abstract

Verifpal: Cryptographic Protocol Analysis for the Real World

Authors:

Nadim Kobeissi,

Georgio Nicolas,

Mukesh TiwariAuthors Info & Claims

CCSW'20: Proceedings of the 2020 ACM SIGSAC Conference on Cloud Computing Security Workshop

Page 159

https://doi.org/10.1145/3411495.3421365

Published: 09 November 2020 Publication History

Get Access

Abstract

Verifpal is a new automated modeling framework and verifier for cryptographic protocols, optimized with heuristics for common-case protocol specifications, that aims to work better for real-world practitioners, students and engineers without sacrificing comprehensive formal verification features. In order to achieve this, Verifpal introduces a new, intuitive language for modeling protocols that is easier to write and understand than the languages employed by existing tools. Its formal verification paradigm is also designed explicitly to provide protocol modeling that avoids user error.

Verifpal is able to model protocols under an active attacker with unbounded sessions and fresh values, and supports queries for advanced security properties such as forward secrecy or key compromise impersonation. Furthermore, Verifpal's semantics have been formalized within the Coq theorem prover, and Verifpal models can be automatically translated into Coq as well as into ProVerif models for further verification. Verifpal has already been used to verify security properties for Signal, Scuttlebutt, TLS 1.3 as well as the first formal model for the DP-3T pandemic-tracing protocol, which we present in this work. Through Verifpal, we show that advanced verification with formalized semantics and sound logic can exist without any expense towards the convenience of real-world practitioners.

Reference

[1]

Manuel Barbosa, Gilles Barthe, Karthik Bhargavan, Bruno Blanchet, Cas Cremers, Kevin Liao, and Bryan Parno. [n.d.]. SoK: Computer-Aided Cryptography. ([n.,d.]).

Google Scholar

Cited By

View all

Minwalla CPlusquellic JTsiropoulou E(2024)Lightweight Mutually Authenticated Key Exchange with Physical Unclonable FunctionsCryptography10.3390/cryptography80400468:4(46)Online publication date: 19-Oct-2024
https://doi.org/10.3390/cryptography8040046
Yaksetig M(2024)Extremely Simple Fail-Stop ECDSA SignaturesApplied Cryptography and Network Security Workshops10.1007/978-3-031-61489-7_20(230-234)Online publication date: 29-Jun-2024
https://doi.org/10.1007/978-3-031-61489-7_20
Duttagupta SMarin ESingelée DPreneel BShehab MFernandez MLi N(2023)HAT: Secure and Practical Key Establishment for Implantable Medical DevicesProceedings of the Thirteenth ACM Conference on Data and Application Security and Privacy10.1145/3577923.3583646(213-224)Online publication date: 24-Apr-2023
https://dl.acm.org/doi/10.1145/3577923.3583646
Show More Cited By

Index Terms

Verifpal: Cryptographic Protocol Analysis for the Real World
1. Security and privacy
  1. Formal methods and theory of security
    1. Formal security models
    2. Logic and verification

Recommendations

Verification Method of Key-Exchange Protocols With a Small Amount of Input Using Tamarin Prover
ASSS '21: Proceedings of the 2021 International Symposium on Advanced Security on Software and Systems

We propose an automatic verification method for cryptographic protocols. Our method can verify whether or not the key-exchange protocol satisfies main security properties, requiring only the protocol specification as its input. The specification ...
Using temporal logic to specify and verify cryptographic protocols
CSFW '95: Proceedings of the 8th IEEE workshop on Computer Security Foundations

We use standard linear-time temporal logic to specify cryptographic protocols, model the system penetrator, and specify correctness requirements. The requirements are specified as standard safety properties, for which standard proof techniques apply. In ...
Resource Fairness and Composability of Cryptographic Protocols

We introduce the notion of resource-fair protocols. Informally, this property states that if one party learns the output of the protocol, then so can all other parties, as long as they expend roughly the same amount of resources. As opposed to ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

CCSW'20: Proceedings of the 2020 ACM SIGSAC Conference on Cloud Computing Security Workshop

November 2020

176 pages

ISBN:9781450380843

DOI:10.1145/3411495

Program Chairs:
Yinqian Zhang
The Ohio State University, USA
,
Radu Sion
Stony Brook University, USA

Permission to make digital or hard copies of part or all of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for third-party components of this work must be honored. For all other uses, contact the Owner/Author.

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 09 November 2020

Check for updates

Author Tags

Qualifiers

Abstract

Funding Sources

NLnet Foundation

Conference

CCS '20

Sponsor:

SIGSAC

CCS '20: 2020 ACM SIGSAC Conference on Computer and Communications Security

November 9, 2020

Virtual Event, USA

Acceptance Rates

Overall Acceptance Rate 37 of 108 submissions, 34%

Upcoming Conference

CCS '25

Sponsor:
sigsac

ACM SIGSAC Conference on Computer and Communications Security

October 13 - 17, 2025

Taipei , Taiwan

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

14
Total Citations
View Citations
75
Total Downloads

Downloads (Last 12 months)7
Downloads (Last 6 weeks)2

Reflects downloads up to 19 Nov 2024

Other Metrics

View Author Metrics

Citations

Cited By

View all

Minwalla CPlusquellic JTsiropoulou E(2024)Lightweight Mutually Authenticated Key Exchange with Physical Unclonable FunctionsCryptography10.3390/cryptography80400468:4(46)Online publication date: 19-Oct-2024
https://doi.org/10.3390/cryptography8040046
Yaksetig M(2024)Extremely Simple Fail-Stop ECDSA SignaturesApplied Cryptography and Network Security Workshops10.1007/978-3-031-61489-7_20(230-234)Online publication date: 29-Jun-2024
https://doi.org/10.1007/978-3-031-61489-7_20
Duttagupta SMarin ESingelée DPreneel BShehab MFernandez MLi N(2023)HAT: Secure and Practical Key Establishment for Implantable Medical DevicesProceedings of the Thirteenth ACM Conference on Data and Application Security and Privacy10.1145/3577923.3583646(213-224)Online publication date: 24-Apr-2023
https://dl.acm.org/doi/10.1145/3577923.3583646
Brugger LKovács LPetkovic Komel ARain SRawson MMeng WJensen CCremers CKirda E(2023)CheckMate: Automated Game-Theoretic Security ReasoningProceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security10.1145/3576915.3623183(1407-1421)Online publication date: 15-Nov-2023
https://dl.acm.org/doi/10.1145/3576915.3623183
Rao SBakas ABoureanu ISchneider SReaves BTippenhauer N(2023)Authenticating Mobile Users to Public Internet Commodity Services Using SIM TechnologyProceedings of the 16th ACM Conference on Security and Privacy in Wireless and Mobile Networks10.1145/3558482.3590181(151-162)Online publication date: 29-May-2023
https://dl.acm.org/doi/10.1145/3558482.3590181
Basem OUllah AHassen H(2023)Stick: An End-to-End Encryption Protocol Tailored for Social Network PlatformsIEEE Transactions on Dependable and Secure Computing10.1109/TDSC.2022.315225620:2(1258-1269)Online publication date: 1-Mar-2023
https://doi.org/10.1109/TDSC.2022.3152256
Nakkar MAlTawy RYoussef A(2023)GASE: A Lightweight Group Authentication Scheme With Key Agreement for Edge Computing ApplicationsIEEE Internet of Things Journal10.1109/JIOT.2022.320433510:1(840-854)Online publication date: 1-Jan-2023
https://doi.org/10.1109/JIOT.2022.3204335
Mieno TOkazaki HArai KFuta Y(2023)Formal Verification of Authenticated Encryption with Associated Data with Tamarin Prover2023 Congress in Computer Science, Computer Engineering, & Applied Computing (CSCE)10.1109/CSCE60160.2023.00397(2465-2471)Online publication date: 24-Jul-2023
https://doi.org/10.1109/CSCE60160.2023.00397
Chaum DLarangeira MYaksetig M(2023)WOTSwana: A Generalized $$\mathcal {S}_{\text{ leeve }}$$ Construction for Multiple Proofs of OwnershipInformation Security and Cryptology – ICISC 202210.1007/978-3-031-29371-9_24(491-511)Online publication date: 31-Mar-2023
https://doi.org/10.1007/978-3-031-29371-9_24
Chaum DLarangeira MYaksetig M(2023)Tweakable $$\mathcal {S}_{\text{ leeve }}$$: A Novel $$\mathcal {S}_{\text{ leeve }}$$ Construction Based on Tweakable Hash FunctionsMathematical Research for Blockchain Economy10.1007/978-3-031-18679-0_10(169-186)Online publication date: 19-Feb-2023
https://doi.org/10.1007/978-3-031-18679-0_10
Show More Cited By

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Cited By

Index Terms

Recommendations

Verification Method of Key-Exchange Protocols With a Small Amount of Input Using Tamarin Prover

Using temporal logic to specify and verify cryptographic protocols

Resource Fairness and Composability of Cryptographic Protocols