Formal Methods and Cryptography

12 years 5 months ago
Formal Methods and Cryptography
Security-critical systems are an important application area for formal methods. However, such systems often contain cryptographic subsystems. The natural definitions of these subsystems are probabilistic and in most cases computational. Hence it is not obvious how one can treat cryptographic subsystems in a sound way within formal methods, in particular if one does not want to encumber the proof of an overall system by probabilities and computational restrictions due only to its cryptographic subsystems. We survey our progress on integrating cryptography into formal models, in particular our work on reactive simulatability (RSIM), a refinement notion suitable for cryptography. We also present the underlying system model which unifies a computational and a more abstract presentation and allows generic distributed scheduling. We show the relation of RSIM and other types of specifications, and clarify what role the claslev-Yao (term algebra) abstractions from cryptography can play in the ...
Michael Backes, Birgit Pfitzmann, Michael Waidner
Added 22 Aug 2010
Updated 22 Aug 2010
Type Conference
Year 2006
Where FM
Authors Michael Backes, Birgit Pfitzmann, Michael Waidner
Comments (0)