Verification of DNSsec delegation signatures

Kammueller, Florian ORCID: (2014) Verification of DNSsec delegation signatures. Telecommunications (ICT), 2014 21st International Conference on. In: 21st International IEEE Conference on Telecommunication, 04-07 May 2014, Lisbon. ISBN 9781479951390. [Conference or Workshop Item] (doi:10.1109/ICT.2014.6845127)

PDF - Final accepted version (with author's formatting)
Download (357kB) | Preview


In this paper, we present a formal model for the verification of the DNSsec Protocol in the interactive theorem prover Isabelle/HOL. Relying on the inductive approach to security protocol verification, this formal analysis provides a more expressive representation than the widely accepted model checking analysis. Our mechanized model allows to represent the protocol, all its possible traces and the attacker and his knowledge. The fine grained model allows to show origin authentication, and replay attack prevention. Most prominently, we succeed in expressing Delegation Signatures and proving their authenticity formally.

Item Type: Conference or Workshop Item (Paper)
Research Areas: A. > School of Science and Technology > Computer Science
Item ID: 15194
Notes on copyright: © 2014 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works.
Useful Links:
Depositing User: Florian Kammueller
Date Deposited: 23 Apr 2015 10:53
Last Modified: 08 Feb 2021 08:20

Actions (login required)

View Item View Item

Full text downloads (NB count will be zero if no full text documents are attached to the record)

Downloads per month over the past year