Skip to main content

An end-to-end verification architecture for building Certified Implementations of Robust, Cryptographically Secure web applications

Publications

Everest: Towards a Verified, Drop-in Replacement of HTTPS

Author(s): Karthikeyan Bhargavan and Barry Bond and Antoine Delignat-Lavaud and Cedric Fournet and Chris Hawblitzel and Catalin Hritcu and Samin Ishtiaq and Markulf Kohlweiss and Rustan Leino and Jay Lorch and Kenji Maillard and Jianyang Pan and Bryan Parno and Jonathan Protzenko and Tahina Ramananandro and Ashay Rane and Aseem Rastogi and Nikhil Swamy and Laure Thompson and Peng Wang and Santiago Zanella-Be
Published in: 2nd Summit on Advances in Programming Languages (SNAPL 2017), Issue 2017, 2017, Page(s) 1:1--1:12
DOI: 10.4230/LIPIcs.SNAPL.2017.1

Implementing and Proving the TLS 1.3 Record Layer

Author(s): Antoine Delignat-Lavaud, Cedric Fournet, Markulf Kohlweiss, Jonathan Protzenko, Aseem Rastogi, Nikhil Swamy, Santiago Zanella-Beguelin, Karthikeyan Bhargavan, Jianyang Pan, Jean Karim Zinzindohoue
Published in: 2017 IEEE Symposium on Security and Privacy (SP), Issue May 2017, 2017, Page(s) 463-482
DOI: 10.1109/SP.2017.58

HACL* - A Verified Modern Cryptographic Library

Author(s): Jean-Karim Zinzindohoué, Karthikeyan Bhargavan, Jonathan Protzenko, Benjamin Beurdouche
Published in: Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security - CCS '17, Issue November 2017, 2017, Page(s) 1789-1806
DOI: 10.1145/3133956.3134043

Verified Models and Reference Implementations for the TLS 1.3 Standard Candidate

Author(s): Karthikeyan Bhargavan, Bruno Blanchet, Nadim Kobeissi
Published in: 2017 IEEE Symposium on Security and Privacy (SP), Issue May 2017, 2017, Page(s) 483-502
DOI: 10.1109/SP.2017.26

On the Practical (In-)Security of 64-bit Block Ciphers - Collision Attacks on HTTP over TLS and OpenVPN

Author(s): Karthikeyan Bhargavan, Gaëtan Leurent
Published in: Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security - CCS'16, Issue November 2016, 2016, Page(s) 456-467
DOI: 10.1145/2976749.2978423

A Verified Extensible Library of Elliptic Curves

Author(s): Jean Karim Zinzindohoue, Evmorfia-Iro Bartzia, Karthikeyan Bhargavan
Published in: 2016 IEEE 29th Computer Security Foundations Symposium (CSF), 2016, Page(s) 296-309
DOI: 10.1109/CSF.2016.28

Downgrade Resilience in Key-Exchange Protocols

Author(s): Karthikeyan Bhargavan, Christina Brzuska, Cedric Fournet, Matthew Green, Markulf Kohlweiss, Santiago Zanella-Beguelin
Published in: 2016 IEEE Symposium on Security and Privacy (SP), 2016, Page(s) 506-525
DOI: 10.1109/SP.2016.37

Formal Modeling and Verification for Domain Validation and ACME

Author(s): Karthikeyan Bhargavan, Antoine Delignat-Lavaud, Nadim Kobeissi
Published in: Financial Cryptography and Data Security, 2017, Page(s) 561-578
DOI: 10.1007/978-3-319-70972-7_32

hacspec: Towards Verifiable Crypto Standards

Author(s): Karthikeyan Bhargavan, Franziskus Kiefer, Pierre-Yves Strub
Published in: Security Standardisation Research, 2018, Page(s) 1-20
DOI: 10.1007/978-3-030-04762-7_1

A Formal Treatment of Accountable Proxying Over TLS

Author(s): Karthikeyan Bhargavan, Ioana Boureanu, Antoine Delignat-Lavaud, Pierre-Alain Fouque, Cristina Onete
Published in: 2018 IEEE Symposium on Security and Privacy (SP), 2018, Page(s) 799-816
DOI: 10.1109/SP.2018.00021

Verified low-level programming embedded in F*

Author(s): Jonathan Protzenko, Cédric Fournet, Nikhil Swamy, Jean-Karim Zinzindohoué, Aseem Rastogi, Tahina Ramananandro, Peng Wang, Santiago Zanella-Béguelin, Antoine Delignat-Lavaud, Cătălin Hriţcu, Karthikeyan Bhargavan
Published in: Proceedings of the ACM on Programming Languages, Issue 1/ICFP, 2017, Page(s) 1-29, ISSN 2475-1421
DOI: 10.1145/3110261

A messy state of the union

Author(s): Benjamin Beurdouche, Karthikeyan Bhargavan, Antoine Delignat-Lavaud, Cédric Fournet, Markulf Kohlweiss, Alfredo Pironti, Pierre-Yves Strub, Jean Karim Zinzindohoue
Published in: Communications of the ACM, Issue 60/2, 2017, Page(s) 99-107, ISSN 0001-0782
DOI: 10.1145/3023357

miTLS: Verifying Protocol Implementations against Real-World Attacks


Published in: ISSN 1540-7993
DOI: 10.1109/MSP.2016.123