{"id":"https://openalex.org/W3214700495","doi":"https://doi.org/10.1109/eurosp51992.2021.00042","title":"$\\text{DY}^{\\star}$: A Modular Symbolic Verification Framework for Executable Cryptographic Protocol Code","display_name":"$\\text{DY}^{\\star}$: A Modular Symbolic Verification Framework for Executable Cryptographic Protocol Code","publication_year":2021,"publication_date":"2021-09-01","ids":{"openalex":"https://openalex.org/W3214700495","doi":"https://doi.org/10.1109/eurosp51992.2021.00042","mag":"3214700495"},"language":"en","primary_location":{"id":"doi:10.1109/eurosp51992.2021.00042","is_oa":false,"landing_page_url":"https://doi.org/10.1109/eurosp51992.2021.00042","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2021 IEEE European Symposium on Security and Privacy (EuroS&amp;P)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5026297326","display_name":"Karthikeyan Bhargavan","orcid":"https://orcid.org/0000-0002-3152-8997"},"institutions":[{"id":"https://openalex.org/I1326498283","display_name":"Institut national de recherche en sciences et technologies du num\u00e9rique","ror":"https://ror.org/02kvxyf05","country_code":"FR","type":"government","lineage":["https://openalex.org/I1326498283"]}],"countries":["FR"],"is_corresponding":true,"raw_author_name":"Karthikeyan Bhargavan","raw_affiliation_strings":["INRIA,Paris,France","INRIA, Paris, France"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"INRIA,Paris,France","institution_ids":["https://openalex.org/I1326498283"]},{"raw_affiliation_string":"INRIA, Paris, France","institution_ids":["https://openalex.org/I1326498283"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5022695129","display_name":"Abhishek Bichhawat","orcid":"https://orcid.org/0000-0002-3075-2743"},"institutions":[{"id":"https://openalex.org/I27674431","display_name":"Indian Institute of Technology Gandhinagar","ror":"https://ror.org/0036p5w23","country_code":"IN","type":"education","lineage":["https://openalex.org/I27674431"]},{"id":"https://openalex.org/I74973139","display_name":"Carnegie Mellon University","ror":"https://ror.org/05x2bcf33","country_code":"US","type":"education","lineage":["https://openalex.org/I74973139"]}],"countries":["IN","US"],"is_corresponding":false,"raw_author_name":"Abhishek Bichhawat","raw_affiliation_strings":["Carnegie Mellon University,Pittsburgh,PA,USA","Carnegie Mellon University, Pittsburgh, PA, USA","IIT Gandhinagar, Gandhinagar, Gujarat, India"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Carnegie Mellon University,Pittsburgh,PA,USA","institution_ids":["https://openalex.org/I74973139"]},{"raw_affiliation_string":"Carnegie Mellon University, Pittsburgh, PA, USA","institution_ids":["https://openalex.org/I74973139"]},{"raw_affiliation_string":"IIT Gandhinagar, Gandhinagar, Gujarat, India","institution_ids":["https://openalex.org/I27674431"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5017817995","display_name":"Quoc Huy","orcid":null},"institutions":[{"id":"https://openalex.org/I100066346","display_name":"University of Stuttgart","ror":"https://ror.org/04vnq7t77","country_code":"DE","type":"education","lineage":["https://openalex.org/I100066346"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Quoc Huy Do","raw_affiliation_strings":["University of Stuttgart,Stuttgart,Germany","University of Stuttgart, Stuttgart, Germany"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"University of Stuttgart,Stuttgart,Germany","institution_ids":["https://openalex.org/I100066346"]},{"raw_affiliation_string":"University of Stuttgart, Stuttgart, Germany","institution_ids":["https://openalex.org/I100066346"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5057518736","display_name":"Pedram Hosseyni","orcid":"https://orcid.org/0000-0001-5618-5663"},"institutions":[{"id":"https://openalex.org/I100066346","display_name":"University of Stuttgart","ror":"https://ror.org/04vnq7t77","country_code":"DE","type":"education","lineage":["https://openalex.org/I100066346"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Pedram Hosseyni","raw_affiliation_strings":["University of Stuttgart,Stuttgart,Germany","University of Stuttgart, Stuttgart, Germany"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"University of Stuttgart,Stuttgart,Germany","institution_ids":["https://openalex.org/I100066346"]},{"raw_affiliation_string":"University of Stuttgart, Stuttgart, Germany","institution_ids":["https://openalex.org/I100066346"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5088011494","display_name":"Ralf K\u00fcsters","orcid":"https://orcid.org/0000-0002-9071-9312"},"institutions":[{"id":"https://openalex.org/I100066346","display_name":"University of Stuttgart","ror":"https://ror.org/04vnq7t77","country_code":"DE","type":"education","lineage":["https://openalex.org/I100066346"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Ralf K\u00fcsters","raw_affiliation_strings":["University of Stuttgart,Stuttgart,Germany","University of Stuttgart, Stuttgart, Germany"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"University of Stuttgart,Stuttgart,Germany","institution_ids":["https://openalex.org/I100066346"]},{"raw_affiliation_string":"University of Stuttgart, Stuttgart, Germany","institution_ids":["https://openalex.org/I100066346"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5032615835","display_name":"Guido Schmitz","orcid":"https://orcid.org/0000-0002-3776-5475"},"institutions":[{"id":"https://openalex.org/I100066346","display_name":"University of Stuttgart","ror":"https://ror.org/04vnq7t77","country_code":"DE","type":"education","lineage":["https://openalex.org/I100066346"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Guido Schmitz","raw_affiliation_strings":["University of Stuttgart,Stuttgart,Germany","University of Stuttgart, Stuttgart, Germany"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"University of Stuttgart,Stuttgart,Germany","institution_ids":["https://openalex.org/I100066346"]},{"raw_affiliation_string":"University of Stuttgart, Stuttgart, Germany","institution_ids":["https://openalex.org/I100066346"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5005751525","display_name":"Tim W\u00fcrtele","orcid":"https://orcid.org/0000-0002-4729-0629"},"institutions":[{"id":"https://openalex.org/I100066346","display_name":"University of Stuttgart","ror":"https://ror.org/04vnq7t77","country_code":"DE","type":"education","lineage":["https://openalex.org/I100066346"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Tim W\u00fcrtele","raw_affiliation_strings":["University of Stuttgart,Stuttgart,Germany","University of Stuttgart, Stuttgart, Germany"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"University of Stuttgart,Stuttgart,Germany","institution_ids":["https://openalex.org/I100066346"]},{"raw_affiliation_string":"University of Stuttgart, Stuttgart, Germany","institution_ids":["https://openalex.org/I100066346"]}]}],"institutions":[],"countries_distinct_count":4,"institutions_distinct_count":7,"corresponding_author_ids":["https://openalex.org/A5026297326"],"corresponding_institution_ids":["https://openalex.org/I1326498283"],"apc_list":null,"apc_paid":null,"fwci":2.2427,"has_fulltext":false,"cited_by_count":24,"citation_normalized_percentile":{"value":0.88587365,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":94,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"523","last_page":"542"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11504","display_name":"Advanced Authentication Protocols Security","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11504","display_name":"Advanced Authentication Protocols Security","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11800","display_name":"User Authentication and Security Systems","score":0.9973000288009644,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9937999844551086,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/executable","display_name":"Executable","score":0.7858172059059143},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.764126181602478},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.6009448766708374},{"id":"https://openalex.org/keywords/cryptographic-protocol","display_name":"Cryptographic protocol","score":0.5584509372711182},{"id":"https://openalex.org/keywords/protocol","display_name":"Protocol (science)","score":0.5042847394943237},{"id":"https://openalex.org/keywords/trace","display_name":"TRACE (psycholinguistics)","score":0.497773677110672},{"id":"https://openalex.org/keywords/theoretical-computer-science","display_name":"Theoretical computer science","score":0.4740813970565796},{"id":"https://openalex.org/keywords/symbolic-execution","display_name":"Symbolic execution","score":0.47367554903030396},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.4403146207332611},{"id":"https://openalex.org/keywords/algorithm","display_name":"Algorithm","score":0.28811782598495483}],"concepts":[{"id":"https://openalex.org/C160145156","wikidata":"https://www.wikidata.org/wiki/Q778586","display_name":"Executable","level":2,"score":0.7858172059059143},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.764126181602478},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.6009448766708374},{"id":"https://openalex.org/C33884865","wikidata":"https://www.wikidata.org/wiki/Q1254335","display_name":"Cryptographic protocol","level":3,"score":0.5584509372711182},{"id":"https://openalex.org/C2780385302","wikidata":"https://www.wikidata.org/wiki/Q367158","display_name":"Protocol (science)","level":3,"score":0.5042847394943237},{"id":"https://openalex.org/C75291252","wikidata":"https://www.wikidata.org/wiki/Q1315756","display_name":"TRACE (psycholinguistics)","level":2,"score":0.497773677110672},{"id":"https://openalex.org/C80444323","wikidata":"https://www.wikidata.org/wiki/Q2878974","display_name":"Theoretical computer science","level":1,"score":0.4740813970565796},{"id":"https://openalex.org/C2779639559","wikidata":"https://www.wikidata.org/wiki/Q7661178","display_name":"Symbolic execution","level":3,"score":0.47367554903030396},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.4403146207332611},{"id":"https://openalex.org/C11413529","wikidata":"https://www.wikidata.org/wiki/Q8366","display_name":"Algorithm","level":1,"score":0.28811782598495483},{"id":"https://openalex.org/C41895202","wikidata":"https://www.wikidata.org/wiki/Q8162","display_name":"Linguistics","level":1,"score":0.0},{"id":"https://openalex.org/C142724271","wikidata":"https://www.wikidata.org/wiki/Q7208","display_name":"Pathology","level":1,"score":0.0},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.0},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0},{"id":"https://openalex.org/C204787440","wikidata":"https://www.wikidata.org/wiki/Q188504","display_name":"Alternative medicine","level":2,"score":0.0},{"id":"https://openalex.org/C71924100","wikidata":"https://www.wikidata.org/wiki/Q11190","display_name":"Medicine","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/eurosp51992.2021.00042","is_oa":false,"landing_page_url":"https://doi.org/10.1109/eurosp51992.2021.00042","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2021 IEEE European Symposium on Security and Privacy (EuroS&amp;P)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions","score":0.8500000238418579}],"awards":[{"id":"https://openalex.org/G763856328","display_name":null,"funder_award_id":"CIRCUS-683032","funder_id":"https://openalex.org/F4320338335","funder_display_name":"H2020 European Research Council"},{"id":"https://openalex.org/G8157140183","display_name":null,"funder_award_id":"KU 1434/10-2","funder_id":"https://openalex.org/F4320320879","funder_display_name":"Deutsche Forschungsgemeinschaft"}],"funders":[{"id":"https://openalex.org/F4320320879","display_name":"Deutsche Forschungsgemeinschaft","ror":"https://ror.org/018mejw64"},{"id":"https://openalex.org/F4320338335","display_name":"H2020 European Research Council","ror":"https://ror.org/0472cxd90"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":71,"referenced_works":["https://openalex.org/W42122073","https://openalex.org/W75729132","https://openalex.org/W146244851","https://openalex.org/W277210383","https://openalex.org/W1495444061","https://openalex.org/W1506423323","https://openalex.org/W1560253649","https://openalex.org/W1566393948","https://openalex.org/W1975344666","https://openalex.org/W1979418580","https://openalex.org/W1985453495","https://openalex.org/W1987581799","https://openalex.org/W1991234099","https://openalex.org/W2002789557","https://openalex.org/W2024761866","https://openalex.org/W2029693536","https://openalex.org/W2030988895","https://openalex.org/W2036961426","https://openalex.org/W2042923641","https://openalex.org/W2055259417","https://openalex.org/W2070775894","https://openalex.org/W2072210640","https://openalex.org/W2099537756","https://openalex.org/W2118778876","https://openalex.org/W2123991163","https://openalex.org/W2146973388","https://openalex.org/W2147778310","https://openalex.org/W2152845220","https://openalex.org/W2155032609","https://openalex.org/W2155230502","https://openalex.org/W2156186849","https://openalex.org/W2170528665","https://openalex.org/W2229250518","https://openalex.org/W2267469130","https://openalex.org/W2515148583","https://openalex.org/W2544274814","https://openalex.org/W2566711147","https://openalex.org/W2618267215","https://openalex.org/W2640092413","https://openalex.org/W2652625053","https://openalex.org/W2728389594","https://openalex.org/W2741014554","https://openalex.org/W2752328771","https://openalex.org/W2765700031","https://openalex.org/W2767162229","https://openalex.org/W2773994137","https://openalex.org/W2787222284","https://openalex.org/W2797113766","https://openalex.org/W2802459825","https://openalex.org/W2883128990","https://openalex.org/W2883434486","https://openalex.org/W2905954184","https://openalex.org/W2915352631","https://openalex.org/W2926494289","https://openalex.org/W2954594758","https://openalex.org/W2962768977","https://openalex.org/W3013607954","https://openalex.org/W3087873898","https://openalex.org/W3194872594","https://openalex.org/W3198061885","https://openalex.org/W6601717625","https://openalex.org/W6605925781","https://openalex.org/W6668589255","https://openalex.org/W6678143508","https://openalex.org/W6739733836","https://openalex.org/W6743785547","https://openalex.org/W6749922869","https://openalex.org/W6752990524","https://openalex.org/W6753194412","https://openalex.org/W6761651918","https://openalex.org/W6772849236"],"related_works":["https://openalex.org/W340065115","https://openalex.org/W2284359849","https://openalex.org/W4388107720","https://openalex.org/W1989218486","https://openalex.org/W2357280991","https://openalex.org/W4285586714","https://openalex.org/W1599521561","https://openalex.org/W2289378658","https://openalex.org/W1531360494","https://openalex.org/W2093529019"],"abstract_inverted_index":{"We":[0,199],"present":[1],"<tex":[2,23,147,156,181],"xmlns:mml=\"http://www.w3.org/1998/Math/MathML\"":[3,24,148,157,182],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">$\\text{DY}^{\\star}$</tex>":[4,149],",":[5],"a":[6,72,87,153,162,168,188,207],"new":[7,89],"formal":[8],"verification":[9],"framework":[10,33],"for":[11,35,82,121,196,239],"the":[12,22,64,94,99,103,122,201,213,224,231],"symbolic":[13,30,170,209],"security":[14,139,174,194,210,243],"analysis":[15,211],"of":[16,66,75,155,164,203,212,223,235,248],"cryptographic":[17],"protocol":[18,37,54,109,130,166,197,215,225,249],"code":[19],"written":[20],"in":[21],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">$\\mathrm{F}^{\\star}$</tex>":[25,158,183],"programming":[26],"language.":[27],"Unlike":[28],"automated":[29],"provers,":[31],"our":[32],"accounts":[34],"advanced":[36],"features":[38],"like":[39,53,141],"unbounded":[40,246],"loops":[41],"and":[42,57,107,118,137,144,172,176,229,241],"mutable":[43,129],"recursive":[44],"data":[45],"structures,":[46],"as":[47,49,152],"well":[48],"low-level":[50,165],"implementation":[51,222],"details":[52],"state":[55],"machines":[56],"message":[58],"formats,":[59],"which":[60],"are":[61],"often":[62],"at":[63],"root":[65],"real-world":[67],"attacks.":[68],"Our":[69],"work":[70],"extends":[71],"long":[73],"line":[74],"research":[76],"on":[77,219],"using":[78,125,180],"dependent":[79,126],"type":[80],"systems":[81],"this":[83,204],"task,":[84],"but":[85],"takes":[86],"fundamentally":[88],"approach":[90,112,205],"by":[91],"explicitly":[92],"modeling":[93],"global":[95],"trace-based":[96,106,138],"semantics":[97],"within":[98],"framework,":[100],"hence":[101],"bridging":[102],"gap":[104],"between":[105],"type-based":[108],"analyses.":[110],"This":[111],"enables":[113],"us":[114],"to":[115,237],"uniformly,":[116],"precisely,":[117],"soundly":[119],"model,":[120],"first":[123,232],"time":[124],"types,":[127],"long-lived":[128],"state,":[131],"equational":[132],"theories,":[133],"fine-grained":[134],"dynamic":[135],"corruption,":[136],"properties":[140],"forward":[142,240],"secrecy":[143],"post-compromise":[145,242],"security.":[146],"is":[150,217,230],"built":[151],"library":[154,186],"modules":[159],"that":[160,191,216],"includes":[161],"model":[163],"execution,":[167],"Dolev-Yao":[169],"attacker,":[171],"generic":[173],"abstractions":[175],"lemmas,":[177],"all":[178],"verified":[179],".":[184],"The":[185],"exposes":[187],"high-level":[189],"API":[190],"facilitates":[192],"succinct":[193],"proofs":[195],"code.":[198],"demonstrate":[200],"effectiveness":[202],"through":[206],"detailed":[208],"Signal":[214,236],"based":[218],"an":[220,245],"interoperable":[221],"from":[226],"prior":[227],"work,":[228],"mechanized":[233],"proof":[234],"account":[238],"over":[244],"number":[247],"rounds.":[250]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2025,"cited_by_count":9},{"year":2024,"cited_by_count":5},{"year":2023,"cited_by_count":3},{"year":2022,"cited_by_count":4},{"year":2021,"cited_by_count":2}],"updated_date":"2026-05-11T08:15:01.531666","created_date":"2025-10-10T00:00:00"}