Cryptosense: Security Analysis for Cryptographic APIs
Event details
| Date | 12.06.2013 |
| Hour | 14:00 › 15:00 |
| Speaker | Prof. Graham Steel, CNRS, ENS de Cachan and INRIA |
| Location | |
| Category | Conferences - Seminars |
In practice, most developers use cryptography via an application program interface (API) either to a software library or a hardware device where keys are stored and all cryptographic operations take place. Designing such interfaces so that they offer flexible functionality but cannot be abused to reveal keys or secrets has proved to be extremely difficult, with a number of published vulnerabilities in widely-used APIs appearing over the last decade.
This talk will discuss research on the use of formal methods to specify and verify such interfaces in order to either detect flaws or prove security properties. We will focus on the example of RSA PKCS#11, the most widely used interface for cryptographic devices, and show how research has progressed from initial theoretical results through to a powerful tool, the Cryptosense Analyzer, which can reverse engineer the particular configuration of PKCS#11 in use on some device under test, construct a model of the device's functionality, and call a model checker to search for attacks. If an attack is found, it can be executed automatically on the device, and
advice for secure configuration is given. The talk will conclude with a live demonstration.
This talk will discuss research on the use of formal methods to specify and verify such interfaces in order to either detect flaws or prove security properties. We will focus on the example of RSA PKCS#11, the most widely used interface for cryptographic devices, and show how research has progressed from initial theoretical results through to a powerful tool, the Cryptosense Analyzer, which can reverse engineer the particular configuration of PKCS#11 in use on some device under test, construct a model of the device's functionality, and call a model checker to search for attacks. If an attack is found, it can be executed automatically on the device, and
advice for secure configuration is given. The talk will conclude with a live demonstration.
Links
Practical information
- General public
- Free
Organizer
- SuRI 2013
Contact
- Simone Muller