Proceedings of the 7th Workshop on Programming Languages Meets Program Verification 2013
DOI: 10.1145/2428116.2428124
|View full text |Cite
|
Sign up to set email alerts
|

Towards formal verification of TLS network packet processing written in C

Abstract: TLS is such a widespread security protocol that errors in its implementation can have disastrous consequences. This responsibility is mostly borne by programmers, caught between specifications with the ambiguities of natural language and error-prone low-level parsing of network packets. We provide new Coq libraries for the formal verification of TLS packet processing written in C. The originality of our encoding of the core subset of C is its use of dependent types to guarantee statically well-formedness of da… Show more

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
1
1
1
1

Citation Types

0
11
0
1

Year Published

2013
2013
2019
2019

Publication Types

Select...
4
2
1

Relationship

1
6

Authors

Journals

citations
Cited by 7 publications
(12 citation statements)
references
References 22 publications
0
11
0
1
Order By: Relevance
“…The authors of [3] present an approach with the goal to improve TLS implementations. For this sake, a framework for verification of C implementations for TLS functionality is provided.…”
Section: White Box Testingmentioning
confidence: 99%
“…The authors of [3] present an approach with the goal to improve TLS implementations. For this sake, a framework for verification of C implementations for TLS functionality is provided.…”
Section: White Box Testingmentioning
confidence: 99%
“…Definition 2. 1 We let N denote the type of natural numbers (including 0), let Z denote the type of integers, and let Q denote the type of rational numbers. We let i | j denote that i ∈ N is a divisor of j ∈ N.…”
Section: Notationsmentioning
confidence: 99%
“…Affeldt et al [1,2] have formalized non-cyclicity of types using a complex constraint on paths through types. Our definition of validity of environments (Definition 4.11) follows the structure of type environments, and is more easy to use (for example to implement the aforementioned recursor and induction principle).…”
Section: Definition Of Typesmentioning
confidence: 99%
See 1 more Smart Citation
“…Devido a isso, a verificação automática e formal de protocolos, utilizando métodos formais e matemáticos, vem tornando-se cada vez mais frequente e imprescindível na comunidade de segurança [Chudnov et al 2018, Li et al 2018, Kreutz et al 2019. Pesquisas relatam, por exemplo, que o processo de verificação formal já contribuiu também para a correção de protocolos que estavam em utilização [Dalal et al 2010, Cremers et al 2016, Affeldt and Marti 2013.…”
Section: Introductionunclassified