Security-typed languages for implementation of cryptographic protocols: A case study
Paper in proceeding, 2005

Security protocols are critical for protecting modern communication infrastructures and are therefore subject to thorough analysis. However practical implementations of these protocols lack the same level of attention and thus may be more exposed to attacks. This paper discusses security assurance provided by security-typed languages when implementing cryptographic protocols. Our results are based on a case study using Jif, a Java-based security-typed language, for implementing a non-trivial cryptographic protocol that allows playing online poker without a trusted third party. The case study deploys the largest program written in a security-typed language to date and identifies insights ranging from security guarantees to useful patterns of secure programming.

Author

Aslan Askarov

Chalmers, Computer Science and Engineering (Chalmers), Computing Science (Chalmers)

Andrei Sabelfeld

Chalmers, Computer Science and Engineering (Chalmers), Computing Science (Chalmers)

Proceedings of the 10th European Symposium on Research in Computer Security (ESORICS' 2005), LNCS

Vol. 3679 197-221
3-540-28963-1 (ISBN)

Subject Categories

Computer and Information Science

ISBN

3-540-28963-1

More information

Created

10/7/2017