Skip to main content

An end-to-end verification architecture for building Certified Implementations of Robust, Cryptographically Secure web applications

Publications

Noise Explorer: Fully Automated Modeling and Verification for Arbitrary Noise Protocols

Auteurs: Nadim Kobeissi, Georgio Nicolas, Karthikeyan Bhargavan
Publié dans: 2019 IEEE European Symposium on Security and Privacy (EuroS&P), 2019, Page(s) 356-370, ISBN 978-1-7281-1148-3
Éditeur: IEEE
DOI: 10.1109/eurosp.2019.00034

Practical Formal Methods for Real World Cryptography (Invited Talk)

Auteurs: Karthikeyan Bhargavan, Prasad Naldurg
Publié dans: 39th {IARCS} Annual Conference on Foundations of Software Technology and Theoretical Computer Science, {FSTTCS} 2019, December 11-13, 2019, Bombay, India, 2019, Page(s) 1:1--1:12, ISBN 978-3-95977-131-3
Éditeur: Schloss Dagstuhl - Leibniz-Zentrum fur Informatik
DOI: 10.4230/lipics.fsttcs.2019.1

SoK: Computer-Aided Cryptography

Auteurs: M. Barbosa and G. Barthe and K. Bhargavan and B. Blanchet and C. Cremers and K. Liao and B. Parno
Publié dans: 2021 IEEE Symposium on Security and Privacy (SP), 2021, Page(s) 777-795
Éditeur: IEEE Computer Society
DOI: 10.1109/sp40001.2021.00008

DY* : A Modular Symbolic Verification Framework for Executable Cryptographic Protocol Code

Auteurs: Bhargavan, Karthikeyan and Bichhawat, Abhishek and Do, Quoc Huy and Hosseyni, Pedram and Kuesters, Ralf and Schmitz, Guido and Wuertele, Tim
Publié dans: EuroS&P 2021 - 6th IEEE European Symposium on Security and Privacy, 2021
Éditeur: IEEE

A modern compiler for the French tax code

Auteurs: Denis Merigoux, Raphaël Monat, Jonathan Protzenko
Publié dans: Proceedings of the 30th ACM SIGPLAN International Conference on Compiler Construction, 2021, Page(s) 71-82, ISBN 9781450383257
Éditeur: ACM
DOI: 10.1145/3446804.3446850

EverCrypt: A Fast, Verified, Cross-Platform Cryptographic Provider

Auteurs: Jonathan Protzenko, Bryan Parno, Aymeric Fromherz, Chris Hawblitzel, Marina Polubelova, Karthikeyan Bhargavan, Benjamin Beurdouche, Joonwon Choi, Antoine Delignat-Lavaud, Cedric Fournet, Natalia Kulatova, Tahina Ramananandro, Aseem Rastogi, Nikhil Swamy, Christoph M. Wintersteiger, Santiago Zanella-Beguelin
Publié dans: 2020 IEEE Symposium on Security and Privacy (SP), 2020, Page(s) 983-1002, ISBN 978-1-7281-3497-0
Éditeur: IEEE
DOI: 10.1109/sp40000.2020.00114

A Mechanised Cryptographic Proof of the WireGuard Virtual Private Network Protocol

Auteurs: Benjamin Lipp, Bruno Blanchet, Karthikeyan Bhargavan
Publié dans: 2019 IEEE European Symposium on Security and Privacy (EuroS&P), 2019, Page(s) 231-246, ISBN 978-1-7281-1148-3
Éditeur: IEEE
DOI: 10.1109/eurosp.2019.00026

Content delivery over TLS: a cryptographic analysis of keyless SSL

Auteurs: Karthikeyan Bhargavan, Ioana Boureanu, Pierre-Alain Fouque, Cristina Onete, Benjamin Richard
Publié dans: 2017 IEEE European Symposium on Security and Privacy (EuroS&P), April, 2017, 2017, Page(s) 1-16, ISBN 978-1-5090-5762-7
Éditeur: IEEE
DOI: 10.1109/EuroSP.2017.52

Everest: Towards a Verified, Drop-in Replacement of HTTPS

Auteurs: Karthikeyan Bhargavan, Barry Bond, Antoine Delignat-Lavaud, Cedric Fournet, Chris Hawblitzel, Catalin Hritcu, Samin Ishtiaq, Markulf Kohlweiss, Rustan Leino, Jay Lorch, Kenji Maillard, Jianyang Pan, Bryan Parno, Jonathan Protzenko, Tahina Ramananandro, Ashay Rane, Aseem Rastogi, Nikhil Swamy, Laure Thompson, Peng Wang, Santiago Zanella-Beguelin, Jean-Karim Zinzindohoue
Publié dans: 2nd Summit on Advances in Programming Languages (SNAPL 2017), 2017, 2017, Page(s) 1:1--1:12, ISBN 978-3-95977-032-3
Éditeur: Schloss Dagstuhl--Leibniz-Zentrum fuer Informatik
DOI: 10.4230/LIPIcs.SNAPL.2017.1

Implementing and Proving the TLS 1.3 Record Layer

Auteurs: Antoine Delignat-Lavaud, Cedric Fournet, Markulf Kohlweiss, Jonathan Protzenko, Aseem Rastogi, Nikhil Swamy, Santiago Zanella-Beguelin, Karthikeyan Bhargavan, Jianyang Pan, Jean Karim Zinzindohoue
Publié dans: 2017 IEEE Symposium on Security and Privacy (SP), May 2017, 2017, Page(s) 463-482, ISBN 978-1-5090-5533-3
Éditeur: IEEE
DOI: 10.1109/SP.2017.58

HACL* - A Verified Modern Cryptographic Library

Auteurs: Jean-Karim Zinzindohoué, Karthikeyan Bhargavan, Jonathan Protzenko, Benjamin Beurdouche
Publié dans: Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security - CCS '17, November 2017, 2017, Page(s) 1789-1806, ISBN 9781-450349468
Éditeur: ACM Press
DOI: 10.1145/3133956.3134043

Verified Models and Reference Implementations for the TLS 1.3 Standard Candidate

Auteurs: Karthikeyan Bhargavan, Bruno Blanchet, Nadim Kobeissi
Publié dans: 2017 IEEE Symposium on Security and Privacy (SP), May 2017, 2017, Page(s) 483-502, ISBN 978-1-5090-5533-3
Éditeur: IEEE
DOI: 10.1109/SP.2017.26

On the Practical (In-)Security of 64-bit Block Ciphers - Collision Attacks on HTTP over TLS and OpenVPN

Auteurs: Karthikeyan Bhargavan, Gaëtan Leurent
Publié dans: Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security - CCS'16, November 2016, 2016, Page(s) 456-467, ISBN 9781-450341394
Éditeur: ACM Press
DOI: 10.1145/2976749.2978423

Automated Verification for Secure Messaging Protocols and Their Implementations: A Symbolic and Computational Approach

Auteurs: Nadim Kobeissi, Karthikeyan Bhargavan, Bruno Blanchet
Publié dans: 2017 IEEE European Symposium on Security and Privacy (EuroS&P), 2017, Page(s) 435-450, ISBN 978-1-5090-5762-7
Éditeur: IEEE
DOI: 10.1109/EuroSP.2017.38

A Verified Extensible Library of Elliptic Curves

Auteurs: Jean Karim Zinzindohoue, Evmorfia-Iro Bartzia, Karthikeyan Bhargavan
Publié dans: 2016 IEEE 29th Computer Security Foundations Symposium (CSF), 2016, Page(s) 296-309, ISBN 978-1-5090-2607-4
Éditeur: IEEE
DOI: 10.1109/CSF.2016.28

Downgrade Resilience in Key-Exchange Protocols

Auteurs: Karthikeyan Bhargavan, Christina Brzuska, Cedric Fournet, Matthew Green, Markulf Kohlweiss, Santiago Zanella-Beguelin
Publié dans: 2016 IEEE Symposium on Security and Privacy (SP), 2016, Page(s) 506-525, ISBN 978-1-5090-0824-7
Éditeur: IEEE
DOI: 10.1109/SP.2016.37

Formal Modeling and Verification for Domain Validation and ACME

Auteurs: Karthikeyan Bhargavan, Antoine Delignat-Lavaud, Nadim Kobeissi
Publié dans: Financial Cryptography and Data Security, 2017, Page(s) 561-578
Éditeur: Springer International Publishing
DOI: 10.1007/978-3-319-70972-7_32

hacspec: Towards Verifiable Crypto Standards

Auteurs: Karthikeyan Bhargavan, Franziskus Kiefer, Pierre-Yves Strub
Publié dans: Security Standardisation Research, 2018, Page(s) 1-20, ISBN 978-3-030-04761-0
Éditeur: Springer International Publishing
DOI: 10.1007/978-3-030-04762-7_1

A Formal Treatment of Accountable Proxying Over TLS

Auteurs: Karthikeyan Bhargavan, Ioana Boureanu, Antoine Delignat-Lavaud, Pierre-Alain Fouque, Cristina Onete
Publié dans: 2018 IEEE Symposium on Security and Privacy (SP), 2018, Page(s) 799-816, ISBN 978-1-5386-4353-2
Éditeur: IEEE
DOI: 10.1109/SP.2018.00021

HACLxN: Verified Generic SIMD Crypto (for all your favourite platforms)

Auteurs: Marina Polubelova, Karthikeyan Bhargavan, Jonathan Protzenko, Benjamin Beurdouche, Aymeric Fromherz, Natalia Kulatova, Santiago Zanella-Béguelin
Publié dans: Proceedings of the 2020 ACM SIGSAC Conference on Computer and Communications Security, 2020, Page(s) 899-918, ISBN 9781450370899
Éditeur: ACM
DOI: 10.1145/3372297.3423352

Formally Verified Cryptographic Web Applications in WebAssembly

Auteurs: Jonathan Protzenko, Benjamin Beurdouche, Denis Merigoux, Karthikeyan Bhargavan
Publié dans: 2019 IEEE Symposium on Security and Privacy (SP), 2019, Page(s) 1256-1274, ISBN 978-1-5386-6660-9
Éditeur: IEEE
DOI: 10.1109/sp.2019.00064

Analysing the HPKE Standard

Auteurs: Joël Alwen, Bruno Blanchet, Eduard Hauck, Eike Kiltz, Benjamin Lipp, Doreen Riepel
Publié dans: Advances in Cryptology – EUROCRYPT 2021 - 40th Annual International Conference on the Theory and Applications of Cryptographic Techniques, Zagreb, Croatia, October 17–21, 2021, Proceedings, Part I, 12696, 2021, Page(s) 87-116, ISBN 978-3-030-77869-9
Éditeur: Springer International Publishing
DOI: 10.1007/978-3-030-77870-5_4

Une preuve cryptographique mécanisée du protocole de réseau privé virtuel WireGuard

Auteurs: Lipp, Benjamin; Blanchet, Bruno; Bhargavan, Karthikeyan
Publié dans: [Research Report] RR-9269, Inria Paris. 2019, pp.49, 1, 2019
Éditeur: Inria

Formal Verification for High Assurance Security Software in FStar: Application to communication protocols and cryptographic primitives

Auteurs: Benjamin Beurdouche
Publié dans: 2020
Éditeur: Université Paris Science et Lettres

Secure, fast and verified cryptographic applications : a scalable approach

Auteurs: Jean-Karim Zinzindohoué
Publié dans: 2018
Éditeur: PSL Research University

Formal Verification for Real-World Cryptographic Protocols and Implementations

Auteurs: Nadim Kobeissi
Publié dans: 2018
Éditeur: École Normale Supérieure

Verified low-level programming embedded in F*

Auteurs: Jonathan Protzenko, Cédric Fournet, Nikhil Swamy, Jean-Karim Zinzindohoué, Aseem Rastogi, Tahina Ramananandro, Peng Wang, Santiago Zanella-Béguelin, Antoine Delignat-Lavaud, Cătălin Hriţcu, Karthikeyan Bhargavan
Publié dans: Proceedings of the ACM on Programming Languages, 1/ICFP, 2017, Page(s) 1-29, ISSN 2475-1421
Éditeur: ACM
DOI: 10.1145/3110261

A messy state of the union

Auteurs: Benjamin Beurdouche, Karthikeyan Bhargavan, Antoine Delignat-Lavaud, Cédric Fournet, Markulf Kohlweiss, Alfredo Pironti, Pierre-Yves Strub, Jean Karim Zinzindohoue
Publié dans: Communications of the ACM, 60/2, 2017, Page(s) 99-107, ISSN 0001-0782
Éditeur: Association for Computing Machinary, Inc.
DOI: 10.1145/3023357

miTLS: Verifying Protocol Implementations against Real-World Attacks

Auteurs: Karthikeyan Bhargavan, Cedric Fournet, Markulf Kohlweiss
Publié dans: IEEE Security & Privacy, 14/6, 2016, Page(s) 18-25, ISSN 1540-7993
Éditeur: IEEE Computer Society
DOI: 10.1109/MSP.2016.123

SteelCore: an extensible concurrent separation logic for effectful dependently typed programs

Auteurs: Nikhil Swamy, Aseem Rastogi, Aymeric Fromherz, Denis Merigoux, Danel Ahman, Guido Martínez
Publié dans: Proceedings of the ACM on Programming Languages, 4/ICFP, 2020, Page(s) 1-30, ISSN 2475-1421
Éditeur: ACM
DOI: 10.1145/3409003

Imperfect forward secrecy

Auteurs: David Adrian, Karthikeyan Bhargavan, Zakir Durumeric, Pierrick Gaudry, Matthew Green, J. Alex Halderman, Nadia Heninger, Drew Springall, Emmanuel Thomé, Luke Valenta, Benjamin VanderSloot, Eric Wustrow, Santiago Zanella-Béguelin, Paul Zimmermann
Publié dans: Communications of the ACM, 62/1, 2018, Page(s) 106-114, ISSN 0001-0782
Éditeur: Association for Computing Machinary, Inc.
DOI: 10.1145/3292035

Formal Models and Verified Protocols for Group Messaging: Attacks and Proofs for IETF MLS

Auteurs: Karthikeyan Bhargavan, Benjamin Beurdouche, Prasad Naldurg
Publié dans: 2019
Éditeur: INRIA

Logiciel

Catala: A Programming Language for the Law

Auteurs: Merigoux Denis; Chataing Nicolas; Protzenko Jonathan
DOI: 10.5281/zenodo.4775160; 10.5281/zenodo.4775161
Éditeur: Zenodo

Analysing the HPKE Standard – Supplementary Material

Auteurs: Alwen, Joël; Blanchet, Bruno; Hauck, Eduard; Kiltz, Eike; Lipp, Benjamin; Riepel, Doreen
DOI: 10.5281/zenodo.4297811; 10.5281/zenodo.5500396; 10.5281/zenodo.4297812; 10.5281/zenodo.6969470
Éditeur: Zenodo

Analysing the HPKE Standard – Supplementary Material

Auteurs: Joël Alwen; Bruno Blanchet; Eduard Hauck; Eike Kiltz; Benjamin Lipp; Doreen Riepel
DOI: oai:zenodo.org:6969470; 10.5281/zenodo.6969470
Éditeur: Zenodo