当前位置: X-MOL 学术Mobile Netw. Appl. › 论文详情
Our official English website, www.x-mol.net, welcomes your feedback! (Note: you will need to create a separate account there.)
Verification of RabbitMQ with Kerberos Using Timed Automata
Mobile Networks and Applications ( IF 3.8 ) Pub Date : 2022-05-09 , DOI: 10.1007/s11036-022-01986-8
Ran Li , Jiaqi Yin , Huibiao Zhu , Phan Cong Vinh

RabbitMQ, an implementation of Advanced Message Queuing Protocol (AMQP), is a very popular message middleware. It supports concurrency, guarantees sequential consistency, and enables independent applications and services to communicate. Consequently, it is of great significance to ensure the secure communication of RabbitMQ. Therefore, Kerberos, a network authentication protocol, is introduced to combine with RabbitMQ to address this security issue. In this paper, we apply formal methods to model and verify RabbitMQ with Kerberos. By utilizing UPPAAL, RabbitMQ is abstracted to timed automata. Further, we validate the constructed model with the simulator in UPPAAL. On this basis, we verify whether RabbitMQ meets some basic but essential properties, including Reachability of Data, Concurrency, Sequence Consistency and Heartbeat Mechanism. Additionally, the security property Secure Communication is verified as well. From the verification results via UPPAAL, it can be found that RabbitMQ can totally cater for these properties and it maintains secure communication under the umbrella of Kerberos.



中文翻译:

使用定时自动机使用 Kerberos 验证 RabbitMQ

RabbitMQ 是高级消息队列协议 (AMQP) 的一种实现,是一种非常流行的消息中间件。它支持并发,保证顺序一致性,并使独立的应用程序和服务能够进行通信。因此,确保 RabbitMQ 的安全通信具有重要意义。因此,引入了网络认证协议 Kerberos 与 RabbitMQ 结合来解决这个安全问题。在本文中,我们应用形式化方法使用 Kerberos 对 RabbitMQ 进行建模和验证。通过使用 UPPAAL,RabbitMQ 被抽象为定时自动机。此外,我们使用 UPPAAL 中的模拟器验证了构建的模型。在此基础上,我们验证 RabbitMQ 是否满足一些基本但必不可少的属性,包括数据的可达性并发性,序列一致性心跳机制。此外,还验证了安全属性Secure Communication。从 UPPAAL 的验证结果可以发现,RabbitMQ 完全可以满足这些特性,并在 Kerberos 的保护下保持安全通信。

更新日期:2022-05-10
down
wechat
bug