Certifying assembly with formal security proofs: The case of BBS

نویسندگان

Reynald Affeldt

David Nowak

Kiyoshi Yamada

چکیده

With today’s dissemination of embedded systems manipulating sensitive data, it has become important to equip low-level programs with strong security guarantees. Unfortunately, security proofs as done by cryptographers are about algorithms, not about concrete implementations running on hardware. In this article, we show how to perform security proofs to guarantee the security of assembly language implementations of cryptographic primitives. Our approach is based on a framework in the Coq proof assistant that integrates correctness proofs of assembly programs with game-playing proofs of provable security. We demonstrate the usability of our approach using the Blum-Blum-Shub pseudorandom number generator, for which a MIPS implementation for smartcards is shown cryptographically secure.

برای دانلود رایگان متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

منابع مشابه

Certifying Assembly with Formal Cryptographic Proofs: the Case of BBS

متن کامل

A Certifying Compiler for Zero-Knowledge Proofs of Knowledge Based on Σ-Protocols

Zero-knowledge proofs of knowledge (ZK-PoK) are important building blocks for numerous cryptographic applications. Although ZK-PoK have very useful properties, their real world deployment is typically hindered by their significant complexity compared to other (noninteractive) crypto primitives. Moreover, their design and implementation is time-consuming and error-prone. We contribute to overcom...

متن کامل

A Certifying Compiler for Zero-Knowledge Proofs of Knowledge Based on Σ-Protocols (Full Version)

Zero-knowledge proofs of knowledge (ZK-PoK) are important building blocks for numerous cryptographic applications. Although ZK-PoK have very useful properties, their real world deployment is typically hindered by their significant complexity compared to other (non-interactive) crypto primitives. Moreover, their design and implementation is time-consuming and error-prone. We contribute to overco...

متن کامل

Certificates for Tree Automata Completion

We consider the problem of certifying the correctness of a protocol or security API through a formal, machine-checkable proof. To this aim, we re-examine the completion algorithm for tree automata and term rewriting systems, that computes an over-approximation of regular sets of terms up to rewriting. We then define a procedure to certify, via a proof, that the result of the completion is indee...

متن کامل

More Typed Assembly Languages for Confidentiality

We propose a series of type systems for the information-flow security of assembly code. These systems extend previous work TALC with some timing annotations and associated judgments and rules. By using different timing rules, these systems are applicable to different practical settings. In particular, they can be used to prevent illicit information flow through the termination and timing channe...

متن کامل

ذخیره در منابع من

ذخیره در منابع من قبلا به منابع من ذحیره شده

{@ msg_add @}

با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید

عنوان ژورنال:

Sci. Comput. Program.

دوره 77 شماره

صفحات -

تاریخ انتشار 2012

Certifying assembly with formal security proofs: The case of BBS

نویسندگان

چکیده

منابع مشابه

Certifying Assembly with Formal Cryptographic Proofs: the Case of BBS

A Certifying Compiler for Zero-Knowledge Proofs of Knowledge Based on Σ-Protocols

A Certifying Compiler for Zero-Knowledge Proofs of Knowledge Based on Σ-Protocols (Full Version)

Certificates for Tree Automata Completion

More Typed Assembly Languages for Confidentiality

عنوان ژورنال:

اشتراک گذاری