Refinement types for secure implementations

Jesper Bengtson; Karthikeyan Bhargavan; Cedric Fournet; Andrew D. Gordon; Sergio Maffeis

doi:10.1145/1890028.1890031

Refinement types for secure implementations

Jesper Bengtson, Karthikeyan Bhargavan, Cedric Fournet, Andrew D. Gordon, Sergio Maffeis

Research output: Contribution to journal › Article › peer-review

Abstract

We present the design and implementation of a typechecker for verifying security properties of the source code of cryptographic protocols and access control mechanisms. The underlying type theory is a λ-calculus equipped with refinement types for expressing pre- and post-conditions within first-order logic. We derive formal cryptographic primitives and represent active adversaries within the type theory. Well-typed programs enjoy assertion-based security properties, with respect to a realistic threat model including key compromise. The implementation amounts to an enhanced typechecker for the general-purpose functional language F^# typechecking generates verification conditions that are passed to an SMT solver. We describe a series of checked examples. This is the first tool to verify authentication properties of cryptographic protocols by typechecking their source code.

Original language	English
Article number	8
Pages (from-to)	1-45
Number of pages	45
Journal	ACM Letters on Programming Languages and Systems
Volume	33
Issue number	2
DOIs	https://doi.org/10.1145/1890028.1890031
Publication status	Published - 1 Feb 2011

Access to Document

10.1145/1890028.1890031

http://dl.acm.org/citation.cfm?doid=1890028.1890031

Cite this

@article{2e465453a7de4c3f81b5e1df3bb40ca0,

title = "Refinement types for secure implementations",

abstract = "We present the design and implementation of a typechecker for verifying security properties of the source code of cryptographic protocols and access control mechanisms. The underlying type theory is a λ-calculus equipped with refinement types for expressing pre- and post-conditions within first-order logic. We derive formal cryptographic primitives and represent active adversaries within the type theory. Well-typed programs enjoy assertion-based security properties, with respect to a realistic threat model including key compromise. The implementation amounts to an enhanced typechecker for the general-purpose functional language F# typechecking generates verification conditions that are passed to an SMT solver. We describe a series of checked examples. This is the first tool to verify authentication properties of cryptographic protocols by typechecking their source code.",

author = "Jesper Bengtson and Karthikeyan Bhargavan and Cedric Fournet and Gordon, {Andrew D.} and Sergio Maffeis",

year = "2011",

month = feb,

day = "1",

doi = "10.1145/1890028.1890031",

language = "English",

volume = "33",

pages = "1--45",

journal = "ACM Letters on Programming Languages and Systems",

issn = "0164-0925",

publisher = "Association for Computing Machinery (ACM)",

number = "2",

}

TY - JOUR

T1 - Refinement types for secure implementations

AU - Bengtson, Jesper

AU - Bhargavan, Karthikeyan

AU - Fournet, Cedric

AU - Gordon, Andrew D.

AU - Maffeis, Sergio

PY - 2011/2/1

Y1 - 2011/2/1

N2 - We present the design and implementation of a typechecker for verifying security properties of the source code of cryptographic protocols and access control mechanisms. The underlying type theory is a λ-calculus equipped with refinement types for expressing pre- and post-conditions within first-order logic. We derive formal cryptographic primitives and represent active adversaries within the type theory. Well-typed programs enjoy assertion-based security properties, with respect to a realistic threat model including key compromise. The implementation amounts to an enhanced typechecker for the general-purpose functional language F# typechecking generates verification conditions that are passed to an SMT solver. We describe a series of checked examples. This is the first tool to verify authentication properties of cryptographic protocols by typechecking their source code.

AB - We present the design and implementation of a typechecker for verifying security properties of the source code of cryptographic protocols and access control mechanisms. The underlying type theory is a λ-calculus equipped with refinement types for expressing pre- and post-conditions within first-order logic. We derive formal cryptographic primitives and represent active adversaries within the type theory. Well-typed programs enjoy assertion-based security properties, with respect to a realistic threat model including key compromise. The implementation amounts to an enhanced typechecker for the general-purpose functional language F# typechecking generates verification conditions that are passed to an SMT solver. We describe a series of checked examples. This is the first tool to verify authentication properties of cryptographic protocols by typechecking their source code.

UR - http://www.scopus.com/inward/record.url?scp=79951546693&partnerID=8YFLogxK

U2 - 10.1145/1890028.1890031

DO - 10.1145/1890028.1890031

M3 - Article

SN - 0164-0925

VL - 33

SP - 1

EP - 45

JO - ACM Letters on Programming Languages and Systems

JF - ACM Letters on Programming Languages and Systems

IS - 2

M1 - 8

ER -

Refinement types for secure implementations

Abstract

Access to Document

Other files and links

Fingerprint

Cite this