Security-typed languages for implementation of cryptographic protocols: A case study
Paper i proceeding, 2005

Security protocols are critical for protecting modern communication infrastructures and are therefore subject to thorough analysis. However practical implementations of these protocols lack the same level of attention and thus may be more exposed to attacks. This paper discusses security assurance provided by security-typed languages when implementing cryptographic protocols. Our results are based on a case study using Jif, a Java-based security-typed language, for implementing a non-trivial cryptographic protocol that allows playing online poker without a trusted third party. The case study deploys the largest program written in a security-typed language to date and identifies insights ranging from security guarantees to useful patterns of secure programming.


Aslan Askarov

Chalmers, Data- och informationsteknik, Datavetenskap

Andrei Sabelfeld

Chalmers, Data- och informationsteknik, Datavetenskap

Proceedings of the 10th European Symposium on Research in Computer Security (ESORICS' 2005), LNCS

Vol. 3679 197-221
3-540-28963-1 (ISBN)


Data- och informationsvetenskap



Mer information