Verification of DNSsec delegation signatures

Kammueller, Florian ORCID logoORCID: (2014) Verification of DNSsec delegation signatures. Telecommunications (ICT), 2014 21st International Conference on. In: 21st International IEEE Conference on Telecommunication, 04-07 May 2014, Lisbon. ISBN 9781479951390. [Conference or Workshop Item] (doi:10.1109/ICT.2014.6845127)

PDF - Final accepted version (with author's formatting)
Download (357kB) | Preview


In this paper, we present a formal model for the verification of the DNSsec Protocol in the interactive theorem prover Isabelle/HOL. Relying on the inductive approach to security protocol verification, this formal analysis provides a more expressive representation than the widely accepted model checking analysis. Our mechanized model allows to represent the protocol, all its possible traces and the attacker and his knowledge. The fine grained model allows to show origin authentication, and replay attack prevention. Most prominently, we succeed in expressing Delegation Signatures and proving their authenticity formally.

Item Type: Conference or Workshop Item (Paper)
Research Areas: A. > School of Science and Technology > Computer Science
Item ID: 15194
Notes on copyright: © 2014 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works.
Useful Links:
Depositing User: Florian Kammueller
Date Deposited: 23 Apr 2015 10:53
Last Modified: 29 Nov 2022 23:30

Actions (login required)

View Item View Item


Activity Overview
6 month trend
6 month trend

Additional statistics are available via IRStats2.