CadeBlanchetJCS14
Bruno Blanchet
Back to publications
David Cadé and Bruno Blanchet.
Proved Generation of Implementations from Computationally
Secure Protocol Specifications.
Journal of Computer Security, 23(3):331-402, 2015.
Get the paper
.pdf, 1110 Kb
Abstract
In order to obtain implementations of security protocols proved secure
in the computational model, we previously proposed the following approach:
we write a specification of the protocol in the input language of
the computational protocol verifier CryptoVerif, prove it secure using
CryptoVerif, then generate an OCaml implementation of the protocol from
the CryptoVerif specification using a specific compiler that we have
implemented.
However, until now, this compiler was
not proved correct, so we did not have real guarantees on the
generated implementation. In this paper, we fill this gap. We prove
that this compiler preserves the security properties proved by
CryptoVerif: if an adversary has probability p of breaking a
security property in the generated code, then there exists an adversary
that breaks the property with the same probability p in the
CryptoVerif specification. Therefore, if the protocol specification
is proved secure in the computational model by CryptoVerif, then the
generated implementation is also secure.
Bibtex
@ARTICLE{CadeBlanchetJCS14,
AUTHOR = {David Cad{\'e} and Bruno Blanchet},
TITLE = {Proved Generation of Implementations from Computationally Secure Protocol Specifications},
JOURNAL = {Journal of Computer Security},
YEAR = 2015,
VOLUME = 23,
NUMBER = 3,
PAGES = {331--402}
}
E-mail/Courrier électronique : Bruno.Blanchet@trap-inria.fr (remove trap-)