October 2005 - crypticl-cvs@common-lisp.net

[crypticl-cvs] CVS update: obol/doc/.emacs
by tskogan＠common-lisp.net 02 Oct '05

02 Oct '05

Update of /project/crypticl/cvsroot/obol/doc In directory common-lisp.net:/tmp/cvs-serv31159 Added Files: .emacs Log Message: .emacs file usefull for working with Allegro Common Lisp and Obol. Date: Sun Oct 2 17:03:46 2005 Author: tskogan

1 0

[crypticl-cvs] CVS update: crypticl/doc/html/index.html
by tskogan＠common-lisp.net 02 Oct '05

02 Oct '05

Update of /project/crypticl/cvsroot/crypticl/doc/html In directory common-lisp.net:/tmp/cvs-serv30127 Modified Files: index.html Log Message: updating with obol Date: Sun Oct 2 16:54:52 2005 Author: tskogan Index: crypticl/doc/html/index.html diff -u crypticl/doc/html/index.html:1.3 crypticl/doc/html/index.html:1.4 --- crypticl/doc/html/index.html:1.3 Sat Oct 1 21:12:31 2005 +++ crypticl/doc/html/index.html Sun Oct 2 16:54:51 2005 @@ -20,10 +20,9 @@ <p>The library will be limited to common, secure algorithms and not try to implement all available cryptographic algorithms. Hence AES is included and DES is not and MD5 will be removed due to recently discovered weaknesses. + - <li> <a href="http://www.common-lisp.net/mailman/listinfo/crypticl-announce"> crypticl-announce</a> for announcements.</li> - </ul> +--> + + <h3>Obol</h3> +Obol is a special purpose programming language for implementing security +protocols of the kind used in SSL, SSH and Kerberos. I have included an <a href="http://common-lisp.net/cgi-bin/viewcvs.cgi/obol/?cvsroot=crypticl">implementation of Obol</a> and the language runtime in the cvs repository. The implementation uses crypticl to implement the cryptographic core of the Obol runtime and illustrates how crypticl can be used by an application. <h3>Download</h3> - <p><a href="crypticl-0.1.1.tar.gz">Crypticl 0.1 released</a></p> + <a href="crypticl-0.1.1.tar.gz">Crypticl 0.1</a><p> + <a href="obol-0.1.1.tar.gz">Obol 0.1</a>, includes crypticl.<p> <h3>CVS</h3> @@ -58,7 +60,7 @@ <div class="footer"> - Tåle Skogan 1. October 2005. + Tåle Skogan 2. October 2005. </div> <div class="check">

1 0

[crypticl-cvs] CVS update: obol/doc/ChangeLog
by tskogan＠common-lisp.net 02 Oct '05

02 Oct '05

Update of /project/crypticl/cvsroot/obol/doc In directory common-lisp.net:/tmp/cvs-serv28029 Modified Files: ChangeLog Log Message: fixing wrong tag Date: Sun Oct 2 16:26:27 2005 Author: tskogan Index: obol/doc/ChangeLog diff -u obol/doc/ChangeLog:1.4 obol/doc/ChangeLog:1.5 --- obol/doc/ChangeLog:1.4 Sun Oct 2 16:24:23 2005 +++ obol/doc/ChangeLog Sun Oct 2 16:26:27 2005 @@ -1,4 +1,4 @@ ---------------------------------- TAG 0.1.0 ------------------------------- +--------------------------------- TAG 0.1.1 ------------------------------- 02-10-2005 Taale Skogan<tasko(a)frisurf.no> * prog/needham-schroeder-*.obol: Hardcoding channels so all three protocl principals can run in in the same Lobo runtime.

1 0

[crypticl-cvs] CVS update: obol/doc/ChangeLog
by tskogan＠common-lisp.net 02 Oct '05

02 Oct '05

Update of /project/crypticl/cvsroot/obol/doc In directory common-lisp.net:/tmp/cvs-serv27998 Modified Files: ChangeLog Log Message: Adding tag. Date: Sun Oct 2 16:24:24 2005 Author: tskogan Index: obol/doc/ChangeLog diff -u obol/doc/ChangeLog:1.3 obol/doc/ChangeLog:1.4 --- obol/doc/ChangeLog:1.3 Sun Oct 2 16:22:14 2005 +++ obol/doc/ChangeLog Sun Oct 2 16:24:23 2005 @@ -1,3 +1,4 @@ +--------------------------------- TAG 0.1.0 ------------------------------- 02-10-2005 Taale Skogan<tasko(a)frisurf.no> * prog/needham-schroeder-*.obol: Hardcoding channels so all three protocl principals can run in in the same Lobo runtime.

1 0

[crypticl-cvs] CVS update: obol/doc/ChangeLog
by tskogan＠common-lisp.net 02 Oct '05

02 Oct '05

Update of /project/crypticl/cvsroot/obol/doc In directory common-lisp.net:/tmp/cvs-serv27961 Modified Files: ChangeLog Log Message: Updating Date: Sun Oct 2 16:22:14 2005 Author: tskogan Index: obol/doc/ChangeLog diff -u obol/doc/ChangeLog:1.2 obol/doc/ChangeLog:1.3 --- obol/doc/ChangeLog:1.2 Sun Oct 2 10:49:34 2005 +++ obol/doc/ChangeLog Sun Oct 2 16:22:14 2005 @@ -1,6 +1,13 @@ 02-10-2005 Taale Skogan<tasko(a)frisurf.no> + * prog/needham-schroeder-*.obol: Hardcoding channels so all three + protocl principals can run in in the same Lobo runtime. + + * src/lobo.lisp: Added :help command to Obol repl. Needs more work + though. Changed default telnet repl port to 9023. + * doc/thesis.pdf: added thesis. - * doc/README: updating + + * doc/README: updating, describing how to run Needham-Schroeder. 23-11-2004 Taale Skogan<tasko(a)frisurf.no> Initial import.

1 0

[crypticl-cvs] CVS update: obol/src/prog/needham-schroeder-s.obol obol/src/prog/needham-schroeder-b.obol obol/src/prog/needham-schroeder-a.obol
by tskogan＠common-lisp.net 02 Oct '05

02 Oct '05

Update of /project/crypticl/cvsroot/obol/src/prog In directory common-lisp.net:/tmp/cvs-serv27937 Modified Files: needham-schroeder-s.obol needham-schroeder-b.obol needham-schroeder-a.obol Log Message: Hardcoding channels so all three protocl principals can run in in the same Lobo runtime. Date: Sun Oct 2 16:20:59 2005 Author: tskogan Index: obol/src/prog/needham-schroeder-s.obol diff -u obol/src/prog/needham-schroeder-s.obol:1.1.1.1 obol/src/prog/needham-schroeder-s.obol:1.2 --- obol/src/prog/needham-schroeder-s.obol:1.1.1.1 Tue Nov 23 22:43:42 2004 +++ obol/src/prog/needham-schroeder-s.obol Sun Oct 2 16:20:58 2005 @@ -16,7 +16,13 @@ (believe Kbs (load "prog/Kbs.key") shared-key ((alg AES))) ;; m1 A->S: A, B, Na -(receive *1 *2 *3) +;;(receive *1 *2 *3) +;; Myself, for testing purposes +(believe S "S" address) + +;; Hard coded channel for testing all 3 protocol actors in the same Lobo +;; runtime +(receive *1 *2 *3 ((channel S))) (believe A *1 address) (believe B *2 address) (believe Na *3 nonce) Index: obol/src/prog/needham-schroeder-b.obol diff -u obol/src/prog/needham-schroeder-b.obol:1.1.1.1 obol/src/prog/needham-schroeder-b.obol:1.2 --- obol/src/prog/needham-schroeder-b.obol:1.1.1.1 Tue Nov 23 22:43:42 2004 +++ obol/src/prog/needham-schroeder-b.obol Sun Oct 2 16:20:59 2005 @@ -12,8 +12,14 @@ ;; Initialize script with the secret key shared with the server. (believe Kbs (load "prog/Kbs.key") shared-key ((alg AES))) +;; Myself, for testing purposes +(believe B "B" address) + ;; m3 A->B: {Kab, A}Kbs -(decrypt Kbs (receive) *Kab *A) +;;(decrypt Kbs (receive) *Kab *A) +;; Hard coded channel for testing all 3 protocol actors in the same Lobo +;; runtime +(decrypt Kbs (receive ((channel B))) *Kab *A) (believe A *A address) (believe Kab *Kab shared-key ((alg AES))) @@ -22,6 +28,9 @@ (send A (encrypt Kab Nb)) ;; m5 A->B: {Nb-1}Kab -(decrypt Kab (receive) (- Nb 1)) +;;(decrypt Kab (receive) (- Nb 1)) +;; Hard coded channel for testing all 3 protocol actors in the same Lobo +;; runtime +(decrypt Kab (receive ((channel B))) (- Nb 1)) (print "Needham-Schroeder successful for B!") (return Kab) Index: obol/src/prog/needham-schroeder-a.obol diff -u obol/src/prog/needham-schroeder-a.obol:1.1.1.1 obol/src/prog/needham-schroeder-a.obol:1.2 --- obol/src/prog/needham-schroeder-a.obol:1.1.1.1 Tue Nov 23 22:43:42 2004 +++ obol/src/prog/needham-schroeder-a.obol Sun Oct 2 16:20:59 2005 @@ -14,23 +14,37 @@ ;; has to use the same type of key. (believe Kas (load "prog/Kas.key") shared-key ((alg AES))) -(believe A "gaupe.cs.uit.no:9000" address) -(believe B "nb75.stud.cs.uit.no:9000" address) -(believe S "tasko.stud.cs.uit.no:9000" address) +;;; Use if you have three machines and run one Lobo runtime on each +;;;(believe A "gaupe.cs.uit.no:9000" address) +;;;(believe B "nb75.stud.cs.uit.no:9000" address) +;;;(believe S "tasko.stud.cs.uit.no:9000" address) + +;;; Use if you want to test the protocol with three Obol scripts in a single +;;; Lobo runtime. +(believe A "A" address) +(believe B "B" address) +(believe S "S" address) + (believe Na (generate nonce ((size 128)))) ;; m1 A->S: A, B, Na (send S A B Na) ;; m2 S->A: {Na, B, Kab, {Kab, A}Kbs }Kas -(decrypt Kas (receive) Na B *Kab *toB) +;;(decrypt Kas (receive) Na B *Kab *toB) +;; Hard coded channel for testing all 3 protocol actors in the same Lobo +;; runtime +(decrypt Kas (receive ((channel A))) Na B *Kab *toB) (believe Kab *Kab shared-key ((alg AES))) ;; m3 A->B: {Kab, A}Kbs (send B *toB) ;; m4 B->A: {Nb}Kab -(decrypt Kab (receive) *Nb) +;;(decrypt Kab (receive) *Nb) +;; Hard coded channel for testing all 3 protocol actors in the same Lobo +;; runtime +(decrypt Kab (receive ((channel A))) *Nb) (believe Nb *Nb nonce) ;; m5 A->B: {Nb-1}Kab

1 0

[crypticl-cvs] CVS update: obol/src/lobo.lisp
by tskogan＠common-lisp.net 02 Oct '05

02 Oct '05

Update of /project/crypticl/cvsroot/obol/src In directory common-lisp.net:/tmp/cvs-serv27905 Modified Files: lobo.lisp Log Message: Added :help command to Obol repl. Needs more work though. Date: Sun Oct 2 16:17:55 2005 Author: tskogan Index: obol/src/lobo.lisp diff -u obol/src/lobo.lisp:1.1.1.1 obol/src/lobo.lisp:1.2 --- obol/src/lobo.lisp:1.1.1.1 Tue Nov 23 22:43:39 2004 +++ obol/src/lobo.lisp Sun Oct 2 16:17:55 2005 @@ -818,7 +818,7 @@ ;;; (rpc:start-rpc-server) ;;(lib-chat:start-lib-chat-telnet-server 3050) ;;; (chat:start-chat-telnet-server 3050) - (start-telnet 23)) + (start-telnet 9023)) (defun init-obol-proc (f) "Define binding between obol primitive and interpreter handler" @@ -1923,9 +1923,19 @@ (case keyword (:reinit (init)) (:exit :exit) + (:help (obol-help)) (:in (call-inspect script-env)) (:pe (print-env script-env local-env)) (:sv (set-verbosity)))) + + +(defun obol-help () + "Obol repl help menu +:exit - exit the current obol REPL (the script continues to exist in the +runtime). +:help - this help menu. +:reinit - re-initialize the lobo runtime where this script is running. +:in - inspect an object.") (defun call-inspect (script-env)

1 0

[crypticl-cvs] CVS update: obol/doc/README
by tskogan＠common-lisp.net 02 Oct '05

02 Oct '05

Update of /project/crypticl/cvsroot/obol/doc In directory common-lisp.net:/tmp/cvs-serv27881 Modified Files: README Log Message: Describing how to run Needham-Schroeder. Date: Sun Oct 2 16:16:11 2005 Author: tskogan Index: obol/doc/README diff -u obol/doc/README:1.2 obol/doc/README:1.3 --- obol/doc/README:1.2 Sun Oct 2 10:48:02 2005 +++ obol/doc/README Sun Oct 2 16:16:10 2005 @@ -31,8 +31,24 @@ This will start the Obol runtime. Start an Obol prompt by: lobo(4): (obol) -You can load and run a test script by using load-script: +You can load and run a whole Obol program by using load-script: obol[1]>(load-script "prog/test.obol") + +To test a more realistic example, try the Needham-Schroeder protocol +implementation found in prog/needham-schroeder-*.obol. Start a Lobo runtime +on three different machines, get an obol prompt by executing (obol) and +run the protocol step by step for each protocol actor in the three repls (one +Obol program for each actor A, B and S). You'll have to replace the default +local channel addresses by real network addresses in the Obol programs. +Alternatively you can run the protocol with all three actors in the same +Lobo runtime. This will be easier if you use the telnet server built into +the runtime. Open three telnet connections (default port 9023) and start a new +Obol script in each. Run the protocl as above. + +N.B. If you run on Windows and want to use telnet from within emacs, install +cygwin and use cygwin's telnet.exe since Window's telnet doesn't agree with +emacs's telnet.el. Modify the telnet command used by emacs as described at +http://www.khngai.com/emacs/cygwin.php. DOCUMENTATION

1 0

[crypticl-cvs] CVS update: obol/doc/ChangeLog
by tskogan＠common-lisp.net 02 Oct '05

02 Oct '05

Update of /project/crypticl/cvsroot/obol/doc In directory common-lisp.net:/tmp/cvs-serv4924 Modified Files: ChangeLog Log Message: updating Date: Sun Oct 2 10:49:34 2005 Author: tskogan Index: obol/doc/ChangeLog diff -u obol/doc/ChangeLog:1.1 obol/doc/ChangeLog:1.2 --- obol/doc/ChangeLog:1.1 Tue Nov 23 22:56:20 2004 +++ obol/doc/ChangeLog Sun Oct 2 10:49:34 2005 @@ -1,2 +1,6 @@ -23-11-2004 Tåle Skogan<tasko(a)frisurf.no> +02-10-2005 Taale Skogan<tasko(a)frisurf.no> + * doc/thesis.pdf: added thesis. + * doc/README: updating + +23-11-2004 Taale Skogan<tasko(a)frisurf.no> Initial import.

1 0

[crypticl-cvs] CVS update: obol/doc/README
by tskogan＠common-lisp.net 02 Oct '05

02 Oct '05

Update of /project/crypticl/cvsroot/obol/doc In directory common-lisp.net:/tmp/cvs-serv4907 Modified Files: README Log Message: Adding comment on thesis.pdf. Date: Sun Oct 2 10:48:02 2005 Author: tskogan Index: obol/doc/README diff -u obol/doc/README:1.1.1.1 obol/doc/README:1.2 --- obol/doc/README:1.1.1.1 Tue Nov 23 22:43:31 2004 +++ obol/doc/README Sun Oct 2 10:48:02 2005 @@ -1,8 +1,12 @@ INTRODUCTION +Obol is a special purpose programming language for implementing security +protocols of the kind used in SSL, SSH and Kerberos. This module implements +Obol. The implementation consists of a combined runtime and interpreter, +hereafter called Lobo. It is distributed under a MIT-style license (see the +LICENSE file). -Obol is a special purpose programming language for implementing security protocols of the kind used in SSL, SSH and Kerberos. This module implements Obol. The implementation consists of a combined runtime and interpreter, hereafter called Lobo. It is distributed under a MIT-style license (see the LICENSE file). - -The implementation depends on the Crypticl library, a cryptographic library written in Common Lisp. +The implementation depends on the Crypticl library, a cryptographic library +written in Common Lisp. WEBSITE @@ -10,9 +14,15 @@ INSTALL -The library can be loaded by loading the file "load.lisp". This file will load the library and run unit tests. It requires the crypticl library to be available. Change the path in "load.lisp" to point to the location of the crypto library. - -Lobo has been tested on Allegro 6.2 running on Windows XP. The code requires Allegro and will not run on other Common Lisp distributions due to the use of Allegro specific sockets and synchronization mechanisms (locks). To load and test the system: +The library can be loaded by loading the file "load.lisp". This file will load + the library and run unit tests. It requires the crypticl library to be +available. Change the path in "load.lisp" to point to the location of the +crypto library. + +Lobo has been tested on Allegro 6.2 running on Windows XP. The code requires +Allegro and will not run on other Common Lisp distributions due to the use of +Allegro specific sockets and synchronization mechanisms (locks). To load and +test the system: cl-user(1): (load "load.lisp") cl-user(2): (in-package lobo) @@ -26,7 +36,8 @@ DOCUMENTATION -See the user guide in the file USERGUIDE. +Obol and the ideas behind the language are described in a master thesis in the +file thesis.pdf. FOr examples of Obol code look in the prog directory. CHANGELOG

1 0