ---> B: MAC_Kab(A,B,Nb) where Na, Nb are nonces chosen by A and B, respectively , Kab an initially shared key between A and B and MAC; message authentication code. MAC_Kab is a generated MAC usin Kab. my question is: what is the perfect way to model the MAC_Kab part of the message? i mean how to use a hash function with a particular key in my model (HLPSL)? is there an example in the AVISPA library similar? thank you very much for your help. yours Saleh From alshadly09 at googlemail.com Wed Jun 3 04:01:02 2009 From: alshadly09 at googlemail.com (SALEH AL-SHADLY) Date: Wed, 03 Jun 2009 10:01:02 +0200 Subject: [Avispa-users] [Fwd: ARCOM,RE: modeling function] Message-ID: <4A262DBE.3030907@googlemail.com> -------------- next part -------------- An embedded message was scrubbed... From: unknown sender Subject: ARCOM,RE: [Avispa-users] modeling function Date: Wed, 3 Jun 2009 09:57:37 +0200 Size: 3723 Url: http://mail63.csoft.net/pipermail/avispa-users/attachments/20090603/29ca41f6/attachment.eml From laurent.vigneron at loria.fr Wed Jun 3 09:13:40 2009 From: laurent.vigneron at loria.fr (Laurent Vigneron) Date: Wed, 03 Jun 2009 15:13:40 +0200 Subject: [Avispa-users] Modeling functions In-Reply-To: <4A262BA5.1010903@googlemail.com> References: <4A262BA5.1010903@googlemail.com> Message-ID: <4A267704.5000701@loria.fr> Dear Saleh, You cannot combine a hash function and a symmetric key for building a MAC, especially if the information is supposed to be recoverable. Because of the hash function, you cannot recover what has been hashed. A solution could be to decompose the "MAC_Kab" in two parts. Here are two posibilities: 2. B ---> A: {A,B,Na}_Kab, MAC({A,B,Na}_Kab), Nb or 2. B ---> A: {A,B,Na,MAC({A,B,Na}_Kab)}_Kab, Nb where MAC is a hash function. This is only one solution, you can find many variants. Best regards, Laurent. SALEH AL-SHADLY a ?crit : > Dear All, > if i ve a protocol like this: > > 1. A ---> B: Na > 2. B ---> A: MAC_Kab(A,B,Na), Nb > 3. A ---> B: MAC_Kab(A,B,Nb) > > where Na, Nb are nonces chosen by A and B, respectively , Kab an > initially shared key between A and B and MAC; message authentication > code. MAC_Kab is a generated MAC usin Kab. > > my question is: what is the perfect way to model the MAC_Kab part of the > message? i mean how to use a hash function with a particular key in my > model (HLPSL)? is there an example in the AVISPA library similar? > > thank you very much for your help. > > yours > Saleh > _______________________________________________ > Avispa-users mailing list > Avispa-users at avispa-project.org > http://mail63.csoft.net/mailman/listinfo/avispa-users From opcs.nitrkl at gmail.com Thu Jun 4 10:40:42 2009 From: opcs.nitrkl at gmail.com (op alld) Date: Thu, 4 Jun 2009 20:10:42 +0530 Subject: [Avispa-users] Explanation of AVISPA Back-ends tool outputs Message-ID: <3988e4480906040740n32810f31p74f62784e6316619@mail.gmail.com> Please tell me the datailed explanation of AVISPA Back-ends tool outputs For Example:If the output is STATISTICS parseTime: 0.00s searchTime: 0.27s visitedNodes: 119 nodes depth: 8 plies Then how to explain each terms Please send me reply as soon as possible -------------- next part -------------- An HTML attachment was scrubbed... URL: http://mail63.csoft.net/pipermail/avispa-users/attachments/20090604/e6e6c32e/attachment.htm From laurent.vigneron at loria.fr Thu Jun 4 11:06:04 2009 From: laurent.vigneron at loria.fr (Laurent Vigneron) Date: Thu, 04 Jun 2009 17:06:04 +0200 Subject: [Avispa-users] Explanation of AVISPA Back-ends tool outputs In-Reply-To: <3988e4480906040740n32810f31p74f62784e6316619@mail.gmail.com> References: <3988e4480906040740n32810f31p74f62784e6316619@mail.gmail.com> Message-ID: <4A27E2DC.5030108@loria.fr> Dear ?, > Please tell me the datailed explanation of AVISPA Back-ends tool outputs > For Example:If the output is > > STATISTICS > parseTime: 0.00s the time for reading the input file > searchTime: 0.27s the time for the analysis of the protocol > visitedNodes: 119 nodes > depth: 8 plies as the analysis can be seen as a search in a tree of solutions, you see the number of notes in the tree and the depth of the tree. Best regards, L. ;) From nourin2 at gmail.com Tue Jun 9 05:54:51 2009 From: nourin2 at gmail.com (nouri nano) Date: Tue, 9 Jun 2009 11:54:51 +0200 Subject: [Avispa-users] outputs security terms Message-ID: Please tell me the datailed explanation of AVISPA Back-ends tool outputs : UNSAFE SAFE INCONCLUSIVE Please send me reply as soon as possible From Ambuj.Ojha at loria.fr Thu Jun 11 09:36:53 2009 From: Ambuj.Ojha at loria.fr (Ambuj.Ojha at loria.fr) Date: Thu, 11 Jun 2009 15:36:53 +0200 Subject: [Avispa-users] timeouts in avispa Message-ID: <20090611153653.1gjesypwzogk08w4@webmailv1.loria.fr> Bon Jour, Can we model time-outs in AVISPA? From khat81 at gmail.com Tue Jun 16 09:08:53 2009 From: khat81 at gmail.com (khat khat) Date: Tue, 16 Jun 2009 15:08:53 +0200 Subject: [Avispa-users] how to use conditional statement Message-ID: <595c4ffa0906160608n241e991vcb4287c35ee78778@mail.gmail.com> Dear all, I want to write the following states.For example: A sends B the message (A.B.encrypted key(Ka).signature of A on encrypted key (Sig_Ka)) B checks the hash value of Sig_Ka. Assume B has the correct hash value 5. If the hash value of Sig_Ka==5, then B sends his Key (Kb) to A. My question is : how can I write avispa language for the above 'IF conditional state'. With Best Regards, Khin -------------- next part -------------- An HTML attachment was scrubbed... URL: http://mail63.csoft.net/pipermail/avispa-users/attachments/20090616/15a7886b/attachment-0001.htm From laurent.vigneron at loria.fr Tue Jun 16 09:19:54 2009 From: laurent.vigneron at loria.fr (Laurent Vigneron) Date: Tue, 16 Jun 2009 15:19:54 +0200 Subject: [Avispa-users] how to use conditional statement In-Reply-To: <595c4ffa0906160608n241e991vcb4287c35ee78778@mail.gmail.com> References: <595c4ffa0906160608n241e991vcb4287c35ee78778@mail.gmail.com> Message-ID: <4A379BFA.2000702@loria.fr> Dear Khin, AVISPA does not handle arithmetics, so you cannot assume that the result of a hash can be compared with a numerical value. A solution for considering the two possible cases is to write two transitions, one for each case, both having the same state number in the left-hand side of the transition. So the analyzer will have to test the two solutions. Best regards, Laurent. > Dear all, > > I want to write the following states.For example: > > A sends B the message (A.B.encrypted key(Ka).signature of A on encrypted > key (Sig_Ka)) > B checks the hash value of Sig_Ka. > Assume B has the correct hash value 5. > > If the hash value of Sig_Ka==5, then B sends his Key (Kb) to A. > > My question is : how can I write avispa language for the above 'IF > conditional state'. > > With Best Regards, > Khin > > > ------------------------------------------------------------------------ > > _______________________________________________ > Avispa-users mailing list > Avispa-users at avispa-project.org > http://mail63.csoft.net/mailman/listinfo/avispa-users From khat81 at gmail.com Tue Jun 16 11:29:56 2009 From: khat81 at gmail.com (khat khat) Date: Tue, 16 Jun 2009 17:29:56 +0200 Subject: [Avispa-users] what is 'fNRO' in avispa code Message-ID: <595c4ffa0906160829l5e5c140q2e14189e6540df02@mail.gmail.com> Dear all, I am studying the following example in library. http://avispa-project.org/library/FairZG.html In hlpsl code, they use 'f' for fNRO,fNRR and so on. What does 'f' work in hlpsl language? 'NRO' is declared as 'text type' in local variable. In transition, A send /\ NRO':={fNRO.B.L'.C'}_inv(Ka) What 'f' works? Best regards, Khin -------------- next part -------------- An HTML attachment was scrubbed... URL: http://mail63.csoft.net/pipermail/avispa-users/attachments/20090616/1f781ee6/attachment.htm From khat81 at gmail.com Tue Jun 16 11:35:56 2009 From: khat81 at gmail.com (khat khat) Date: Tue, 16 Jun 2009 17:35:56 +0200 Subject: [Avispa-users] what is 'fNRO' in avispa code In-Reply-To: <595c4ffa0906160829l5e5c140q2e14189e6540df02@mail.gmail.com> References: <595c4ffa0906160829l5e5c140q2e14189e6540df02@mail.gmail.com> Message-ID: <595c4ffa0906160835sc0456c1pe45b92b7238aa455@mail.gmail.com> Hi, I just know fNRO is also a text On Tue, Jun 16, 2009 at 5:29 PM, khat khat wrote: > Dear all, > > I am studying the following example in library. > > http://avispa-project.org/library/FairZG.html > > In hlpsl code, they use 'f' for fNRO,fNRR and so on. > What does 'f' work in hlpsl language? > 'NRO' is declared as 'text type' in local variable. > In transition, A send > > /\ NRO':={fNRO.B.L'.C'}_inv(Ka) > > What 'f' works? > > Best regards, > Khin > > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://mail63.csoft.net/pipermail/avispa-users/attachments/20090616/65c3cda7/attachment.htm From khat81 at gmail.com Mon Jun 22 06:40:57 2009 From: khat81 at gmail.com (khat khat) Date: Mon, 22 Jun 2009 12:40:57 +0200 Subject: [Avispa-users] public key and symmetric key Message-ID: <595c4ffa0906220340h7b120e40pa952d3e48b771afb@mail.gmail.com> Dear all, What is the difference of 2 variable types public_key and symmetric_key? I know ' private key = inv(public_key) ' But I don't know the difference between the term public_key and symmetric_key. Best Regards, Khin -------------- next part -------------- An HTML attachment was scrubbed... URL: http://mail63.csoft.net/pipermail/avispa-users/attachments/20090622/3ec24f7c/attachment.htm From David.von.Oheimb at siemens.com Mon Jun 22 07:11:54 2009 From: David.von.Oheimb at siemens.com (David von Oheimb) Date: Mon, 22 Jun 2009 13:11:54 +0200 Subject: [Avispa-users] public key and symmetric key In-Reply-To: <595c4ffa0906220340h7b120e40pa952d3e48b771afb@mail.gmail.com> References: <595c4ffa0906220340h7b120e40pa952d3e48b771afb@mail.gmail.com> Message-ID: <4A3F66FA.90203@siemens.com> Dear khat, > What is the difference of 2 variable types public_key and symmetric_key? > > I know ' private key = inv(public_key) ' > But I don't know the difference between the term public_key and > symmetric_key. symmetric keys, e.g. KAB: symmetric_key, are used only for symmetric encryption (and decryption), e.g. {M}_KAB (which is translated to IF as scrypt(KAB, M)) On the other hand, public keys like KA: public_key are only used for asymmetric encryption, e.g. {M}_KA (which is translated to IF as crypt(KA,M)) and signatures, e.g. {M}_inv(KA) (which is translated to IF as crypt(inv(KA),M)). Best, David From Ambuj.Ojha at loria.fr Tue Jun 23 05:27:13 2009 From: Ambuj.Ojha at loria.fr (Ambuj.Ojha at loria.fr) Date: Tue, 23 Jun 2009 11:27:13 +0200 Subject: [Avispa-users] memory requirement in avispa Message-ID: <20090623112713.acczq3brkcs0k80g@webmailv1.loria.fr> Bonjour, How do I model the storage of information by a TTP in AVISPA?