This repository contains the artifact for the paper "Sound Verication of Security Protocols: From Design to Interoperable Implementations", which appeared at the IEEE Symposium on Security and Privacy (S&P), 2023. [published version] [extended version]
This artifact provides the following content:
- Subdirectory
wireguard/modelcontains the Tamarin model together with instructions how to verify it - Subdirectory
wireguard/implementationcontains the verified Go implementation together with instructions how to verify and execute it. - The subdirectory
dhcontains the verified DH protocol model together with a verified Go and Java implementations. Additionally,dh/faulty-go-implementationcontains a Go implementation that tries to send the DH private key in plaintext for which verification fails because the IO specification does not permit such a send operation. - The subdirectory
specification-generatorcontains the sources of our tool to generate I/O specifications for Gobra & VeriFast from a Tamarin model.
This artifact has been archived on Zenodo (DOI: 10.5281/zenodo.7409524). The paper can be cited as follows (for BibTeX):
@inproceedings{ArquintWLSSWBM23,
author = {Arquint, Linard and Wolf, Felix A. and Lallemand, Joseph and Sasse, Ralf and Sprenger, Christoph and Wiesner, Sven N. and Basin, David and M\"uller, Peter},
booktitle = {2023 IEEE Symposium on Security and Privacy (SP)},
title = {Sound Verification of Security Protocols: From Design to Interoperable Implementations},
year = {2023},
volume = {},
number = {},
pages = {1077-1093},
keywords = {protocol-verification;symbolic-security;automated-verification;tamarin;separation-logic;implementation},
publisher = {IEEE},
month = may,
doi = {10.1109/SP46215.2023.10179325},
url = {https://doi.org/10.1109/SP46215.2023.10179325},
urltext = {Publisher},
url1 = {https://pm.inf.ethz.ch/publications/ArquintWolfLallemandSasseSprengerWiesnerBasinMueller23.pdf},
url1text = {PDF}
}