Please use this identifier to cite or link to this item:
http://repositorio.inesctec.pt/handle/123456789/4734
Title: | CAOVerif: An open-source deductive verification platform for cryptographic software implementations |
Authors: | José Bacelar Almeida Manuel Barbosa Filliatre,JC Jorge Sousa Pinto Vieira,B |
Issue Date: | 2014 |
Abstract: | CAO is a domain-specific imperative language for cryptography, offering a rich mathematical type system and crypto-oriented language constructions. We describe the design and implementation of a deductive verification platform for CAO and demonstrate that the development time of such a complex verification tool could be greatly reduced by building on the Jessie plug-in included in the Frama-C framework. We discuss the interesting challenges raised by the domain-specific characteristics of CAO, and describe how we tackle these problems in our design. We base our presentation on real-world examples of CAO code, extracted from the open-source code of the NaCl cryptographic library, and illustrate how various cryptography-relevant security properties can be verified. |
URI: | http://repositorio.inesctec.pt/handle/123456789/4734 http://dx.doi.org/10.1016/j.scico.2012.09.019 |
metadata.dc.type: | article Publication |
Appears in Collections: | HASLab - Articles in International Journals |
Files in This Item:
File | Description | Size | Format | |
---|---|---|---|---|
P-008-Y45.pdf | 487.26 kB | Adobe PDF | View/Open |
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.