Affiliation:
1. Politecnico di Torino, Italy
2. INRIA, France
3. Teoresi Group, Italy
Abstract
This paper presents JavaSPI, a “model-driven” development framework that allows the user to reliably develop security protocol implementations in Java, starting from abstract models that can be verified formally. The main novelty of this approach stands in the use of Java as both a modeling language and the implementation language. The JavaSPI framework is validated by implementing a scenario of the SSL protocol. The JavaSPI implementation can successfully interoperate with OpenSSL, and has comparable execution time with the standard Java JSSE library.
Reference13 articles.
1. Almeida, J., Bangerter, E., Barbosa, M., Krenn, S., Sadeghi, A., & Schneider, T. (2010). A certifying compiler for zero-knowledge proofs of knowledge based on sigma-protocols. In Proceedings of the European Symposium on Research in Computer Security (pp. 151-167).
2. Backes, M., Maffei, M., & Unruh, D. (2010). Computationally sound verification of source code. In Proceedings of the 17th ACM Conference on Computer and Communications Security (pp. 387-398).
3. Balser, M., Reif, W., Schellhorn, G., Stenzel, K., & Thums, A. (2000). Formal system development with KIV. In Proceedings of the 3rd International Conference on Fundamental Approaches to Software Engineering: Held as Part of the European Joint Conferences on the Theory and Practice of Software (pp. 363-366).
4. Model driven security
5. Bhargavan, K., Corin, R., Deniélou, P., Fournet, C., & Leifer, J. (2009). Cryptographic protocol synthesis and verification for multiparty sessions. In Proceedings of the Computer Security Foundations Symposium (pp. 124-140).
Cited by
12 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献