Formally-Based Semi-Automatic Implementation of an Open Security Protocol

Abstract : This paper presents an experiment in which an implementation of the client side of the SSH Transport Layer Protocol (SSH-TLP) was semi-automatically derived according to a model-driven development paradigm that leverages formal methods in order to obtain high correctness assurance. The approach used in the experiment starts with the formalization of the protocol at an abstract level. This model is then formally proved to fulfill the desired secrecy and authentication properties by using the ProVerif prover. Finally, a sound Java implementation is semi-automatically derived from the verified model using an enhanced version of the Spi2Java framework. The resulting implementation correctly interoperates with third party servers, and its execution time is comparable with that of other manually developed Java SSH-TLP client implementations. This case study demonstrates that the adopted model-driven approach is viable even for a real security protocol, despite the complexity of the models needed in order to achieve an interoperable implementation.
Type de document :
Article dans une revue
Journal of Systems and Software, Elsevier, 2012, 85 (4), pp.835-849. 〈10.1016/j.jss.2011.10.052〉
Liste complète des métadonnées

https://hal.inria.fr/hal-00863391
Contributeur : Ben Smyth <>
Soumis le : mercredi 18 septembre 2013 - 17:37:55
Dernière modification le : vendredi 25 mai 2018 - 12:02:06

Lien texte intégral

Identifiants

Collections

Citation

Alfredo Pironti, Davide Pozza, Riccardo Sisto. Formally-Based Semi-Automatic Implementation of an Open Security Protocol. Journal of Systems and Software, Elsevier, 2012, 85 (4), pp.835-849. 〈10.1016/j.jss.2011.10.052〉. 〈hal-00863391〉

Partager

Métriques

Consultations de la notice

110