Details

Autor(en) / Beteiligte

• Fournet, Cédric
• Bhargavan, Karthikeyan
• Gordon, Andrew D.

Titel

Cryptographic Verification by Typing for a Sample Protocol Implementation

Ist Teil von

• Cryptographic Verification by Typing for a Sample Protocol Implementation, 2011, Vol.6858, p.66-100

Ort / Verlag

Berlin, Heidelberg: Springer Berlin Heidelberg

Erscheinungsjahr

2011

Link zum Volltext

Quelle

Alma/SFX Local Collection

Beschreibungen/Notizen

• Type systems are effective tools for verifying the security of cryptographic protocols and implementations. They provide automation, modularity and scalability, and have been applied to large protocols. In this tutorial, we illustrate the use of types for verifying authenticity properties, first using a symbolic model of cryptography, then relying on a concrete computational assumption. We introduce refinement types (that is, types carrying formulas to record invariants) for programs written in F# and verified by F7, an SMT-based type checker.We describe a sample authenticated RPC protocol, we implement it in F#, and we specify its security against active adversaries.We develop a sample symbolic library, we present its main cryptographic invariants, and we show that our RPC implementation is perfectly secure when linked to this symbolic library.We implement the same library using concrete cryptographic primitives, we make a standard computational assumption, and we show that our RPC implementation is also secure with overwhelming probability when linked to this concrete library.