PUMA
Istituto di Informatica e Telematica     
Martinelli F., Petrocchi M., Vaccarelli A. Automated analysis of some security mechanism of SCEP. Technical report, 2002.
 
 
Abstract
(English)
In this paper we analyze SCEP, the Simple Certificate Enrollment Procedure, a two-way communication protocol to manage the secure emission of digital certificates to network devices. The protocol provides a consistent method of requesting and receiving certificates from different Certification Authorities, by offering an open and scalable solution for deploying certificates. It can be bene- ficial to all network devices and IPSEC software solutions. We formally analyze SCEP through a software tool for the automatic analysis of cryptographic protocols, able to discover, at a conceptual level, attacks against security procedures. Our method of survey contributes towards a better understanding of the structure and the aims of a protocol, both for protocol developers, analyzers and final users.
Subject SCEP
Communication protocol
Security
Certificates
K.6.5 Security and Protection


Icona documento 1) Download Document PDF


Icona documento Open access Icona documento Restricted Icona documento Private

 


Per ulteriori informazioni, contattare: Librarian http://puma.isti.cnr.it

Valid HTML 4.0 Transitional