Skip to Main content Skip to Navigation
New interface
Journal articles

Formally-Based Semi-Automatic Implementation of an Open Security Protocol

Abstract : This paper presents an experiment in which an implementation of the client side of the SSH Transport Layer Protocol (SSH-TLP) was semi-automatically derived according to a model-driven development paradigm that leverages formal methods in order to obtain high correctness assurance. The approach used in the experiment starts with the formalization of the protocol at an abstract level. This model is then formally proved to fulfill the desired secrecy and authentication properties by using the ProVerif prover. Finally, a sound Java implementation is semi-automatically derived from the verified model using an enhanced version of the Spi2Java framework. The resulting implementation correctly interoperates with third party servers, and its execution time is comparable with that of other manually developed Java SSH-TLP client implementations. This case study demonstrates that the adopted model-driven approach is viable even for a real security protocol, despite the complexity of the models needed in order to achieve an interoperable implementation.
Document type :
Journal articles
Complete list of metadata
Contributor : Ben Smyth Connect in order to contact the contributor
Submitted on : Wednesday, September 18, 2013 - 5:37:55 PM
Last modification on : Friday, January 21, 2022 - 3:19:26 AM

Links full text




Alfredo Pironti, Davide Pozza, Riccardo Sisto. Formally-Based Semi-Automatic Implementation of an Open Security Protocol. Journal of Systems and Software, 2012, 85 (4), pp.835-849. ⟨10.1016/j.jss.2011.10.052⟩. ⟨hal-00863391⟩



Record views