An overview of the verification of SET |
| |
| Authors: | Giampaolo Bella Fabio Massacci Lawrence C. Paulson |
| |
| Affiliation: | (1) Dipartimento di Matematica e Informatica, Università di Catania, Viale A. Doria 6, 95125 Catania, Italy;(2) Dipartimento di Informatica e Telecomunicazioni, Università di Trento, Via Sommarive 14, 38050 Povo (Trento), Italy;(3) Computer Laboratory, University of Cambridge, J J Thomson Avenue, Cambridge, CB3 0FD, UK |
| |
| Abstract: | This paper describes the verification of Secure Electronic Transaction (SET), an e-commerce protocol by VISA and MasterCard. The main tasks are to comprehend the written documentation, to produce an accurate formal model, to identify specific protocol goals, and, finally, to prove them. The main obstacles are the protocol s complexity (due in part to its use of digital envelopes) and its unusual goals involving partial information sharing. Our verification efforts show that the protocol does not completely satisfy its goals, although the flaws are minor. The primary outcome of the project is experience with verification of enormous and complicated protocols. This paper summarizes the project – the details appear elsewhere [11, 12 , 13 ] – focusing on the issues and the conclusions. |
| |
| Keywords: | Automated reasoning Network protocols Computer security Formal verification Secure Electronic Transactions (SET) |
| 本文献已被 SpringerLink 等数据库收录! |
|
