Cryptology ePrint Archive: Report 2006/058

Symbolic and Cryptographic Analysis of the Secure WS-ReliableMessaging Scenario

Michael Backes and Sebastian Mödersheim and Birgit Pfitzmann and Luca Viganò

Abstract: Web services are an important series of industry standards for adding semantics to web-based and XML-based communication, in particular among enterprises. Like the entire series, the security standards and proposals are highly modular. Combinations of several standards are put together for testing as interoperability scenarios, and these scenarios are likely to evolve into industry best practices. In the terminology of security research, the interoperability scenarios correspond to security protocols. Hence, it is desirable to analyze them for security. In this paper, we analyze the security of the new Secure WS-ReliableMessaging Scenario, the first scenario to combine security elements with elements of another quality-of-service standard. We do this both symbolically and cryptographically. The results of both analyses are positive. The discussion of actual cryptographic primitives of web services security is a novelty of independent interest in this paper.

Category / Keywords: cryptographic protocols / Web Services, WS-ReliableMessaging, symbolic analysis, cryptographic analysis

Publication Info: Extended report of a conference paper appearing at Proceedings of FOSSACS 2006.

Date: received 15 Feb 2006

Contact author: backes at cs uni-sb de

Available formats: PDF | BibTeX Citation

Version: 20060215:220116 (All versions of this report)

Discussion forum: Show discussion | Start new discussion