TY - GEN
T1 - Verifying the Communication and Security Mechanisms of WAMP
AU - Bao, Han
AU - Wang, Chenhui
AU - Zhu, Huibiao
N1 - Publisher Copyright:
© 2025 Knowledge Systems Institute Graduate School. All rights reserved.
PY - 2025
Y1 - 2025
N2 - The Web Application Messaging Protocol (WAMP) is a routed protocol designed to connect components in distributed applications through Publish/Subscribe and Remote Procedure Call messaging patterns. It defines a Basic Profile for core interactions and an Advanced Profile to extend its functionality. With its flexibility, scalability, and ability to support various communication patterns, WAMP has gained significant attention in distributed systems. However, existing studies on the communication and security properties of WAMP remain limited. In this paper, we employ the Communicating Sequential Processes (CSP) to model the two patterns of WAMP formally and verify several properties using Process Analysis Toolkit (PAT), including deadlock-freedom, data reachability, concurrency and ordering consistency. Verification results confirm that the model satisfies these properties, ensuring the reliability of interactions under various scenarios. Furthermore, by incorporating an intruder model and WAMP’s optional authentication mechanisms from the Advanced Profile, we demonstrate improved security guarantees.
AB - The Web Application Messaging Protocol (WAMP) is a routed protocol designed to connect components in distributed applications through Publish/Subscribe and Remote Procedure Call messaging patterns. It defines a Basic Profile for core interactions and an Advanced Profile to extend its functionality. With its flexibility, scalability, and ability to support various communication patterns, WAMP has gained significant attention in distributed systems. However, existing studies on the communication and security properties of WAMP remain limited. In this paper, we employ the Communicating Sequential Processes (CSP) to model the two patterns of WAMP formally and verify several properties using Process Analysis Toolkit (PAT), including deadlock-freedom, data reachability, concurrency and ordering consistency. Verification results confirm that the model satisfies these properties, ensuring the reliability of interactions under various scenarios. Furthermore, by incorporating an intruder model and WAMP’s optional authentication mechanisms from the Advanced Profile, we demonstrate improved security guarantees.
KW - Communicating Sequential Processes (CSP)
KW - Modeling
KW - Security
KW - Verification
KW - WAMP
UR - https://www.scopus.com/pages/publications/105018745062
U2 - 10.18293/SEKE2025-048
DO - 10.18293/SEKE2025-048
M3 - 会议稿件
AN - SCOPUS:105018745062
T3 - Proceedings of the International Conference on Software Engineering and Knowledge Engineering, SEKE
SP - 165
EP - 170
BT - Proceedings - SEKE 2025
PB - Knowledge Systems Institute Graduate School
T2 - 37th International Conference on Software Engineering and Knowledge Engineering, SEKE 2025
Y2 - 29 September 2025 through 4 October 2025
ER -