Formal Modeling and Verification of Security Property in Handel C Program

Yujian Fu; Jeffery Kulick; Lok K. Yan; Steven Drager

doi:10.4018/jsse.2012070103

Formal Modeling and Verification of Security Property in Handel C Program

International Journal of Secure Software Engineering ◽

10.4018/jsse.2012070103 ◽

2012 ◽

Vol 3 (3) ◽

pp. 50-65

Author(s):

Yujian Fu ◽

Jeffery Kulick ◽

Lok K. Yan ◽

Steven Drager

Keyword(s):

Model Checking ◽

Petri Nets ◽

Formal Specification ◽

Critical Systems ◽

Formal Approach ◽

C Programs ◽

Translation Rule ◽

Security Properties ◽

C Program ◽

Security Property

Multi-million gate system-on-chip (SoC) designs easily fit into today’s Field Programmable Gate Arrays (FPGAs). As FPGAs become more common in safety-critical and mission-critical systems, researchers and designers require information flow guarantees for the FPGAs. Tools for designing a secure system of chips (SOCs) using FPGAs and new techniques to manage and analyze the security properties precisely are desirable. In this work we propose a formal approach to model, analyze and verify a typical set of security properties – noninterference – of Handel C programs using Petri Nets and model checking. This paper presents a method to model Handel C programs using Predicate Transition Nets, a type of Petri Net, and define security properties on the model, plus a verification approach where security properties are checked. Three steps are used. First, a formal specification on the Handel C description using Petri Nets is extracted. Second, the dynamic noninterference properties with respect to the Handel C program statements are defined on the model. To assist in verification, a translation rule from the Petri Nets specification to the Maude programming language is also defined. Thus, the formal specification can be verified against the system properties using model checking. A case study of the pipeline multiplier is discussed to illustrate the concept and validate the approach.

Download Full-text

E-ACSL, a Runtime Verification Tool for Safety and Security of C Programs (tool paper)

10.29007/fpdh ◽

2018 ◽

Author(s):

Julien Signoles ◽

Nikolai Kosmatov ◽

Kostyantyn Vorobyov

Keyword(s):

Formal Specification ◽

Runtime Verification ◽

Specification Language ◽

Formal Specifications ◽

C Programs ◽

Verification Tool ◽

Security Properties ◽

C Program ◽

Formal Properties ◽

Formal Specification Language

This tool paper presents E-ACSL, a runtime verification tool for C programs capable of checking a broad range of safety and security properties expressed using a formal specification language. E-ACSL consumes a C program annotated with formal specifications and generates a new C program that behaves similarly to the original if the formal properties are satisfied, or aborts its execution whenever a property does not hold. This paper presents an overview of E-ACSL and its specification language.

Download Full-text

A SAT-Based Planning Approach for Finding Logical Attacks on Cryptographic Protocols

International Journal of Information Security and Privacy ◽

10.4018/ijisp.2020100101 ◽

2020 ◽

Vol 14 (4) ◽

pp. 1-21

Author(s):

Noureddine Aribi ◽

Yahia Lebbah

Keyword(s):

Model Checking ◽

State Of The Art ◽

Cryptographic Protocols ◽

Protocol Verification ◽

Planning Problem ◽

Multiparty Communication ◽

Planning Approach ◽

Security Properties ◽

Sat Solver ◽

Security Property

Cryptographic protocols form the backbone of digital society. They are concurrent multiparty communication protocols that use cryptography to achieve security goals such as confidentiality, authenticity, integrity, etc., in the presence of adversaries. Unfortunately, protocol verification still represents a critical task and a major cost to engineer attack-free security protocols. Model checking and SAT-based techniques proved quite effective in this context. This article proposes an efficient automatic model checking approach that exemplifies a security property violation. In this approach, a protocol verification is abstracted as a compact planning problem, which is efficiently solved by a state-of-the-art SAT solver. The experiments performed on some real-world cryptographic protocols succeeded in detecting new logical attacks, violating some security properties. Those attacks encompass both “type flaw” and “replay” attacks, which are difficult to tackle with the existing planning-based approaches.

Download Full-text

A formal approach for the verification of the permission-based security model of Android

CLEI electronic journal ◽

10.19153/cleiej.21.2.3 ◽

2018 ◽

Vol 21 (2) ◽

Author(s):

Carlos Luna ◽

Gustavo Betarte ◽

Juan Campo ◽

Camila Sanz ◽

Maximiliano Cristiá ◽

...

Keyword(s):

Formal Specification ◽

Control Policy ◽

Proof Assistant ◽

Security Model ◽

Access Control Policy ◽

Formal Approach ◽

Fundamental Properties ◽

The Coq Proof Assistant ◽

Coq Proof Assistant ◽

Security Properties

This article reports on our experiences in applying formal methods to verify the security mechanisms of Android. We have developed a comprehensive formal specification of Android's permission model, which has been used to state and prove properties that establish expected behavior of the procedures that enforce the defined access control policy. We are also interested in providing guarantees concerning actual implementations of the mechanisms. Therefore we are following a verification approach that combines the use of idealized models, on which fundamental properties are formally verified, with testing of actual implementations using lightweight model-based techniques. We describe the formalized model, present security properties that have been proved using the Coq proof assistant and propose the use of a certified algorithm for performing verification activities such as monitoring of actual implementations of the platform and also as a testing oracle.

Download Full-text

A Formal Approach for the Modelling and Verification of Multiagent Plans Based on Model Checking and Petri Nets

Software Engineering for Multi-Agent Systems III - Lecture Notes in Computer Science ◽

10.1007/978-3-540-31846-0_10 ◽

2005 ◽

pp. 162-179 ◽

Cited By ~ 1

Author(s):

Hyggo Oliveira de Almeida ◽

Leandro Dias da Silva ◽

Angelo Perkusich ◽

Evandro de Barros Costa

Keyword(s):

Model Checking ◽

Petri Nets ◽

Formal Approach

Download Full-text

Checking Opacity of Vulnerable Critical Systems On-The-Fly

International Journal of Information Technology and Web Engineering ◽

10.4018/ijitwe.2015010101 ◽

2015 ◽

Vol 10 (1) ◽

pp. 1-30 ◽

Cited By ~ 5

Author(s):

Amina Bourouis ◽

Kais Klai ◽

Yamen El Touati ◽

Nejib Ben Hadj-Alouane

Keyword(s):

Model Checking ◽

Efficient Algorithms ◽

The State ◽

Experimental Results ◽

Critical Systems ◽

State Explosion ◽

Transition Systems ◽

State Explosion Problem ◽

Formal Definitions ◽

Security Property

Opacity is a security property capturing a system's ability to keep a subset of its behavior hidden from passive, but knowledgeable, observers. In this paper we use the formal definitions of opacity in three of its forms (simple opacity, -step weak opacity and -step strong opacity), basing on finite Labeled Transition Systems as a model. Then we present efficient algorithms for verifying opacity in all these forms within the context of a hybrid, on-the-fly approach. This approach is based on the construction of a Symbolic Observation Graph (SOG) that allows not only the abstraction of the systems behavior but also the preservation of the structure necessary for conducting opacity checking. Our preliminary experimental results are promising and demonstrate effectiveness facing the state-explosion problem which represents the main drawback of existing model checking techniques.

Download Full-text

Modeling security properties of authentication of cryptographic protocols using spin formal verification

Informatization and communication ◽

10.34219/2078-8320-2020-11-3-21-25 ◽

2020 ◽

pp. 21-25

Author(s):

E.A. Perevyshina ◽

L.K. Babenko

Keyword(s):

Model Checking ◽

Formal Verification ◽

Temporal Logic ◽

Cryptographic Protocols ◽

Wide Range ◽

Security Properties ◽

Verification Tools ◽

The Stability ◽

Security Property ◽

Ltl Model Checking

To assess the quality and security of cryptographic protocols, we use various formal verification tools, such as Scyther tool, Avispa, ProVerif. these formal verifiers can check the protocol for vulnerability to attacks on secrecy and authentication, as these are the most prevalent attacks on protocols. However, this is not enough to fully analyze the security of the protocol. In this article, we will use linear temporal logic (LTL) model checking with SPIN. This tool, unlike the formal verifiers listed above, is not designed for a specific application in the context of cryptographic protocols; however, it has a very wide range of possibilities. In particular, for each security property, it is possible to describe the behavior of an attacker and test for the stability of the protocol model to its various attacks. The purpose of this work is to describe the developed methodology for verifying the security of authentication properties using the SPIN verifier.

Download Full-text

A formal approach for the verification of multiagent plans based on model checking and Petri nets

"Third International Workshop on Software Engineering for Large-Scale Multi-Agent Systems (SELMAS'04)" W16L Workshop - 26th International Conference on Software Engineering ◽

10.1049/ic:20040371 ◽

2004 ◽

Cited By ~ 1

Author(s):

L.D. da Silva

Keyword(s):

Model Checking ◽

Petri Nets ◽

Formal Approach

Download Full-text

Fault Localization in Multi-threaded C Programs Using Bounded Model Checking

2015 Brazilian Symposium on Computing Systems Engineering (SBESC) ◽

10.1109/sbesc.2015.25 ◽

2015 ◽

Cited By ~ 2

Author(s):

Erickson H.S. Da Alves ◽

Lucas C. Cordeiro ◽

Eddie B. De Lima Filho

Keyword(s):

Model Checking ◽

Fault Localization ◽

Bounded Model Checking ◽

C Programs

Download Full-text

Assessing Risks in Critical Systems Using Petri Nets

Petri Nets Applications ◽

10.5772/7500 ◽

2010 ◽

Author(s):

Lucio Flavio ◽

Joao Batista Camargo Junior

Keyword(s):

Petri Nets ◽

Critical Systems

Download Full-text

Enhancing formal specification and verification of e-commerce protocol

Journal of Advanced Computer Science & Technology ◽

10.14419/jacst.v6i1.6713 ◽

2017 ◽

Vol 6 (1) ◽

pp. 13

Author(s):

Hasan Al-Refai ◽

Khaldoun Batiha

Keyword(s):

Formal Specification ◽

Electronic Payment ◽

Complex Phase ◽

Transaction Process ◽

Protocol Performance ◽

Formal Specification And Verification ◽

Security Properties ◽

Set Protocol ◽

Specification And Verification

Lots of work have been attempted to enhance the SET protocol performance special attention is on E-payment phase. This paper thoroughly analyzes recent works on payment phase; it has been found that this subject requires considerable enhancements, since there are areas, which require further study such as: E-payment phase in SET protocol.E-payment phase is vast and complex phase it has long series of steps. The behavior of environment is assumed by the phase and is restricted to the rules built by their proposed protocol. This paper will follow Ph-Spi calculus for formalizing and analyzing enhanced payment phase of SET protocol by reducing the number of transactions with many additional operators.A new agent controller will be formally modeled, which we can rely upon to make automated decisions during interaction with a dynamic protocol environment. So, this agent controller is used to terminate the transaction process in any case of fraud or attack. This paper is conjunction between our previous works of E-payment phase in SET protocol and other works in Ph-Spi calculus in purpose of analyzing and proving the main security properties: authentication and privacy to evaluate the efficiency of the enhanced security of electronic payment phase for SET protocol (E-SET) using Ph-Spi calculus.

Download Full-text