Safely composing security protocols

Véronique Cortier, Stéphanie Delaune
2008 Formal methods in system design  
Security protocols are small programs that are executed in hostile environments. Many results and tools have been developed to formally analyze the security of a protocol in the presence of an active attacker that may block, intercept and send new messages. However even when a protocol has been proved secure, there is absolutely no guarantee if the protocol is executed in an environment where other protocols are executed, possibly sharing some common identities and keys like public keys or
more » ... term symmetric keys. In this paper, we show that security of protocols can be easily composed. More precisely, we show that whenever a protocol is secure, it remains secure even in an environment where arbitrary protocols satisfying a reasonable (syntactic) condition are executed. This result holds for a large class of security properties that encompasses secrecy and various formulations of authentication. ⋆ This work has been partly supported by the RNTL project POSÉ and the ARA SSIA Formacrypt.
doi:10.1007/s10703-008-0059-4 fatcat:vow3ijjsxvhptcscqzoxtp33ku