Edinburgh Research Explorer

Attacking Group Multicast Key Management Protocol using CORAL

Research output: Contribution to journalArticlepeer-review

Related Edinburgh Organisations

Open Access permissions


Original languageEnglish
Pages (from-to)125-144
Number of pages20
JournalElectronic Notes in Theoretical Computer Science
Publication statusPublished - 2004


This paper describes the modelling of a two multicast group key management protocols in a first-order inductive model, and the discovery of previously unknown attacks on them by the automated inductive counterexample finder CORAL. These kinds of protocols had not been analysed in a scenario with an active intruder before. CORAL proved to be a suitable tool for a job because, unlike most automated tools for discovering attacks, it deals directly with an open-ended model where the number of agents and the roles they play are unbounded. Additionally, CORAL s model allows us to reason explicitly about lists of terms in a message, which proved to be essential for modelling the second protocol. In the course of the case studies, we also discuss other issues surrounding multicast protocol analysis, including identifying the goals of the protocol with respect to the intended trust model, modelling of the control conditions, which are considerably more complex than for standard two and three party protocols, and effective searching of the state space generated by the model, which has a much larger branching rate than for standard protocols.

    Research areas

  • Security protocol analysis , group multicast key management

Download statistics

No data available

ID: 16657707