How to install SPAN?

07 April 2014 Written by Luis Sequeira

in Tools

8 comments

font size

Rate this item

(0 votes)

Security Protocol Animator (SPAN) is a free tool to check cryptographic protocols that helps in searching and characterization of attacks. The main advantage of this application is that allows different verification techniques using a same protocol. We can say, it is a graphical interface for managing HLPSL (High-Level Protocol Specification Language) and CAS + (an implementation of the Protocol Central Authentication), which allows the translation between these languages and also provides a friendly graphical user interface. SPAN helps to produce interactively sequences messages or MSC (Message Sequence Charts).

This tool is used for simulating cryptographic protocol, allows active or passive intruder simulation, the automatic attack's construction of the designed protocols. The protocol can be edited by means of HLPSL or CAS+, having the ability to convert between these languages. Some features of the graphical user interface are shown in Figure # 1.

Figure # 1: SPAN GUI description.

SPAN can be used in three different modes:

Protocol simulator: it can simulate by MSC from a HLPSL code.
Intrusion simulator: simulates a protocol with a passive or active attacker.
Attack simulator: from outputs of OFMC or CL-ATSE (other tools from AVISPA project).

Installation

Installation is very simple, for Linux and Mac users only need to have installed Tcl/Tk 8.5, then download SPAN software from here and unzip it (for example: /usr/bob/span). Finally, we define two environment variables: SPAN and AVISPA_PACKAGE, for this, open a terminal and type:

export SPAN=/usr/bob/span
export AVISPA_PACKAGE=/usr/bob/span

Taking into account that /usr/bob/span is the path where you unzipped SPAN. The program runs as any other script, we should write in a terminal:

./span

If we unzipped SPAN in a folder in your user directory, for example /home/myuser/span/, so, every time you start your machine will have to perform the above procedure. To avoid this, we can make a simple little bash script, for this, create a text file called "start", we can do it with any text editor like gedit or kate, or via command line with vi or nano. On the command line, open a terminal and headed to the path where you have unpacked SPAN (/home/myuser/span/), and write:

cd /home/myuser/span/ # go to the folder
nano start # it creates a file called start

Then, we write into the file the following:

#! /bin/bash
export SPAN=/home/myuser/span/
export AVISPA_PACKAGE=/home/myuser/span/
./span
exit

To exit from the text editor press CTRL+X and the editor will ask if you want to save the changes, we answer yes. Now all that remains is to give execute permission to the file, then we write:

chmod +x start

Tested by typing:

./start

And ready!

References

Y. Glouche, T. Genet, O. Heen and O. Courtay A Security Protocol Animator Tool for AVISPA. In ARTIST2 Workshop on Security Specification and Verification of Embedded Systems , pp. 15, Pisa, May 2006.
http://www.irisa.fr/celtique/genet/span/

7045 Last modified on Tuesday, 15 October 2019 21:36

Luis Sequeira

Luis Sequeira is an IT professional with experience in cloud environments, quality of service and network traffic analysis, who loves looking for solutions to engineering challenges, share knowledge. At work, the main challenge is to integrate different network and software technologies to provide solution in a wide range of areas, e.g., virtual network functions, machine learning, autonomous driving, robotics and augmented reality.

Website: https://www.luissequeira.com

Latest from Luis Sequeira

8 comments

Comment Link
Amina 24 March 2015, 14:21

Hello;

I install span by following your tutorial. However, only OFMC and ATCE modes work, but SATMC and TA4SP modes do not work!
please, is there a way to run this two other modes;

Thank you to answer me.
Best regards!

Amina.
Comment Link
Amina 24 March 2015, 14:24

Hello;

I install span by following your tutorial. However, only OFMC and ATCE modes work, but SATMC and TA4SP modes do not work!
please, is there a way to run this two other modes;

Thank you to answer me.
Best regards!

Amina.
Comment Link
Amina 24 March 2015, 14:25

Hello;

I install span by following your tutorial. However, only OFMC and ATCE modes work, but SATMC and TA4SP modes do not work!
please, is there a way to run this two other modes;

Thank you to answer me.
Best regards!

Amina.
Comment Link
Sequeira 02 April 2015, 12:25

Strange issue. Maybe this can help:

Alessandro Armando and Luca Compagna. An optimized intruder model for sat-based
model-checking of security protocols. Electr. Notes Theor. Comput. Sci., 125(1):91–108,
2005.

Y. Boichut, P.-C. Héam, and O. Kouchnarenko. Automatic Approximation for the Veri-
fication of Cryptographic Protocols. In Proc. AVIS’2004, joint to ETAPS’04, Barcelona
(Spain), 2004.
Comment Link
Minuman berenergi 14 May 2015, 17:37

Pretty nice post. I just stumbled upon your weblog and wanted to say that I've truly enjoyed surfing around your blog posts.
In any case I will be subscribing to your feed and I
hope you write again very soon!
Comment Link
cheap Social signals 22 June 2015, 18:52

When someone writes an piece of writing he/she keeps the image of a
useer inn his/her bain that how a user can be aware of it.Thhus that's why this paragraph is outstdanding.
Thanks!
Comment Link
Milagros 15 July 2015, 10:36

I was recommended this blog through my cousin. I am not certain whether or not this post is written by
means of him as no one else know such distinctive about
my trouble. You are wonderful! Thank you!
Comment Link
cheque printing software 23 February 2016, 14:07

Hi there, just became alert to your blog through Google, and found that
it is truly informative. I'm gonna watch out for brussels.
I'll be grateful if you continue this in future.
A lot of people will be benefited from your writing.
Cheers!