安全規約分析系統

Abstract

由於在目前的電腦網路架構下，網路使用者並沒有一個好的機制可以認證對方的身分，因此一個安全認證規約就不可或缺，所以它的安全性和正確性就一直受到注意，在過去的文獻中，許許多多分析的方法都被提出，而其中以邏輯系統分析的方式比較完整且比較正式，但是這些邏輯系統不是實作上較困難就是需要非常有經驗的人才可以了解，因此我們在本論文中，提出一個可以有效找出一個安全認證規約弱點的系統，且實作上是非常容易的，我們將會介紹如何實作所提出的安全規約分析系統在Prolog的環境下，並且提出分析的方法，而這個安全規約分析系統將對發展一個安全規約的設計者有很大的幫助。

A security protocol plays an important role in network environment in that under current network environment, no one can make sure whom he is “talking” to is whom he was intending to talk to. The soundness of a security protocol has been drawing many spotlights since past years. Many logic systems have been proposed in plenty of papers. However, they are either hard to implement or need lots of experience. We propose an efficient system for inspecting the correctness of security protocols and its implementation, which we adopt prolog language as our derivation engine. Then we suggest detection methods to reveal the potential vulnerabilities of a security protocol. We believe that the proposed system will be helpful in testing a security protocol.