VerifHub

VerifHub allows Verifpal® users to easily share and discuss Verifpal models of cryptographic protocols. The VerifHub service provides unique URIs for each shared model which includes a syntax-highlighted model, an automatically generated diagram and a summary of the analysis results.

Switch to Diagram View

CI_plus_v1.3.2_AKMC.vp

Submitted on 14 Nov 20 14:18 UTC.

attacker[active]

principal Cicam[
	generates cicam_id
	knows private mdq
	cert_cicam_id = G^mdq
	generates dhy
	dhpm = G^dhy
	generates auth_nonce
]

Cicam -> Host: auth_nonce

principal Host[
	generates host_id
	knows private hdq
	cert_host_id = G^hdq
	generates dhx
	dhph = G^dhx
	sig_a = SIGN(hdq, HASH(auth_nonce, dhph))
]

Cicam -> Host: dhpm, [cert_cicam_id], cicam_id

Host -> Cicam: dhph, sig_a, [cert_host_id], host_id

principal Cicam[
	_ = SIGNVERIF(cert_host_id, HASH(auth_nonce, dhph), sig_a)?
	sig_b = SIGN(mdq, HASH(auth_nonce, dhph, dhpm))
]

Cicam -> Host: sig_b

principal Host[
	_ = SIGNVERIF(cert_cicam_id, HASH(auth_nonce, dhph, dhpm), sig_b)?
	dhsk_h = dhpm^dhx
	akh = HASH(cicam_id, host_id, dhsk_h)
]

Host -> Cicam: akh

principal Cicam[
	dhsk_m = dhph^dhy
	akm = HASH(cicam_id, host_id, dhsk_m)
	_ = ASSERT(akm, akh)?
]

queries[
	authentication? Host -> Cicam: sig_a
	authentication? Cicam -> Host: sig_b
	freshness? akh
]

Switch to Model View

Title:CI_plus_v1.3.2_AKMC.vp Note over Cicam: generates cicam_id\n knows private mdq\n cert_cicam_id = G^mdq\n generates dhy\n dhpm = G^dhy\n generates auth_nonce\n Cicam -> Host: auth_nonce Note over Host: generates host_id\n knows private hdq\n cert_host_id = G^hdq\n generates dhx\n dhph = G^dhx\n sig_a = SIGN(hdq, HASH(auth_nonce, dhph))\n Cicam -> Host: dhpm, [cert_cicam_id], cicam_id Host -> Cicam: dhph, sig_a, [cert_host_id], host_id Note over Cicam: _ = SIGNVERIF(cert_host_id, HASH(auth_nonce, dhph), sig_a)?\n sig_b = SIGN(mdq, HASH(auth_nonce, dhph, dhpm))\n Cicam -> Host: sig_b Note over Host: _ = SIGNVERIF(cert_cicam_id, HASH(auth_nonce, dhph, dhpm), sig_b)?\n dhsk_h = dhpm^dhx\n akh = HASH(cicam_id, host_id, dhsk_h)\n Host -> Cicam: akh Note over Cicam: dhsk_m = dhph^dhy\n akm = HASH(cicam_id, host_id, dhsk_m)\n _ = ASSERT(akm, akh)?\n

Analysis Results

The model submitter provided the following analysis results:

Query 1 (Authentication): PASS
Query 2 (Authentication): PASS
Query 3 (Freshness): PASS

Please note that these results are not verified to be accurate. The model submitter may choose to provide false analysis results if they so desire. It is strongly recommended that you re-run the analysis of this model locally if you wish to verify the authenticity of the analysis results above.

Discuss This Model

© Copyright 2019- Nadim Kobeissi. All Rights Reserved. “Verifpal” and the “Verifpal” logo/mascot are registered trademarks of Nadim Kobeissi. Verifpal software is provided as free and open source software, licensed under the GPLv3. Verifpal User Manual, as well as this website, are provided under the CC BY-NC-ND 4.0 license. Published by Symbolic Software.