Verification of DNSsec Delegation Signatures
| Title | Verification of DNSsec Delegation Signatures |
| Publication Type | Conference Paper |
| Year of Publication | 2014 |
| Authors | Kammuller, F. |
| Conference Name | Telecommunications (ICT), 2014 21st International Conference on |
| Date Published | May |
| Keywords | authentication, chain of trust, cryptographic protocols, delegation signatures, DNSsec, DNSsec delegation signatures, DNSsec protocol, formal verification, inductive approach, inference mechanisms, interactive theorem prover, Internet, IP networks, Isabelle-HOL, Isabelle/HOL, model checking analysis, Protocols, Public key, security protocol verification, Servers, theorem proving |
| Abstract | In this paper, we present a formal model for the verification of the DNSsec Protocol in the interactive theorem prover Isabelle/HOL. Relying on the inductive approach to security protocol verification, this formal analysis provides a more expressive representation than the widely accepted model checking analysis. Our mechanized model allows to represent the protocol, all its possible traces and the attacker and his knowledge. The fine grained model allows to show origin authentication, and replay attack prevention. Most prominently, we succeed in expressing Delegation Signatures and proving their authenticity formally. |
| URL | https://ieeexplore.ieee.org/document/6845127/ |
| DOI | 10.1109/ICT.2014.6845127 |
| Citation Key | 6845127 |
- interactive theorem prover
- Theorem Proving
- Servers
- security protocol verification
- Public key
- Protocols
- model checking analysis
- Isabelle/HOL
- Isabelle-HOL
- IP networks
- internet
- authentication
- inference mechanisms
- inductive approach
- formal verification
- DNSsec protocol
- DNSsec delegation signatures
- DNSsec
- delegation signatures
- Cryptographic Protocols
- chain of trust