Firstly, we advanced new logic-based methods and tools for the automatic verification of the privacy of systems and programs (see publications A, E, F below). Secondly, where this was not possible (e.g. due to the cryptographic complexity of the systems at hand), we carried other type of analyses: formal proofs by hand on the security/privacy properties of systems (see publications B, C, D, G below).
The systems tackled are manifold: lightweight authentication systems (see publication D), C-like programs (see publication E), real-life authenticated key-exchange infrastructures based on every-day-use protocols like TLS (see publications C, G below).
Published work:
A. "Verifying Security Properties in Unbounded Multiagent Systems", by I. Boureanu, P. Kouvaros, A. Lomuscio, at the 15th International Conference on Autonomous Agents and Multi-Agent systems (AAMAS), 2016.
B. "Security of Distance-Bounding: A Survey", by G. Avoine, M. A. Bingoel, I. Boureanu, S. Capkun, G. Hancke, S. Kardas, C. Kim, C. Lauradoux, B. Martin, J. Munilla, A. Peinado-Dominguez, K. Bonne Rasmussen, D. Singelee, A. Tchamkerten, R. Trujillo-Rasua, S.Vaudenay in ACM Computing Surveys, Vol. 4, 2017
C. "Content delivery over TLS: a cryptographic analysis of Keyless SSL", by K. Bhargavan, I. Boureanu, P.A. Fouque, C. Onete and B. Richard, at the 2nd IEEE European Symposium on Security and Privacy (Euro S & P), 2017.
D. "Breaking and Fixing the HB+DB protocol", by I. Boureanu, D. Gerault, P. Lafourcade, C. Onete, at ACM WiSec, 2017
E. "A Novel Symbolic Approach to Verifying Epistemic Properties of Programs" by N. Giorgiannis, F. Raimondi, I. Boureanu, at the 26th International Joint Conference on Artificial Intelligence (IJCAI), 2017.
Under-review work:
F. On the verification of anonymity and strategic ability in ICT/IoT, using non-classical logics.
G. On the formal analysis and design of communication mediated by access-controlled proxies w.r.t. to security and privacy-related requirements.