Verification of Mondex electronic purses with KIV: from transactions to a security protocol

Authors:
Dominik Haneberg;Gerhard Schellhorn;Holger Grandy;Wolfgang Reif
Affiliations:
Universität Augsburg, Lehrstuhl für Softwaretechnik und Programmiersprachen, D-86135, Augsburg, Germany;Universität Augsburg, Lehrstuhl für Softwaretechnik und Programmiersprachen, D-86135, Augsburg, Germany;Universität Augsburg, Lehrstuhl für Softwaretechnik und Programmiersprachen, D-86135, Augsburg, Germany;Universität Augsburg, Lehrstuhl für Softwaretechnik und Programmiersprachen, D-86135, Augsburg, Germany
Venue:
Formal Aspects of Computing
Year:
2007

Citing 0
Cited 12

Full functional verification of linked data structures

Proceedings of the 2008 ACM SIGPLAN conference on Programming language design and implementation
Verification of Mondex Electronic Purses with KIV: From a Security Protocol to Verified Code

FM '08 Proceedings of the 15th international symposium on Formal Methods
Refinement of State-Based Systems: ASMs and Big Commuting Diagrams (Abstract)

ABZ '08 Proceedings of the 1st international conference on Abstract State Machines, B and Z
A Concept-Driven Construction of the Mondex Protocol Using Three Refinements

ABZ '08 Proceedings of the 1st international conference on Abstract State Machines, B and Z
Incremental Benchmarks for Software Verification Tools and Techniques

VSTTE '08 Proceedings of the 2nd international conference on Verified Software: Theories, Tools, Experiments
Formal methods: Practice and experience

ACM Computing Surveys (CSUR)
Generating formal specifications for security-critical applications - A model-driven approach

IWSESS '09 Proceedings of the 2009 ICSE Workshop on Software Engineering for Secure Systems
Abstract Specification of the UBIFS File System for Flash Memory

FM '09 Proceedings of the 2nd World Congress on Formal Methods
A refinement method for Java programs

FMOODS'07 Proceedings of the 9th IFIP WG 6.1 international conference on Formal methods for open object-based distributed systems
Analyzing a formal specification of Mondex using model checking

ICTAC'10 Proceedings of the 7th International colloquium conference on Theoretical aspects of computing
Ambient Abstract State Machines with applications

Journal of Computer and System Sciences
A systematic verification approach for mondex electronic purses using ASMs

Rigorous Methods for Software Construction and Analysis

Quantified Score

Hi-index	0.00

Visualization

Abstract

The Mondex case study about the specification and refinement of an electronic purse as defined in the Oxford Technical Monograph PRG-126 has recently been proposed as a challenge for formal system-supported verification. In this paper we report on two results. First, on the successful verification of the full case study using the KIV specification and verification system. We demonstrate that even though the hand-made proofs were elaborated to an enormous level of detail we still could find small errors in the underlying data refinement theory, as well as the formal proofs of the case study. Second, the original Mondex case study verifies functional correctness assuming a suitable security protocol. We extend the case study here with a refinement to a suitable security protocol that uses symmetric cryptography to achieve the necessary properties of the security-relevant messages. The definition is based on a generic framework for defining such protocols based on abstract state machines (ASMs). We prove the refinement using a forward simulation.