Karthikeyan Bhargavan

Shivam Bhasin

Anupam Chattopadhyay

Tee Kiah Chia

Matthias J. Kannwischer

IACR Cryptol. ePrint Arch., 2024

Formal verification of the PQXDH Post-Quantum key agreement protocol for end-to-end secure messaging.

[BibT_eX]

[DOI]

Charlie Jacomme

Franziskus Kiefer

Rolfe Schmidt

Proceedings of the 33rd USENIX Security Symposium, 2024

2023

Foundations of WebAssembly (Dagstuhl Seminar 23101).

[BibT_eX]

[DOI]

Andreas Rossberg

Deian Stefan

Dagstuhl Reports, March, 2023

Comparse: Provably Secure Formats for Cryptographic Protocols.

[BibT_eX]

[DOI]

Théophile Wallez

IACR Cryptol. ePrint Arch., 2023

Layered Symbolic Security Analysis in DY$^\star$.

[BibT_eX]

[DOI]

IACR Cryptol. ePrint Arch., 2023

From Dragondoom to Dragonstar: Side-channel Attacks and Formally Verified Implementation of WPA3 Dragonfly Handshake.

[BibT_eX]

[DOI]

Daniel De Almeida Braga

Natalia Kulatova

Mohamed Sabt

Pierre-Alain Fouque

Proceedings of the 8th IEEE European Symposium on Security and Privacy, 2023

Layered Symbolic Security Analysis in $\textsf {DY}^\star $.

[BibT_eX]

[DOI]

Proceedings of the Computer Security - ESORICS 2023, 2023

2022

Hybrid Public Key Encryption.

[BibT_eX]

[DOI]

Richard L. Barnes

Benjamin Lipp

Christopher A. Wood

RFC, February, 2022

TreeSync: Authenticated Group Management for Messaging Layer Security.

[BibT_eX]

[DOI]

Théophile Wallez

IACR Cryptol. ePrint Arch., 2022

Noise*: A Library of Verified High-Performance Secure Channel Protocol Implementations (Long Version).

[BibT_eX]

[DOI]

Son Ho

Abhishek Bichhawat

IACR Cryptol. ePrint Arch., 2022

Noise*: A Library of Verified High-Performance Secure Channel Protocol Implementations.

[BibT_eX]

[DOI]

Son Ho

Abhishek Bichhawat

Proceedings of the 43rd IEEE Symposium on Security and Privacy, 2022

A Symbolic Analysis of Privacy for TLS 1.3 with Encrypted Client Hello.

[BibT_eX]

[DOI]

Vincent Cheval

Christopher A. Wood

Proceedings of the 2022 ACM SIGSAC Conference on Computer and Communications Security, 2022

2021

An In-Depth Symbolic Security Analysis of the ACME Standard.

[BibT_eX]

[DOI]

IACR Cryptol. ePrint Arch., 2021

DY*: A Modular Symbolic Verification Framework for Executable Cryptographic Protocol Code.

[BibT_eX]

[DOI]

Proceedings of the IEEE European Symposium on Security and Privacy, 2021

A Tutorial-Style Introduction to DY*.

[BibT_eX]

[DOI]

Proceedings of the Protocols, Strands, and Logic, 2021

2020

HACL×N: Verified Generic SIMD Crypto (for all your favorite platforms).

[BibT_eX]

[DOI]

Marina Polubelova

IACR Cryptol. ePrint Arch., 2020

EverCrypt: A Fast, Verified, Cross-Platform Cryptographic Provider.

[BibT_eX]

[DOI]

Joonwon Choi

Christoph M. Wintersteiger

Proceedings of the 2020 IEEE Symposium on Security and Privacy, 2020

HACLxN: Verified Generic SIMD Crypto (for all your favourite platforms).

[BibT_eX]

[DOI]

Marina Polubelova

Proceedings of the CCS '20: 2020 ACM SIGSAC Conference on Computer and Communications Security, 2020

2019

EverCrypt: A Fast, Verified, Cross-Platform Cryptographic Provider.

[BibT_eX]

[DOI]

Joonwon Choi

Christoph M. Wintersteiger

IACR Cryptol. ePrint Arch., 2019

Formally Verified Cryptographic Web Applications in WebAssembly.

[BibT_eX]

[DOI]

Denis Merigoux

IACR Cryptol. ePrint Arch., 2019

SoK: Computer-Aided Cryptography.

[BibT_eX]

[DOI]

Manuel Barbosa

Gilles Barthe

IACR Cryptol. ePrint Arch., 2019

Imperfect forward secrecy: how Diffie-Hellman fails in practice.

[BibT_eX]

[DOI]

David Adrian

Paul Zimmermann

Commun. ACM, 2019

Practical Formal Methods for Real World Cryptography (Invited Talk).

[BibT_eX]

[DOI]

Prasad Naldurg

Proceedings of the 39th IARCS Annual Conference on Foundations of Software Technology and Theoretical Computer Science, 2019

A Mechanised Cryptographic Proof of the WireGuard Virtual Private Network Protocol.

[BibT_eX]

[DOI]

Benjamin Lipp

Bruno Blanchet

Proceedings of the IEEE European Symposium on Security and Privacy, 2019

Noise Explorer: Fully Automated Modeling and Verification for Arbitrary Noise Protocols.

[BibT_eX]

[DOI]

Georgio Nicolas

Proceedings of the IEEE European Symposium on Security and Privacy, 2019

2018

Noise Explorer: Fully Automated Modeling and Verification for Arbitrary Noise Protocols.

[BibT_eX]

[DOI]

IACR Cryptol. ePrint Arch., 2018

A Formal Treatment of Accountable Proxying Over TLS.

[BibT_eX]

[DOI]

Ioana Boureanu

Pierre-Alain Fouque

Cristina Onete

Proceedings of the 2018 IEEE Symposium on Security and Privacy, 2018

hacspec: Towards Verifiable Crypto Standards.

[BibT_eX]

[DOI]

Franziskus Kiefer

Proceedings of the Security Standardisation Research - 4th International Conference, 2018

2017

Verified low-level programming embedded in F.

[BibT_eX]

[DOI]

Jean Karim Zinzindohoué

Aseem Rastogi

Tahina Ramananandro

Peng Wang

Catalin Hritcu

Proc. ACM Program. Lang., 2017

HACL*: A Verified Modern Cryptographic Library.

[BibT_eX]

[DOI]

Jean Karim Zinzindohoué

IACR Cryptol. ePrint Arch., 2017

Verified Low-Level Programming Embedded in F<sup>*</sup>.

[BibT_eX]

[DOI]

Jean Karim Zinzindohoué

Aseem Rastogi

Tahina Ramananandro

Peng Wang

Catalin Hritcu

CoRR, 2017

A messy state of the union: taming the composite state machines of TLS.

[BibT_eX]

[DOI]

Commun. ACM, 2017

Verified Models and Reference Implementations for the TLS 1.3 Standard Candidate.

[BibT_eX]

[DOI]

Bruno Blanchet

Proceedings of the 2017 IEEE Symposium on Security and Privacy, 2017

Everest: Towards a Verified, Drop-in Replacement of HTTPS.

[BibT_eX]

[DOI]

Proceedings of the 2nd Summit on Advances in Programming Languages, 2017

Formal Modeling and Verification for Domain Validation and ACME.

[BibT_eX]

[DOI]

Proceedings of the Financial Cryptography and Data Security, 2017

Automated Verification for Secure Messaging Protocols and Their Implementations: A Symbolic and Computational Approach.

[BibT_eX]

[DOI]

Bruno Blanchet

Proceedings of the 2017 IEEE European Symposium on Security and Privacy, 2017

Content delivery over TLS: a cryptographic analysis of keyless SSL.

[BibT_eX]

[DOI]

Proceedings of the 2017 IEEE European Symposium on Security and Privacy, 2017

2016

miTLS: Verifying Protocol Implementations against Real-World Attacks.

[BibT_eX]

[DOI]

Markulf Kohlweiss

IEEE Secur. Priv., 2016

On the Practical (In-)Security of 64-bit Block Ciphers: Collision Attacks on HTTP over TLS and OpenVPN.

[BibT_eX]

[DOI]

Gaëtan Leurent

IACR Cryptol. ePrint Arch., 2016

Implementing and Proving the TLS 1.3 Record Layer.

[BibT_eX]

[DOI]

IACR Cryptol. ePrint Arch., 2016

Downgrade Resilience in Key-Exchange Protocols.

[BibT_eX]

[DOI]

IACR Cryptol. ePrint Arch., 2016

Dependent types and multi-monadic effects in F.

[BibT_eX]

[DOI]

Simon Forest

Markulf Kohlweiss

Proceedings of the 43rd Annual ACM SIGPLAN-SIGACT Symposium on Principles of Programming Languages, 2016

Transcript Collision Attacks: Breaking Authentication in TLS, IKE and SSH.

[BibT_eX]

[DOI]

Gaëtan Leurent

Proceedings of the 23rd Annual Network and Distributed System Security Symposium, 2016

A Verified Extensible Library of Elliptic Curves.

[BibT_eX]

[DOI]

Evmorfia-Iro Bartzia

Proceedings of the IEEE 29th Computer Security Foundations Symposium, 2016

Formal Verification of Smart Contracts: Short Paper.

[BibT_eX]

[DOI]

Proceedings of the 2016 ACM Workshop on Programming Languages and Analysis for Security, 2016

2015

Transport Layer Security (TLS) Session Hash and Extended Master Secret Extension.

[BibT_eX]

[DOI]

Adam Langley

Marsh Ray

RFC, September, 2015

Network-based Origin Confusion Attacks against HTTPS Virtual Hosting.

[BibT_eX]

[DOI]

Proceedings of the 24th International Conference on World Wide Web, 2015

FLEXTLS: A Tool for Testing TLS Implementations.

[BibT_eX]

[DOI]

Proceedings of the 9th USENIX Workshop on Offensive Technologies, 2015

Verified Contributive Channel Bindings for Compound Authentication.

[BibT_eX]

[DOI]

Proceedings of the 22nd Annual Network and Distributed System Security Symposium, 2015

2014

Discovering concrete attacks on website authorization by formal analysis.

[BibT_eX]

[DOI]

Chetan Bansal

J. Comput. Secur., 2014

Proving the TLS Handshake Secure (as it is).

[BibT_eX]

[DOI]

IACR Cryptol. ePrint Arch., 2014

Triple Handshakes and Cookie Cutters: Breaking and Fixing Authentication over TLS.

[BibT_eX]

[DOI]

Proceedings of the 2014 IEEE Symposium on Security and Privacy, 2014

Gradual typing embedded securely in JavaScript.

[BibT_eX]

[DOI]

Aseem Rastogi

Juan Chen

Gavin M. Bierman

Proceedings of the 41st Annual ACM SIGPLAN-SIGACT Symposium on Principles of Programming Languages, 2014

2013

Secure distributed programming with value-dependent types.

[BibT_eX]

[DOI]

Jean Yang

J. Funct. Program., 2013

Language-based Defenses Against Untrusted Browser Origins.

[BibT_eX]

[DOI]

Proceedings of the 22th USENIX Security Symposium, Washington, DC, USA, August 14-16, 2013, 2013

Implementing TLS with Verified Cryptographic Security.

[BibT_eX]

[DOI]

Proceedings of the 2013 IEEE Symposium on Security and Privacy, 2013

Keys to the Cloud: Formal Analysis and Concrete Attacks on Encrypted Web Storage.

[BibT_eX]

[DOI]

Chetan Bansal

Proceedings of the Principles of Security and Trust - Second International Conference, 2013

Defensive JavaScript - Building and Verifying Secure Web Components.

[BibT_eX]

[DOI]

Proceedings of the Foundations of Security Analysis and Design VII, 2013

Towards Unified Authorization for Android.

[BibT_eX]

[DOI]

Michael J. May

Proceedings of the Engineering Secure Software and Systems - 5th International Symposium, 2013

2012

Verified Cryptographic Implementations for TLS.

[BibT_eX]

[DOI]

Eugen Zalinescu

ACM Trans. Inf. Syst. Secur., 2012

Web-based Attacks on Host-Proof Encrypted Storage.

[BibT_eX]

[DOI]

Proceedings of the 6th USENIX Workshop on Offensive Technologies, 2012

Discovering Concrete Attacks on Website Authorization by Formal Analysis.

[BibT_eX]

[DOI]

Chetan Bansal

Proceedings of the 25th IEEE Computer Security Foundations Symposium, 2012

2011

Refinement types for secure implementations.

[BibT_eX]

[DOI]

Jesper Bengtson

ACM Trans. Program. Lang. Syst., 2011

Cryptographic Verification by Typing for a Sample Protocol Implementation.

[BibT_eX]

[DOI]

Proceedings of the Foundations of Security Analysis and Design VI, 2011

2010

Modular verification of security protocol code by typing.

[BibT_eX]

[DOI]

Proceedings of the 37th ACM SIGPLAN-SIGACT Symposium on Principles of Programming Languages, 2010

Typechecking Higher-Order Security Libraries.

[BibT_eX]

[DOI]

Nataliya Guts

Proceedings of the Programming Languages and Systems - 8th Asian Symposium, 2010

2009

A compositional theory for STM Haskell.

[BibT_eX]

[DOI]

Johannes Borgström

Proceedings of the 2nd ACM SIGPLAN Symposium on Haskell, 2009

Cryptographic Protocol Synthesis and Verification for Multiparty Sessions.

[BibT_eX]

[DOI]

Proceedings of the 22nd IEEE Computer Security Foundations Symposium, 2009

2008

Verified interoperable implementations of security protocols.

[BibT_eX]

[DOI]

Stephen Tse

ACM Trans. Program. Lang. Syst., 2008

Verifying policy-based web services security.

[BibT_eX]

[DOI]

ACM Trans. Program. Lang. Syst., 2008

A secure compiler for session abstractions.

[BibT_eX]

[DOI]

Pierre-Malo Deniélou

James J. Leifer

J. Comput. Secur., 2008

Verified implementations of the information card federated identity-management protocol.

[BibT_eX]

[DOI]

Proceedings of the 2008 ACM Symposium on Information, Computer and Communications Security, 2008

Cryptographically verified implementations for TLS.

[BibT_eX]

[DOI]

Eugen Zalinescu

Proceedings of the 2008 ACM Conference on Computer and Communications Security, 2008

2007

Secure sessions for Web services.

[BibT_eX]

[DOI]

ACM Trans. Inf. Syst. Secur., 2007

Service Combinators for Farming Virtual Machines.

[BibT_eX]

[DOI]

Iman Narasamdya

Proceedings of the Trustworthy Global Computing, Third Symposium, 2007

Secure Implementations for Typed Session Abstractions.

[BibT_eX]

[DOI]

Pierre-Malo Deniélou

James J. Leifer

Proceedings of the 20th IEEE Computer Security Foundations Symposium, 2007

2006

Verified Reference Implementations of WS-Security Protocols.

[BibT_eX]

[DOI]

Proceedings of the Web Services and Formal Methods, Third International Workshop, 2006

2005

A semantics for web services authentication.

[BibT_eX]

[DOI]

Theor. Comput. Sci., 2005

Network Event Recognition.

[BibT_eX]

[DOI]

Formal Methods Syst. Des., 2005

An advisor for web services security policies.

[BibT_eX]

[DOI]

Greg O'Shea

Proceedings of the 2nd ACM Workshop On Secure Web Services, 2005

Brief announcement: exploring the consistency problem space.

[BibT_eX]

[DOI]

Nishith Krishna

Marc Shapiro

Proceedings of the Twenty-Fourth Annual ACM Symposium on Principles of Distributed Computing, 2005

2004

A Constraint-Based Formalism for Consistency in Replicated Systems.

[BibT_eX]

[DOI]

Marc Shapiro

Nishith Krishna

Proceedings of the Principles of Distributed Systems, 8th International Conference, 2004

Verifying policy-based security for web services.

[BibT_eX]

[DOI]

Proceedings of the 11th ACM Conference on Computer and Communications Security, 2004

2003

TulaFale: A Security Tool for Web Services.

[BibT_eX]

[DOI]

Riccardo Pucella

Proceedings of the Formal Methods for Components and Objects, 2003

2002

Verisim: Formal Analysis of Network Simulations.

[BibT_eX]

[DOI]

IEEE Trans. Software Eng., 2002

Formal verification of standards for distance vector routing protocols.

[BibT_eX]

[DOI]

Davor Obradovic

J. ACM, 2002

Requirements for a Practical Network Event Recognition Language.

[BibT_eX]

[DOI]

Proceedings of the Runtime Verification 2002, 2002

2001

What packets may come: automata for network monitoring.

[BibT_eX]

[DOI]

Satish Chandra

Peter J. McCann

Proceedings of the Conference Record of POPL 2001: The 28th ACM SIGPLAN-SIGACT Symposium on Principles of Programming Languages, 2001

2000

Routing Information Protocol in HOL/SPIN.

[BibT_eX]

[DOI]

Davor Obradovic

Proceedings of the Theorem Proving in Higher Order Logics, 13th International Conference, 2000

Fault origin adjudication.

[BibT_eX]

[DOI]

Davor Obradovic

Proceedings of the Third Workshop on Formal Methods in Software Practice, 2000

1998

The Village Telephone System: A Case Study in Formal Software Engineering.

[BibT_eX]

[DOI]