© 2007

Formal Correctness of Security Protocols

With 62 Figures and 4 Tables


Part of the Information Security and Cryptography book series (ISC)

Table of contents

  1. Front Matter
    Pages I-XIX
  2. Giampaolo Bella
    Pages 1-16
  3. Giampaolo Bella
    Pages 17-29
  4. Giampaolo Bella
    Pages 31-48
  5. Giampaolo Bella
    Pages 49-61
  6. Giampaolo Bella
    Pages 63-71
  7. Giampaolo Bella
    Pages 87-109
  8. Giampaolo Bella
    Pages 111-138
  9. Giampaolo Bella
    Pages 139-151
  10. Giampaolo Bella
    Pages 153-164
  11. Giampaolo Bella
    Pages 165-193
  12. Giampaolo Bella
    Pages 195-206
  13. Giampaolo Bella
    Pages 207-224
  14. Giampaolo Bella
    Pages 225-234
  15. Back Matter
    Pages 235-274

About this book


Computer network security is critical to fraud prevention and accountability. Network participants are required to observe predefined steps called security protocols, whose proof of correctness is evidence that each protocol step preserves some desired properties.

The author investigates proofs of correctness of realistic security protocols in a formal, intuitive setting. The protocols examined include Kerberos versions, smartcard protocols, non-repudiation protocols, and certified email protocols. The method of analysis, the Inductive Method in the theorem prover Isabelle, turns out to be both powerful and flexible. This research advances significant extensions to the method of analysis, while the findings on the protocols analysed are novel and illuminating.

This book will benefit researchers and graduate students in the fields of formal methods, information security, inductive methods, and networking.


Formal methods Inductive techniques Information Isabelle Kerberos Protocol engineering Security protocols Theorem proving data security formal method network security security

Authors and affiliations

  1. 1.Dipartimento di Matematica eUniversità di Cataniae Informatica95125 Catania

Bibliographic information

Industry Sectors
IT & Software
Consumer Packaged Goods
Materials & Steel
Finance, Business & Banking
Energy, Utilities & Environment
Oil, Gas & Geosciences


From the reviews:

"This book is about the Inductive Method technique for proving the correctness of security protocols. It is very well suited for the reader who wants to know the state of the art of proving protocol security using the Inductive Method and the interactive theorem prover Isabelle. … The book could be used as a textbook on the advanced topics in protocol security. It is highly recommended to the newcomer in the field who wants technical information, and to the researcher in the area … ." (Yongge Wang, Mathematical Reviews, Issue 2008 f)

"In summary, my opinion is that this is a great book in the field of computer security, for the practitioner and theoretician alike, since it provides an ideal mixture of theoretical results and applications of them in real protocol analysis scenarios. The book combines, in an ideal way, the features of a rigorous book and a “cookbook”. ... In conclusion, I would strongly recommend this book to people involved in formally proving properties about security protocols as well as students making their first steps in studying such protocols." (Yannis C. Stamatiou, Univ. of Ioannina, Greece, ACM SIGACT News Book Review 41(1) 2010)

“The book addresses the software development theorists interested in both modelling and automatic verification of security protocols. … The present text … includes a valuable contribution devoted to apply the inductive method for verifying properties of real-world communication protocols. … The interested computer scientist … find here valuable hints for future important developments in specifying and verifying secure network communication protocols.” (Tudor Bălănescu, Zentralblatt MATH, Vol. 1176, 2010)