Automatic Verification of Correspondences for Security Protocols
Bruno Blanchet
TL;DR
This paper introduces an automatic, efficient method for verifying correspondences in security protocols, capable of handling multiple sessions and complex cryptographic primitives, demonstrated by rapid verification of existing protocols.
Contribution
It extends previous secrecy verification techniques to include automatic correspondence verification for security protocols with arbitrary cryptographic primitives.
Findings
Protocols verified in less than 1 second
Handles unbounded sessions and complex primitives
Proven correct and implemented in practice
Abstract
We present a new technique for verifying correspondences in security protocols. In particular, correspondences can be used to formalize authentication. Our technique is fully automatic, it can handle an unbounded number of sessions of the protocol, and it is efficient in practice. It significantly extends a previous technique for the verification of secrecy. The protocol is represented in an extension of the pi calculus with fairly arbitrary cryptographic primitives. This protocol representation includes the specification of the correspondence to be verified, but no other annotation. This representation is then translated into an abstract representation by Horn clauses, which is used to prove the desired correspondence. Our technique has been proved correct and implemented. We have tested it on various protocols from the literature. The experimental results show that these protocols can…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsAdvanced Authentication Protocols Security · User Authentication and Security Systems · Cryptographic Implementations and Security