User Account

All Pages

Draw a state transition diagram of the system

Assignment Help Basic Computer Science
Reference no: EM133214258

Consider the following four-step communication protocol, which is known as Kerberos protocol and its aim is to guarantee authentication and key exchange between a client and a server [1, 2].

(1) A -> S : A, B

(2) S -> A : {Ts, L, Kab, B}Kas , {Ts, L, Kab, A}Kbs (3) A -> B : {Ts, L, Kab, A}Kbs , {A, Ta} Kab

(4) B -> A : {Ta+1}Kab

The protocol involves the principals A (client/initiator) and B (server/responder), and an authentication server S. The server S is a trusted party which shares a key Kas with A and a key Kbs with B, and also responsible for generating new session keys Kab. The above protocol makes use of the time stamps Ta and Tb, and the lifetime L. In step (1) above, A contacts S in order to communicate its claimed identity and the name of the server B. In step (2), S sends to A two encrypted components. The first component contains the session key Kab generated by S, a time stamp Ts specifying when the session key has been generated, the interval of validity of such key, and the name of the server B. The second component is called ticket having similar information, however, A will not be able to decrypt it. In step (3), A forwards the ticket to server B, with a authenticator component encrypted with the new session key. After receiving the above message, B can extract the session key from the ticket, and uses it to decrypt the authenticator. If the key used to encrypt authenticator matches with the key contained in the ticket, the server B can assume that the authenticator was generated by A. At this point, in order to authenticate the client A, the server B must also check the time stamp Ta to make sure that the authenticator is recent. Thus B can recognise A if the result of verification is positive. In step (4), B demonstrate its identity to A sending a message with increased time stamp encrypted with the session key Kab.

The model of the above protocol could be composed of several variables and processes (or agents). The protocol shall ensure authentication and secrecy. Such properties shall be verified against an intruder I with the following capabilities:

  • I is a known agent, it can act either as initiator or as responder of a protocol session;
  • I can eavesdrop and store any message sent by any agent;
  • I can exploit its knowledge to generate new messages or use previously storedmessages as they are.

Model as a concurrent system in NuSMV the protocol described above as the interaction of 4 agents, A, B, S and I. Multiple sessions may overlap, asynchronously. However, to ensure finiteness of the model state space, consider a maximum number n of sessions, and verify the satisfaction of the properties above under such a limitation. To model and verify the desired system properties you need to complete the following tasks:

Task 1: Design and draw a state transition diagram of the system considering four agents mentioned above. Please note that this diagram would be a high-level diagram and not considering NuSMV's low level diagram (as it would be very complicated);

Task 2: In your NuSMV model (code using the SMV language) all the agents should work concurrently, and in an asynchronous manner;

Task 3: Identify and express six authentication and secrecy properties using CTL/LTL;

Reference no: EM133214258

Questions Cloud

Describe scenario that requires information security plan : Describe the scenario that requires an information security plan. The company you choose can be a current, former, or fictional environment.
Describe an industry in which you want to work : Describe an industry in which you want to work. In your opinion, which of the three primary stakeholder groups is the most powerful in that industry today? Why?
Asymmetric encryption algorithms and digital certificates : A public key infrastructure (PKI) system uses symmetric and asymmetric encryption algorithms and digital certificates to provide security for multiple applicati
Describe the features and basic use of nessus : You are the security administrator for company ABC. You have been tasked to conduct a vulnerability study on the company network (use your home private network
Draw a state transition diagram of the system : Consider the following four-step communication protocol, which is known as Kerberos protocol and its aim is to guarantee authentication and key exchange between
Identify an existing business : For each Organizational Behavior Model, identify an existing business that you think is a best example, base on what you have observed or known of.
Contrast automated vs manual policy enforcement controls : Contrast automated vs. manual policy enforcement controls. Who is ultimately liable for risk, threats, and vulnerabilities?
Types of virus-malicious code and protective measures : 1. What is a virus? 2. What is malware? 3. What are the different types of virus and malicious code?
Review the article-porters diamond model analysis : Mister Simplify. (2020, November 7). Porter's diamond model explained with a full example - simplest explanation ever. [Video].

Reviews

Write a Review

Basic Computer Science Questions & Answers

  Identifies the cost of computer

identifies the cost of computer components to configure a computer system (including all peripheral devices where needed) for use in one of the following four situations:

  Input devices

Compare how the gestures data is generated and represented for interpretation in each of the following input devices. In your comparison, consider the data formats (radio waves, electrical signal, sound, etc.), device drivers, operating systems suppo..

  Cores on computer systems

Assignment : Cores on Computer Systems:  Differentiate between multiprocessor systems and many-core systems in terms of power efficiency, cost benefit analysis, instructions processing efficiency, and packaging form factors.

  Prepare an annual budget in an excel spreadsheet

Prepare working solutions in Excel that will manage the annual budget

  Write a research paper in relation to a software design

Research paper in relation to a Software Design related topic

  Describe the forest, domain, ou, and trust configuration

Describe the forest, domain, OU, and trust configuration for Bluesky. Include a chart or diagram of the current configuration. Currently Bluesky has a single domain and default OU structure.

  Construct a truth table for the boolean expression

Construct a truth table for the Boolean expressions ABC + A'B'C' ABC + AB'C' + A'B'C' A(BC' + B'C)

  Evaluate the cost of materials

Evaluate the cost of materials

  The marie simulator

Depending on how comfortable you are with using the MARIE simulator after reading

  What is the main advantage of using master pages

What is the main advantage of using master pages. Explain the purpose and advantage of using styles.

  Describe the three fundamental models of distributed systems

Explain the two approaches to packet delivery by the network layer in Distributed Systems. Describe the three fundamental models of Distributed Systems

  Distinguish between caching and buffering

Distinguish between caching and buffering The failure model defines the ways in which failure may occur in order to provide an understanding of the effects of failure. Give one type of failure with a brief description of the failure

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd