Optimization Method for Formal Analysis of Security Protocols #br#
Based on Prior Path Selection#br#

Journal of Information Security Reserach ›› 2025, Vol. 11 ›› Issue (8): 727-.

Previous Articles Next Articles

Optimization Method for Formal Analysis of Security Protocols #br# Based on Prior Path Selection#br#

Cai Guangying, Cai Liujia, Lu Siqi, Wang Yongjuan, and Wang Xiangyu

(Henan Key Laboratory of Network Cryptography Technology, Zhengzhou 450001)

Online:2025-08-28 Published:2025-08-28

基于先验路径选择的安全协议形式化分析优化方法

蔡光英蔡柳佳陆思奇王永娟王向宇

(河南省网络密码技术重点实验室郑州450001)

通讯作者: 陆思奇博士，讲师.主要研究方向为区块链安全、形式化方法和安全协议分析. 080lusiqi@sina.com
作者简介:蔡光英硕士.主要研究方向为安全协议分析和形式化方法. cguangying163@163.com 蔡柳佳博士研究生.主要研究方向为安全协议分析和形式化方法. cailiuj@163.com 陆思奇博士，讲师.主要研究方向为区块链安全、形式化方法和安全协议分析. 080lusiqi@sina.com 王永娟博士，研究员.主要研究方向为信息安全、区块链安全、安全协议分析和侧信道分析. pinkwyj@163.com 王向宇博士，副教授.主要研究方向为网络密码、区块链安全和安全协议分析.

Abstract

Abstract: Formal analysis techniques can detect security vulnerabilities in security protocols, but when analyzing complex security protocols, the state space explosion problem often prevents the analysis from terminating. The fundamental cause of this issue is the exponential increase in the number of protocol states due to an excessive number of redundant nodes. To address this, the prior path selection method was proposed, which used the nodes of already searched paths to guide the selection of subsequent nodes, reducing the number of protocol states and effectively circumventing the state space explosion, thus improving efficiency. Further, by utilizing the Oracle interface of the Tamarin model checking tool, this method was applied to the analysis of security protocols, and comparative experiments were conducted on 5 protocols with 8 lemmas. The experimental results show that the Prior Path Selection method successfully provides analysis results for protocols where conventional path search is ineffective, mitigating the state space explosion problem.

Key words: prior path selection method, state space explosion, formal analysis, model checking, Tamarin

摘要： 形式化分析技术能够检测出安全协议存在的安全漏洞，但是对一些复杂的安全协议进行分析时，往往会出现状态空间爆炸问题导致分析无法终止.无用节点过多使得协议状态数量剧增是导致状态空间爆炸的根本，针对这一问题提出了先验路径选择法，利用已搜索的路径节点指导后续节点的选择，减少协议状态数量，有效规避了状态空间爆炸并提高了效率.进一步通过Tamarin模型检测工具的Oracle接口，将这种方法应用于安全协议的分析，并针对5个协议8个引理开展了对比实验.实验结果表明，先验路径选择法对于常规路径搜索无效的协议，成功给出了分析结果，缓解了状态空间爆炸问题.

关键词: 先验路径选择法, 状态空间爆炸, 形式化分析, 模型检测, Tamarin

CLC Number:

TP393

蔡光英, 蔡柳佳, 陆思奇, 王永娟, 王向宇, . 基于先验路径选择的安全协议形式化分析优化方法[J]. 信息安全研究, 2025, 11(8): 727-.

References

［1］Hussain S, Chowdhury O, Mehnaz S, et al. LTEInspector: A systematic approach for adversarial testing of 4G LTE［EBOL］. ［20241029］. https:www.ndsssymposium.orgwpcontentuploads201802ndss2018_02A3_Hussain_paper.pdf［2］Basin D, Dreier J, Hirschi L, et al. A formal analysis of 5G authentication［C］ Proc of the 2018 ACM SIGSAC Conf on Computer and Communications Security. New York: ACM, 2018: 13831396［3］Cremers C, Horvat M, Scott S, et al. Automated analysis and verification of TLS 1.3: 0RTT, resumption and delayed authentication［C］ Proc of the 2016 IEEE Symp on Security and Privacy (SP). Piscataway, NJ: IEEE, 2016: 470485［4］Lipner S B. The birth and death of the orange book［J］. IEEE Annals of the History of Computing, 2015, 37(2): 1931［5］Delaune S, Kremer S, Steel G. Formal security analysis of PKCS#11 and proprietary extensions［J］. Journal of Computer Security, 2010, 18(6): 12111245［6］Bertot Y, Castéran P. Interactive Theorem Proving and Program Development: Coq’Art: the Calculus of Inductive Constructions［M］. Berlin: Springer, 2013［7］Xiong Yan, Su Cheng, Huang Wenchao, et al. SmartVerif: Push the limit of automation capability of verifying security protocols by dynamic strategies［C］ Proc of the 29th USENIX Security Symposium (USENIX Security 20). Berkeley, CA: USENIX Association, 2020: 253270［8］Armando A, Basin D, Boichut Y, et al. The AVISPA tool for the automated validation of internet security protocols and applications［C］ Proc of the 17th Int Conf on Computer Aided Verification. Berlin: Springer, 2005: 281285［9］Blanchet B, Abadi M, Fournet C. Automated verification of selected equivalences for security protocols［J］. The Journal of Logic and Algebraic Programming, 2008, 75(1): 351［10］Dolve D, Yao A. On the security of public key protocols［J］. IEEE Trans on Information Theory, 1983, 29(2): 198208［11］Cas C, Jannik D, Robert K, et al. The tamarin manual［EBOL］. ［20241029］. https:tamarinprover.github.io［12］王炯涵, 黄文超, 汪万森, 等. 一种比特币支付协议的形式化建模验证方法［J］. 信息安全研究, 2024, 10(4): 311317［13］He Leifeng, Liu Guanjun. Petri net based CTL model checking: Using a new method to construct OBDD variable order［C］ Proc of the 2021 Int Symp on Theoretical Aspects of Software Engineering (TASE). Piscataway, NJ: IEEE, 2021: 159166［14］Esparza J, Heljanko K. Unfoldings: A Partialorder Approach to Model Checking［M］. Berlin: Springer, 2008［15］杨锦翔, 熊焰, 黄文超. 基于强化学习的安全协议形式化验证优化研究［J］. 计算机工程, 2021, 47(12): 141146

[1]	. Design and Verification of V2V Authentication and Key Exchange Protocol for Internet of Vehicles [J]. Journal of Information Security Reserach, 2025, 11(5): 465-.
[2]	. Research on Security Verification of RFID Authentication Protocol #br# Based on Model Checking#br# [J]. Journal of Information Security Reserach, 2024, 10(11): 1043-.
[3]	. A Formal Analysis Method with Forward Reasoning for Cryptographic Protocols [J]. Journal of Information Security Research, 2017, 3(5): 462-468.

Optimization Method for Formal Analysis of Security Protocols #br# Based on Prior Path Selection#br#

基于先验路径选择的安全协议形式化分析优化方法

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 3

Recommended Articles

Metrics