263-4600-00L  Formal Methods for Information Security

SemesterFrühjahrssemester 2015
DozierendeS. Radomirovic, M. Torabi Dashti
Periodizitätjährlich wiederkehrende Veranstaltung


KurzbeschreibungThe course focuses on formal methods for the modelling and analysis of security and privacy concerns in critical systems, ranging from access control policies to cryptographic protocols.
LernzielThe students will learn the key ideas and theoretical foundations of formal modelling and analysis of security protocols and policies. The students will complement their theoretical knowledge by solving practical exercises and using various related tools.
InhaltThe lecture treats formal methods for the modelling and analysis of security-critical systems.

The first part of the lecture focuses on access control policies in centralized and distributed settings. Access control policies are an integral part of modern Internet services; examples include single sign-on endpoints, distributed trust management in social Websites, and peer-to-peer networks. The lectures cover the formal foundations of authorization systems, and their applications to the synthesis and analysis of access control policies. We will also study a few notable existing models, such as XACML, DKAL and PBel.

The second part of the lecture concentrates on cryptographic protocols. Cryptographic protocols (such as SSL/TLS, SSH, Kerberos, SAML single-sign on, and IPSec) form the basis for secure communication and business processes. Numerous attacks on published protocols show that the design of cryptographic protocols is extremely error-prone. A rigorous analysis of these protocols is therefore indispensable. The lecture covers the theoretical basis for the formal modeling and analysis of such protocols. Specifically, we discuss their operational semantics, the formalization of security properties, and techniques and algorithms for their verification. In addition to the classical security properties for confidentiality and authentication, we will study privacy properties and the fairness property in contract signing. The accompanying tutorials provide an opportunity to apply the theory and tools to concrete protocols.


Information zur Leistungskontrolle (gültig bis die Lerneinheit neu gelesen wird)
Leistungskontrolle als Semesterkurs
ECTS Kreditpunkte4 KP
PrüfendeM. Torabi Dashti, S. Radomirovic
RepetitionDie Leistungskontrolle wird nur in der Session nach der Lerneinheit angeboten. Die Repetition ist nur nach erneuter Belegung möglich.
Prüfungsmodusmündlich 20 Minuten
Diese Angaben können noch zu Semesterbeginn aktualisiert werden; verbindlich sind die Angaben auf dem Prüfungsplan.


HauptlinkFormal Methods for Information Security
Es werden nur die öffentlichen Lernmaterialien aufgeführt.


263-4600-00 VFormal Methods for Information Security2 Std.
Do09-11CAB G 57 »
S. Radomirovic, M. Torabi Dashti
263-4600-00 UFormal Methods for Information Security1 Std.
Do11-12CAB G 57 »
S. Radomirovic, M. Torabi Dashti


Keine Informationen zu Gruppen vorhanden.


Keine zusätzlichen Belegungseinschränkungen vorhanden.

Angeboten in

CAS in InformatikFokusfächer und WahlfächerWInformation
Informatik MasterWahlfächer der Vertiefung in Information SecurityWInformation