VerifHub allows Verifpal® users to easily share and discuss Verifpal models of cryptographic protocols. The VerifHub service provides unique URIs for each shared model which includes a syntax-highlighted model, an automatically generated diagram and a summary of the analysis results.
CI_plus_v1.3.2_AKMC.vpSubmitted on 14 Nov 20 14:18 UTC.
attacker[active] principal Cicam[ generates cicam_id knows private mdq cert_cicam_id = G^mdq generates dhy dhpm = G^dhy generates auth_nonce ] Cicam -> Host: auth_nonce principal Host[ generates host_id knows private hdq cert_host_id = G^hdq generates dhx dhph = G^dhx sig_a = SIGN(hdq, HASH(auth_nonce, dhph)) ] Cicam -> Host: dhpm, [cert_cicam_id], cicam_id Host -> Cicam: dhph, sig_a, [cert_host_id], host_id principal Cicam[ _ = SIGNVERIF(cert_host_id, HASH(auth_nonce, dhph), sig_a)? sig_b = SIGN(mdq, HASH(auth_nonce, dhph, dhpm)) ] Cicam -> Host: sig_b principal Host[ _ = SIGNVERIF(cert_cicam_id, HASH(auth_nonce, dhph, dhpm), sig_b)? dhsk_h = dhpm^dhx akh = HASH(cicam_id, host_id, dhsk_h) ] Host -> Cicam: akh principal Cicam[ dhsk_m = dhph^dhy akm = HASH(cicam_id, host_id, dhsk_m) _ = ASSERT(akm, akh)? ] queries[ authentication? Host -> Cicam: sig_a authentication? Cicam -> Host: sig_b freshness? akh ]
The model submitter provided the following analysis results:
- Query 1 (Authentication): PASS
- Query 2 (Authentication): PASS
- Query 3 (Freshness): PASS
Please note that these results are not verified to be accurate. The model submitter may choose to provide false analysis results if they so desire. It is strongly recommended that you re-run the analysis of this model locally if you wish to verify the authenticity of the analysis results above.