Abstract :
[en] The challenge handshake authentication protocol, CHAP, is an authentication protocol intended for use primarily by hosts and routers that connect to a network server I in switched circuits or dial-up lines. but might be applied to dedicated links as well. In this paper; we specify two versions of the protocol, using the formal language Lotos, and apply the Eucalyptus model-based verification tools to prove that the first version has a flaw: whereas the second one is robust to passive and active attacks. The paper is written bl a tutorial fashion with a strong emphasis oil the methodology used. The relative simplicity of the CHAP protocol allows one to include complete Lotos specifications and definitions of properties, so that the experiment can be reproduced easily.
Scopus citations®
without self-citations
3