A secure compiler for session abstractions

Corin, Ricardo; Deniélou, Pierre-Malo; Fournet, Cédric; Bhargavan, Karthikeyan; Leifer, James J.

doi:10.3233/jcs-2008-0334

Cited by 13 publications

(24 citation statements)

References 41 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…A similar approach is gaining popularity in the literature on typed process calculi targeted at the specification of distributed protocols and systems (see, e.g., [24,25]). In these papers, the typed calculi provide for idealized specifications which are implemented by translations into low-level, but still typed, cryptographic languages.…”

Section: Communication Modes Translationmentioning

confidence: 99%

AnBx - Security Protocols Design and Verification

Bugliesi

Modesti

2010

Automated Reasoning for Security Protocol Analysis and Issues in the Theory of Security

View full text Add to dashboard Cite

Designing distributed protocols is challenging, as it requires actions at very different levels: from the choice of network-level mechanisms to protect the exchange of sensitive data, to the definition of structured interaction patterns to convey application-specific guarantees. Current security infrastructures provide very limited support for the specification of such guarantees. As a consequence, the high-level security properties of a protocol typically must often be hard-coded explicitly, in terms of low-level cryptographic notions and devices which clutter the design and undermine its scalability and robustness.To counter these problems, we propose an extended Alice & Bob notation for protocol narrations (AnBx) to be employed for a purely declarative modelling of distributed protocols. These abstractions provide a compact specification of the high-level security guarantees they convey, and help shield the design from the details of the underlying cryptographic infrastructure. We discuss an implementation of the abstractions based on a translation from the AnBx notation to the AnB language supported by the OFMC [1,2] verification tool. We show the practical effectiveness of our approach by revisiting the iKP e-payment protocols, and showing that the security goals achieved by our declarative specification outperform those offered by the original protocols.

show abstract

Section: Communication Modes Translationmentioning

confidence: 99%

AnBx - Security Protocols Design and Verification

Bugliesi

Modesti

2010

Automated Reasoning for Security Protocol Analysis and Issues in the Theory of Security

View full text Add to dashboard Cite

show abstract

“…The works [28,29,30] offer a first answer to these questions (the journal paper [30] merges and extends both [29] and [28]). The proposed language, expressed as a type language with a global graph-like representation (called session graphs), includes messages, roles, and sessions; it does not support parallelism or asynchrony.…”

Section: A Secure Protocol Compilermentioning

confidence: 99%

“…The principle of [30] is to use the session graph specification to generate a cryptographic protocol (and its implementation) that will protect the honest participants against any coalition of compromised peers. The idea is that, in order to ensure that an incoming message is valid with respect to the session graph specification, that message should carry enough trustworthy information to be able to prove that the protocol history was compliant up to that point.…”

Section: A Secure Protocol Compilermentioning

confidence: 99%

Combining behavioural types with security analysis

Bartoletti

Castellani

Deniélou

et al. 2015

Journal of Logical and Algebraic Methods in Programming

Self Cite

View full text Add to dashboard Cite

Today's software systems are highly distributed and interconnected, and they increasingly rely on communication to achieve their goals; due to their societal importance, security and trustworthiness are crucial aspects for the correctness of these systems. Behavioural types, which extend data types by describing also the structured behaviour of programs, are a widely studied approach to the enforcement of correctness properties in communicating systems. This paper offers a unified overview of proposals based on behavioural types which are aimed at the analysis of security properties

show abstract

“…Early work [8] applies them to security concerns, which includes a type-checker and code generator for ML. A recent implementation extends SJ for MPST [32] and studies type-directed optimisations for the extended language.…”

Section: Related and Future Workmentioning

confidence: 99%

Safe Parallel Programming with Session Java

Yoshida

Pernet

et al. 2011

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Abstract. The session-typed programming language Session Java (SJ) has proved to be an effective tool for distributed programming, promoting productivity and compile-time safety. This paper investigates the use of SJ for session-typed parallel programming, and introduces new language primitives for chained iteration and multi-channel communication. These primitives allow the efficient coordination of parallel computation across multiple processes, thus enabling SJ to express the complex communication topologies often used by parallel algorithms with static safety guarantees. We demonstrate that the new primitives yield clearer and safer code for pipeline, ring and mesh topologies, and through implementations of a parallel Jacobi method and an n-Body simulation. We then present a semantics and session typing system including the new primitives, and prove type soundness and deadlockfreedom for our parallel algorithm implementations. Finally, we benchmark several implementations of the n-Body simulation on a hybrid computing cluster, demonstrating the performance gains due to the new primitives. The SJ implementation is also substantially faster than an MPJ Express 1 implementation used as reference.

show abstract

A secure compiler for session abstractions

Cited by 13 publications

References 41 publications

AnBx - Security Protocols Design and Verification

AnBx - Security Protocols Design and Verification

Combining behavioural types with security analysis

Safe Parallel Programming with Session Java

Contact Info

Product

Resources

About