Refinement Types for Secure Implementations

Refinement Types for Secure Implementations

We present the design and implementation of a typechecker for verifying security properties of the source code of cryptographic protocols and access control mechanisms. The underlying type theory is a λ-calculus equipped with refinement types for expressing pre- and post-conditions within first-orde...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:ACM transactions on programming languages and systems 2011, Vol.33 (2), p.1-45
Hauptverfasser: BENGTSON, Jesper, BHARGAVAN, Karthikeyan, FOURNET, Cédric, GORDON, Andrew D, MAFFEIS, Sergio
Format: Artikel
Sprache:eng
Schlagworte:
Applied sciences
Computation and Language
Computer Science
Computer science
control theory
systems
Computer systems performance. Reliability
Cryptography
Cryptography and Security
Datavetenskap
Exact sciences and technology
Information technology
Information, signal and communications theory
Informationsteknik
Memory and file management (including protection and security)
Memory organisation. Data processing
Signal and communications theory
Software
TECHNOLOGY
TEKNIKVETENSKAP
Telecommunications and information theory
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:We present the design and implementation of a typechecker for verifying security properties of the source code of cryptographic protocols and access control mechanisms. The underlying type theory is a λ-calculus equipped with refinement types for expressing pre- and post-conditions within first-order logic. We derive formal cryptographic primitives and represent active adversaries within the type theory. Well-typed programs enjoy assertion-based security properties, with respect to a realistic threat model including key compromise. The implementation amounts to an enhanced typechecker for the general-purpose functional language F # ; typechecking generates verification conditions that are passed to an SMT solver. We describe a series of checked examples. This is the first tool to verify authentication properties of cryptographic protocols by typechecking their source code.
ISSN:0164-0925
1558-4593
1558-4593
DOI:10.1145/1890028.1890031