Verifying implementations of security protocols by refinement

Authors:
Nadia Polikarpova;Michał Moskal
Affiliations:
Chair of Software Engineering, ETH Zurich, Switzerland;Microsoft Research, Redmond
Venue:
VSTTE'12 Proceedings of the 4th international conference on Verified Software: theories, tools, experiments
Year:
2012

Citing 10
Cited 2

Refinement, Decomposition, and Instantiation of Discrete Models: Application to Event-B

Fundamenta Informaticae - This is a SPECIAL ISSUE ON ASM'05
KeY-C: A Tool for Verification of C Programs

CADE-21 Proceedings of the 21st international conference on Automated Deduction: Automated Deduction
ASPIER: An Automated Framework for Verifying Security Protocol Implementations

CSF '09 Proceedings of the 2009 22nd IEEE Computer Security Foundations Symposium
VCC: A Practical System for Verifying Concurrent C

TPHOLs '09 Proceedings of the 22nd International Conference on Theorem Proving in Higher Order Logics
Modular verification of security protocol code by typing

Proceedings of the 37th annual ACM SIGPLAN-SIGACT symposium on Principles of programming languages
Z3: an efficient SMT solver

TACAS'08/ETAPS'08 Proceedings of the Theory and practice of software, 14th international conference on Tools and algorithms for the construction and analysis of systems
Developing security protocols by refinement

Proceedings of the 17th ACM conference on Computer and communications security
Guiding a General-Purpose C Verifier to Prove Cryptographic Protocols

CSF '11 Proceedings of the 2011 IEEE 24th Computer Security Foundations Symposium
Boogie: a modular reusable verifier for object-oriented programs

FMCO'05 Proceedings of the 4th international conference on Formal Methods for Components and Objects
Cryptographic protocol analysis on real c code

VMCAI'05 Proceedings of the 6th international conference on Verification, Model Checking, and Abstract Interpretation

Verifying cryptographic code in c: some experience and the csec challenge

FAST'11 Proceedings of the 8th international conference on Formal Aspects of Security and Trust
Computational verification of C protocol implementations by symbolic execution

Proceedings of the 2012 ACM conference on Computer and communications security

Quantified Score

Hi-index	0.00

Visualization

Abstract

We propose a technique for verifying high-level security properties of cryptographic protocol implementations based on stepwise refinement. Our refinement strategy supports reasoning about abstract protocol descriptions in the symbolic model of cryptography and gradually concretizing them towards executable code. We have implemented the technique within a general-purpose program verifier VCC and applied it to an extract from a draft reference implementation of Trusted Platform Module, written in C.