Secure Implementations for Typed Session Abstractions

Corin, Ricardo; Deniélou, Pierre-Malo; Fournet, Cédric; Bhargavan, Karthikeyan; Leifer, James J.

doi:10.1109/csf.2007.29

Cited by 29 publications

(27 citation statements)

References 31 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…the survey [2]) seems to have proceeded independently from approaches such as those overviewed in [7]. The work in [6] is similar in spirit to ours, but is different in conception and details, as it uses a session graph specification to generate a cryptographic functional implementation that enjoys session integrity. Extensions of session types (e.g., [4,16]) address security issues in various ways, but do not directly support cryptographic operations, global state, nor connections with "applied" languages for (automated) verification, which are all enabled by our approach.…”

Section: Related Work and Concluding Remarksmentioning

confidence: 91%

Relating Process Languages for Security and Communication Correctness (Extended Abstract)

Nantes

Pérez

2018

Formal Techniques for Distributed Objects, Components, and Systems

View full text Add to dashboard Cite

Abstract. Process calculi are expressive specification languages for concurrency. They have been very successful in two research strands: (a) the analysis of security protocols and (b) the enforcement of correct messagepassing programs. Despite their shared foundations, languages and reasoning techniques for (a) and (b) have been separately developed. Here we connect two representative calculi from (a) and (b): we encode a (high-level) π-calculus for multiparty sessions into a (low-level) applied π-calculus for security protocols. We establish the correctness of our encoding, and we show how it enables the integrated analysis of security properties and communication correctness by re-using existing tools.

show abstract

Section: Related Work and Concluding Remarksmentioning

confidence: 91%

Relating Process Languages for Security and Communication Correctness (Extended Abstract)

Nantes

Pérez

2018

Formal Techniques for Distributed Objects, Components, and Systems

View full text Add to dashboard Cite

show abstract

“…Since our typing system uses standard types, it can be easily integrated with subtyping [10], bounded session polymorphism [9] and correspondence assertions [2], guaranteeing the progress through the additional information represented by the sets of sent and bound channels and the channel relations. Challenging extensions are progress guarantees for choreographic (global) communication dependencies [5], combining more powerful means such as cryptography [3,7], refinements [20] and logical approach [4], by which more advanced security properties can be ensured.…”

Section: Discussionmentioning

confidence: 99%

On Progress for Structured Communications

Dezani‐Ciancaglini¹,

de’Liguoro²,

Yoshida³

Trustworthy Global Computing

View full text Add to dashboard Cite

Abstract. We propose a new typing system for the π-calculus with sessions, which ensures the progress property, i.e. once a session has been initiated, typable processes will never starve at session channels. In the current literature progress for session types has been guaranteed only in the case of nested sessions, disallowing more than two session channels interfered in a single thread. This was a severe restriction since many structured communications need combinations of sessions. We overcome this restriction by inferring the order of channel usage, but avoiding any tagging of channels and names, neither explicit nor inferred. The simplicity of the typing system essentially relies on the session typing discipline, where sequencing and branching of communications are already structured by types. The resulting typing enjoys a stronger progress property than that one in the literature: it assures that for each well-typed process P which contains an open session there is an irreducible process Q such that the parallel composition P|Q is well-typed too and it always reduces, also in presence of interfered sessions.

show abstract

“…The analysis of distributed systems built upon secure channel abstractions has been subject of active research in the recent literature, based on various formalisms: model checking [3], CSP-style traces specifications [12], Strand spaces [16], inductive verification [4] and process calculi [2,11].…”

Section: Discussionmentioning

confidence: 99%

Secrecy and Authenticity Types for Secure Distributed Messaging

Bugliesi

Calzavara

Macedonio

2010

Automated Reasoning for Security Protocol Analysis and Issues in the Theory of Security

View full text Add to dashboard Cite

Abstract. We introduce a calculus with mobile names, distributed principals and primitives for secure remote communication, without any reference to explicit cryptography. The calculus is equipped with a system of types and effects providing static guarantees of secrecy and authenticity in the presence of a Dolev-Yao intruder. The novelty with respect to existing type systems for security is in the structure of our secrecy and authenticity types, which are inspired by the formulas of BAN Logic, and retain much of the simplicity and intuitive reading of such formulas. Drawing on these types, the type system makes it possible to characterize authenticity directly as a property of the data exchanged during a protocol rather than indirectly by extracting and interpreting the effects the protocol has on that data.

show abstract

Secure Implementations for Typed Session Abstractions

Cited by 29 publications

References 31 publications

Relating Process Languages for Security and Communication Correctness (Extended Abstract)

Relating Process Languages for Security and Communication Correctness (Extended Abstract)

On Progress for Structured Communications

Secrecy and Authenticity Types for Secure Distributed Messaging

Contact Info

Product

Resources

About