Section: New Software and Platforms

CL-AtSe

Constraint Logic based Attack Searcher

Keywords: Security - Verification - Web Services

Functional Description: CL-AtSe is a Constraint Logic based Attack Searcher for security protocols and services. The main idea in CL-AtSe consists in running the protocol or set of services in all possible ways by representing families of traces with positive or negative constraints on the intruder knowledge, on variable values, on sets, etc. Thus, each run of a service step consists in adding new constraints on the current intruder and environment state, reducing these constraints down to a normalized form for which satisfiability is easily decidable, and decide whether some security property has been violated up to this point.

• Participants: Mathieu Turuani and Tigran Avanesov

• Contact: Mathieu Turuani

• URL: https://cassis.loria.fr/wiki/Wiki.jsp?page=Cl-Atse