cPLC &amp;#x2014; A cryptographic programming language and compiler

Bangerter, Endre; Krenn, Stephan; Seifriz, Martial; Ultes-Nitsche, Ulrich

doi:10.1109/issa.2011.6027533

Cited by 2 publications

(3 citation statements)

References 22 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The use of specific programming languages is not standard practice in secure software development. On the other hand, experts, such as cryptologists, usually prefer their knowledge expressed in its own syntax by domain-specific languages [25][26][27] [28].…”

Section: Cryptographic Programming Languagesmentioning

confidence: 99%

“…cPLC [25] is a cryptographic Programming Language and Compiler for generating Java implementations of two-party cryptographic protocols, such as Diffie-Hellman. cPCL's input language is strongly inspired by the standard notation for specifying protocols and is, allegedly, the first tool which can be used by cryptographically untrained software engineers to obtain sound implementations of arbitrary two-party protocols, as well as by cryptographers who want to efficiently implement their protocols designed on paper.…”

Section: Cryptographic Programming Languagesmentioning

confidence: 99%

See 1 more Smart Citation

A Survey on Tools and Techniques for the Programming and Verification of Secure Cryptographic Software

Braga

Dahab

2015

Anais Do XV Simpósio Brasileiro De Segurança Da Informação E De Sistemas Computacionais (SBSeg 2015)

View full text Add to dashboard Cite

This paper contributes to broaden the discussion on tools and techniques in cryptographic programming and verification. The paper accomplishes three goals: (i) surveys recent advances in supporting tools for cryptographic software programming and verification; (ii) associates these tools to current security practices; and (iii) organizes their use into software programming and verification steps. The paper concludes that there is no single tool for secure development of cryptographic software. Instead, only a well-crafted toolkit can cover the whole landscape of secure cryptographic software coding and verification.

show abstract

Section: Cryptographic Programming Languagesmentioning

confidence: 99%

Section: Cryptographic Programming Languagesmentioning

confidence: 99%

A Survey on Tools and Techniques for the Programming and Verification of Secure Cryptographic Software

Braga

Dahab

2015

Anais Do XV Simpósio Brasileiro De Segurança Da Informação E De Sistemas Computacionais (SBSeg 2015)

View full text Add to dashboard Cite

show abstract

“…Besides tools for ZK-PoK, there exists a large variety of other domain specific compilers, including Fairplay [44] and VIFF [30] for generating implementations of secure twoparty computations. Also, generic cryptographic compilers o↵ering di↵erently abstract input languages have been proposed, e.g., [4,54,9,40]. However, none of these tools supports formal verification.…”

Section: Related Workmentioning

confidence: 99%

Full proof cryptography

Almeida

Barbosa

Bangerter

et al. 2012

Proceedings of the 2012 ACM Conference on Computer and Communications Security

Self Cite

View full text Add to dashboard Cite

Developers building cryptography into security-sensitive applications face a daunting task. Not only must they understand the security guarantees delivered by the constructions they choose, they must also implement and combine them correctly and e ciently.Cryptographic compilers free developers from having to implement cryptography on their own by turning high-level specifications of security goals into e cient implementations. Yet, trusting such tools is risky as they rely on complex mathematical machinery and claim security properties that are subtle and di cult to verify.In this paper, we present ZKCrypt, an optimizing cryptographic compiler that achieves an unprecedented level of assurance without sacrificing practicality for a comprehensive class of cryptographic protocols, known as Zero-Knowledge Proofs of Knowledge. The pipeline of ZKCrypt tightly integrates purpose-built verified compilers and verifying compilers producing formal proofs in the CertiCrypt framework. By combining the guarantees delivered by each stage in the pipeline, ZKCrypt provides assurance that the implementation it outputs securely realizes the high-level proof goal given as input. We report on the main characteristics of ZKCrypt, highlight new definitions and concepts at its foundations, and illustrate its applicability through a representative example of an anonymous credential system.

show abstract

cPLC — A cryptographic programming language and compiler

Cited by 2 publications

References 22 publications

A Survey on Tools and Techniques for the Programming and Verification of Secure Cryptographic Software

A Survey on Tools and Techniques for the Programming and Verification of Secure Cryptographic Software

Full proof cryptography

Contact Info

Product

Resources

About