CPL - Chalmers Publication Library
| Utbildning | Forskning | Styrkeområden | Om Chalmers | In English In English Ej inloggad.

Security-typed languages for implementation of cryptographic protocols: A case study

Aslan Askarov (Institutionen för data- och informationsteknik, Datavetenskap (Chalmers)) ; Andrei Sabelfeld (Institutionen för data- och informationsteknik, Datavetenskap (Chalmers))
Proceedings of the 10th European Symposium on Research in Computer Security (ESORICS' 2005), LNCS Vol. 3679 (2005), p. 197-221.
[Konferensbidrag, refereegranskat]

Security protocols are critical for protecting modern communication infrastructures and are therefore subject to thorough analysis. However practical implementations of these protocols lack the same level of attention and thus may be more exposed to attacks. This paper discusses security assurance provided by security-typed languages when implementing cryptographic protocols. Our results are based on a case study using Jif, a Java-based security-typed language, for implementing a non-trivial cryptographic protocol that allows playing online poker without a trusted third party. The case study deploys the largest program written in a security-typed language to date and identifies insights ranging from security guarantees to useful patterns of secure programming.



Denna post skapades 2006-08-25. Senast ändrad 2015-12-17.
CPL Pubid: 9164

 

Läs direkt!


Länk till annan sajt (kan kräva inloggning)


Institutioner (Chalmers)

Institutionen för data- och informationsteknik, Datavetenskap (Chalmers)

Ämnesområden

Information Technology

Chalmers infrastruktur

Relaterade publikationer

Denna publikation ingår i:


Policies and Mechanisms for Securing Information Release