Towards Producing Formally Checkable Security Proofs, Automatically

CC
CSF
2008
2008 21st IEEE Computer Security Foundations Symposium
Abstract - Towards Producing Formally Checkable Security Proofs, Automatically

	This Article
	Subscribers, please Login Purchase article: $19 PDF RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Jean Goubault-Larrecq

2008 21st IEEE Computer Security Foundations Symposium

June 23-June 25

ISBN: 978-0-7695-3182-3

	ASCII Text	x
	Jean Goubault-Larrecq, "Towards Producing Formally Checkable Security Proofs, Automatically," Computer Security Foundations Symposium, IEEE, pp. 224-238, 2008 21st IEEE Computer Security Foundations Symposium, 2008.

	BibTex	x
	@article{ 10.1109/CSF.2008.21, author = {Jean Goubault-Larrecq}, title = {Towards Producing Formally Checkable Security Proofs, Automatically}, journal ={Computer Security Foundations Symposium, IEEE}, volume = {0}, year = {2008}, isbn = {978-0-7695-3182-3}, pages = {224-238}, doi = {http://doi.ieeecomputersociety.org/10.1109/CSF.2008.21}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computer Security Foundations Symposium, IEEE TI - Towards Producing Formally Checkable Security Proofs, Automatically SN - 978-0-7695-3182-3 SP224 EP238 A1 - Jean Goubault-Larrecq, PY - 2008 KW - security KW - Dolev-Yao model KW - proofs KW - first-order logic KW - tree automata KW - model-checking KW - Paradox KW - h1 KW - Coq VL - 0 JA - Computer Security Foundations Symposium, IEEE ER -

Jean Goubault-Larrecq

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/CSF.2008.21

First-order logic models of security for cryptographic protocols, based on variants of the Dolev-Yao model, are now well-established tools. Given that we have checked a given security protocol pi using a given first-order prover, how hard is it to extract a formally checkable proof of it, as required in, e.g., common criteria at evaluation level 7? We demonstrate that this is surprisingly hard: the problem is non-recursive in general. On the practical side, we show how we can extract finite models M from a set S of clauses representing pi, automatically, in two ways. We then define a model-checker testing M |= S, and show how we can instrument it to output a formally checkable proof, e.g., in Coq. This was implemented in the h1 tool suite. Experience on a number of protocols shows that this is practical.

Index Terms:

security, Dolev-Yao model, proofs, first-order logic, tree automata, model-checking, Paradox, h1, Coq

Citation:

Jean Goubault-Larrecq, "Towards Producing Formally Checkable Security Proofs, Automatically," csf, pp.224-238, 2008 21st IEEE Computer Security Foundations Symposium, 2008

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.