Modular Black-box Runtime Verification of Security Protocols

Morio, Kevin and Jackson, Dennis and Vassena, Marco and Künnemann, Robert
(2020) Modular Black-box Runtime Verification of Security Protocols.
In: PLAS 2020.
Conference: PLAS Workshop on Programming Languages and Analysis for Security

[img]
Preview
 Text
main.pdf
Download (525kB) | Preview

Abstract

Verification techniques have been applied to the design of secure protocols for decades. However, relatively few efforts have been made to ensure that verified designs are also implemented securely. Static code verification techniques offer one way to bridge the verification gap between design and implementation, but require substantial expertise and manual labor to realize in practice. In this short paper, we propose black-box runtime verification as an alternative approach to extend the security guarantees of protocol designs to their implementations. Instead of instrumenting the complete protocol implementation, our approach only requires instrumenting common cryptographic libraries and network interfaces with a runtime monitor that is automatically synthesized from the protocol specification. This lightweight technique allows the effort for instrumentation to be shared among different protocols and ensures security with presumably minimal performance overhead.

Item Type: Conference or Workshop Item (A Paper) (Paper)
Additional Information: short paper, accepted
Conference: PLAS Workshop on Programming Languages and Analysis for Security
Depositing User: Robert Künnemann
Date Deposited: 01 Dec 2020 11:13
Last Modified: 13 Oct 2022 08:34
Primary Research Area: NRA2: Reliable Security Guarantees
URI: https://publications.cispa.saarland/id/eprint/3309

Actions

Actions (login required)

View Item View Item
CISPA is powered by EPrints 3 which is developed by the School of Electronics and Computer Science at the University of Southampton. More information and software credits.