Type-checking zero-knowledge

14 years 1 months ago

Download www.infsec.cs.uni-saarland.de

This paper presents the first type system for statically analyzing security protocols that are based on zero-knowledge proofs. We show how several properties offered by zero-knowledge proofs can be characterized in terms of authorization policies and statically enforced by a type system. The analysis is modular and compositional, and provides security proofs for an unbounded number of protocol executions. We develop a new type-checker that conducts the analysis in a fully automated manner. We exemplify the applicability of our technique and of our type-checker to real-world protocols by verifying the authenticity properties of the Direct Anonymous Attestation (DAA) protocol. The analysis of DAA takes less than three seconds.

Michael Backes, Catalin Hritcu, Matteo Maffei

Real-time Traffic

CCS 2008 | Security Privacy | Security Protocols | Type System | Zero-knowledge Proofs |

claim paper

Post Info
More Details (n/a)

Added	12 Oct 2010
Updated	12 Oct 2010
Type	Conference
Year	2008
Where	CCS
Authors	Michael Backes, Catalin Hritcu, Matteo Maffei

Comments (0)

Sciweavers

Type-checking zero-knowledge

CCS 2008 | Security Privacy | Security Protocols | Type System | Zero-knowledge Proofs |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers