{"id":"https://openalex.org/W4310881471","doi":"https://doi.org/10.1145/3576915.3623105","title":"A Generic Methodology for the Modular Verification of Security Protocol Implementations","display_name":"A Generic Methodology for the Modular Verification of Security Protocol Implementations","publication_year":2023,"publication_date":"2023-11-15","ids":{"openalex":"https://openalex.org/W4310881471","doi":"https://doi.org/10.1145/3576915.3623105"},"language":"en","primary_location":{"id":"doi:10.1145/3576915.3623105","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3576915.3623105","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},"type":"article","indexed_in":["arxiv","crossref","datacite"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://arxiv.org/pdf/2212.02626","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5024906464","display_name":"Linard Arquint","orcid":"https://orcid.org/0000-0002-6230-8014"},"institutions":[{"id":"https://openalex.org/I35440088","display_name":"ETH Zurich","ror":"https://ror.org/05a28rw58","country_code":"CH","type":"education","lineage":["https://openalex.org/I2799323385","https://openalex.org/I35440088"]}],"countries":["CH"],"is_corresponding":false,"raw_author_name":"Linard Arquint","raw_affiliation_strings":["ETH Zurich, Z\u00fcrich, Switzerland"],"raw_orcid":"https://orcid.org/0000-0002-6230-8014","affiliations":[{"raw_affiliation_string":"ETH Zurich, Z\u00fcrich, Switzerland","institution_ids":["https://openalex.org/I35440088"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5015262216","display_name":"Malte Schwerhoff","orcid":"https://orcid.org/0000-0003-2569-9121"},"institutions":[{"id":"https://openalex.org/I35440088","display_name":"ETH Zurich","ror":"https://ror.org/05a28rw58","country_code":"CH","type":"education","lineage":["https://openalex.org/I2799323385","https://openalex.org/I35440088"]}],"countries":["CH"],"is_corresponding":false,"raw_author_name":"Malte Schwerhoff","raw_affiliation_strings":["ETH Zurich, Z\u00fcrich, Switzerland"],"raw_orcid":"https://orcid.org/0000-0003-2569-9121","affiliations":[{"raw_affiliation_string":"ETH Zurich, Z\u00fcrich, Switzerland","institution_ids":["https://openalex.org/I35440088"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5031879088","display_name":"Vaibhav Mehta","orcid":"https://orcid.org/0000-0003-2357-3023"},"institutions":[{"id":"https://openalex.org/I205783295","display_name":"Cornell University","ror":"https://ror.org/05bnh6r87","country_code":"US","type":"education","lineage":["https://openalex.org/I205783295"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Vaibhav Mehta","raw_affiliation_strings":["Cornell University, Ithaca, NY, USA"],"raw_orcid":"https://orcid.org/0000-0003-2357-3023","affiliations":[{"raw_affiliation_string":"Cornell University, Ithaca, NY, USA","institution_ids":["https://openalex.org/I205783295"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5073853337","display_name":"P\u00e9ter M\u00fcller","orcid":"https://orcid.org/0000-0001-7001-2566"},"institutions":[{"id":"https://openalex.org/I35440088","display_name":"ETH Zurich","ror":"https://ror.org/05a28rw58","country_code":"CH","type":"education","lineage":["https://openalex.org/I2799323385","https://openalex.org/I35440088"]}],"countries":["CH"],"is_corresponding":false,"raw_author_name":"Peter M\u00fcller","raw_affiliation_strings":["ETH Zurich, Z\u00fcrich, Switzerland"],"raw_orcid":"https://orcid.org/0000-0001-7001-2566","affiliations":[{"raw_affiliation_string":"ETH Zurich, Z\u00fcrich, Switzerland","institution_ids":["https://openalex.org/I35440088"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":4,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":1.3276,"has_fulltext":false,"cited_by_count":7,"citation_normalized_percentile":{"value":0.80593892,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"1377","last_page":"1391"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11504","display_name":"Advanced Authentication Protocols Security","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11504","display_name":"Advanced Authentication Protocols Security","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11800","display_name":"User Authentication and Security Systems","score":0.9991000294685364,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9933000206947327,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7939857244491577},{"id":"https://openalex.org/keywords/modular-design","display_name":"Modular design","score":0.7432339191436768},{"id":"https://openalex.org/keywords/implementation","display_name":"Implementation","score":0.7049394845962524},{"id":"https://openalex.org/keywords/protocol","display_name":"Protocol (science)","score":0.6028521060943604},{"id":"https://openalex.org/keywords/cryptographic-protocol","display_name":"Cryptographic protocol","score":0.5090184211730957},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.4527164399623871},{"id":"https://openalex.org/keywords/computer-architecture","display_name":"Computer architecture","score":0.37582436203956604},{"id":"https://openalex.org/keywords/embedded-system","display_name":"Embedded system","score":0.3433007001876831},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.2269761562347412},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.17003926634788513}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7939857244491577},{"id":"https://openalex.org/C101468663","wikidata":"https://www.wikidata.org/wiki/Q1620158","display_name":"Modular design","level":2,"score":0.7432339191436768},{"id":"https://openalex.org/C26713055","wikidata":"https://www.wikidata.org/wiki/Q245962","display_name":"Implementation","level":2,"score":0.7049394845962524},{"id":"https://openalex.org/C2780385302","wikidata":"https://www.wikidata.org/wiki/Q367158","display_name":"Protocol (science)","level":3,"score":0.6028521060943604},{"id":"https://openalex.org/C33884865","wikidata":"https://www.wikidata.org/wiki/Q1254335","display_name":"Cryptographic protocol","level":3,"score":0.5090184211730957},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.4527164399623871},{"id":"https://openalex.org/C118524514","wikidata":"https://www.wikidata.org/wiki/Q173212","display_name":"Computer architecture","level":1,"score":0.37582436203956604},{"id":"https://openalex.org/C149635348","wikidata":"https://www.wikidata.org/wiki/Q193040","display_name":"Embedded system","level":1,"score":0.3433007001876831},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.2269761562347412},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.17003926634788513},{"id":"https://openalex.org/C142724271","wikidata":"https://www.wikidata.org/wiki/Q7208","display_name":"Pathology","level":1,"score":0.0},{"id":"https://openalex.org/C71924100","wikidata":"https://www.wikidata.org/wiki/Q11190","display_name":"Medicine","level":0,"score":0.0},{"id":"https://openalex.org/C204787440","wikidata":"https://www.wikidata.org/wiki/Q188504","display_name":"Alternative medicine","level":2,"score":0.0}],"mesh":[],"locations_count":6,"locations":[{"id":"doi:10.1145/3576915.3623105","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3576915.3623105","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},{"id":"pmh:oai:arXiv.org:2212.02626","is_oa":true,"landing_page_url":"http://arxiv.org/abs/2212.02626","pdf_url":"https://arxiv.org/pdf/2212.02626","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"text"},{"id":"pmh:doi:10.3929/ethz-b-000643184","is_oa":false,"landing_page_url":"http://hdl.handle.net/20.500.11850/643184","pdf_url":null,"source":{"id":"https://openalex.org/S4406922384","display_name":"Open MIND","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"Conference Paper"},{"id":"pmh:oai:www.research-collection.ethz.ch:20.500.11850/586837","is_oa":true,"landing_page_url":"http://hdl.handle.net/20.500.11850/586837","pdf_url":null,"source":{"id":"https://openalex.org/S4306402302","display_name":"Repository for Publications and Research Data (ETH Zurich)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I35440088","host_organization_name":"ETH Zurich","host_organization_lineage":["https://openalex.org/I35440088"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"arXiv","raw_type":"info:eu-repo/semantics/workingPaper"},{"id":"doi:10.3929/ethz-b-000586837","is_oa":true,"landing_page_url":"https://doi.org/10.3929/ethz-b-000586837","pdf_url":null,"source":{"id":"https://openalex.org/S7407051236","display_name":"ETH Z\u00fcrich Research Collection","issn_l":null,"issn":[],"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":"article-journal"},{"id":"doi:10.3929/ethz-b-000643184","is_oa":true,"landing_page_url":"https://doi.org/10.3929/ethz-b-000643184","pdf_url":null,"source":{"id":"https://openalex.org/S7407051236","display_name":"ETH Z\u00fcrich Research Collection","issn_l":null,"issn":[],"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":"article"}],"best_oa_location":{"id":"pmh:oai:arXiv.org:2212.02626","is_oa":true,"landing_page_url":"http://arxiv.org/abs/2212.02626","pdf_url":"https://arxiv.org/pdf/2212.02626","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"text"},"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","score":0.6100000143051147,"id":"https://metadata.un.org/sdg/16"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":76,"referenced_works":["https://openalex.org/W42122073","https://openalex.org/W905467040","https://openalex.org/W1483411077","https://openalex.org/W1495368328","https://openalex.org/W1545681762","https://openalex.org/W1558331296","https://openalex.org/W1565541828","https://openalex.org/W1588132240","https://openalex.org/W1698657309","https://openalex.org/W1861989620","https://openalex.org/W1905205493","https://openalex.org/W1977417404","https://openalex.org/W1985453495","https://openalex.org/W1991234099","https://openalex.org/W2002789557","https://openalex.org/W2022602927","https://openalex.org/W2029693536","https://openalex.org/W2072309970","https://openalex.org/W2101743706","https://openalex.org/W2106192381","https://openalex.org/W2112018008","https://openalex.org/W2137628566","https://openalex.org/W2141117846","https://openalex.org/W2146973388","https://openalex.org/W2152845220","https://openalex.org/W2155032609","https://openalex.org/W2156186849","https://openalex.org/W2161011930","https://openalex.org/W2166666675","https://openalex.org/W2167104015","https://openalex.org/W2170630946","https://openalex.org/W2171685273","https://openalex.org/W2267469130","https://openalex.org/W2612102454","https://openalex.org/W2618267215","https://openalex.org/W2652625053","https://openalex.org/W2765700031","https://openalex.org/W2773994137","https://openalex.org/W2780323212","https://openalex.org/W2785464537","https://openalex.org/W2792757320","https://openalex.org/W2794597218","https://openalex.org/W2860675612","https://openalex.org/W2892439125","https://openalex.org/W2913530642","https://openalex.org/W2926494289","https://openalex.org/W2944196217","https://openalex.org/W2962835979","https://openalex.org/W2964540713","https://openalex.org/W2969344532","https://openalex.org/W3003637591","https://openalex.org/W3020872719","https://openalex.org/W3092635374","https://openalex.org/W3122767180","https://openalex.org/W3122935293","https://openalex.org/W3140670915","https://openalex.org/W3183749185","https://openalex.org/W3214505304","https://openalex.org/W4200635588","https://openalex.org/W4240110690","https://openalex.org/W4245729501","https://openalex.org/W4287690093","https://openalex.org/W4385064903","https://openalex.org/W4385679766","https://openalex.org/W6632796942","https://openalex.org/W6635027040","https://openalex.org/W6660039976","https://openalex.org/W6685149266","https://openalex.org/W6693804425","https://openalex.org/W6745500291","https://openalex.org/W6749748473","https://openalex.org/W6772849236","https://openalex.org/W6891920879","https://openalex.org/W6894271754","https://openalex.org/W6969089140","https://openalex.org/W7066020431"],"related_works":["https://openalex.org/W2120447654","https://openalex.org/W2977179488","https://openalex.org/W2144453115","https://openalex.org/W2128223750","https://openalex.org/W4238532390","https://openalex.org/W2188872161","https://openalex.org/W2961779879","https://openalex.org/W797688974","https://openalex.org/W2002978035","https://openalex.org/W2282990539"],"abstract_inverted_index":{"Security":[0],"protocols":[1],"are":[2,57],"essential":[3],"building":[4],"blocks":[5],"of":[6,21,32,45,101,109,126,141,144],"modern":[7],"IT":[8],"systems.":[9,23],"Subtle":[10],"flaws":[11,34],"in":[12],"their":[13,55],"design":[14],"or":[15,69,173],"implementation":[16,179],"may":[17,85],"compromise":[18],"the":[19,30,43,77,98,107,110,145],"security":[20,103,140],"entire":[22],"It":[24],"is,":[25],"thus,":[26],"important":[27],"to":[28,52,87,121,169],"prove":[29],"absence":[31],"such":[33],"through":[35],"formal":[36],"verification.":[37],"Much":[38],"existing":[39],"work":[40],"focuses":[41],"on":[42,76,106],"verification":[44,100,117],"protocol":[46,63,111],"models,":[47],"which":[48,84],"is":[49,167],"not":[50],"sufficient":[51],"show":[53,163],"that":[54,164],"implementations":[56,64,127,143],"actually":[58],"secure.":[59],"Verification":[60],"techniques":[61],"for":[62,97,159,180],"(e.g.,":[65],"via":[66],"code":[67,82],"generation":[68],"model":[70],"extraction)":[71],"typically":[72],"impose":[73],"severe":[74],"restrictions":[75],"used":[78],"programming":[79,129],"language":[80,172],"and":[81,119,128,139,150,156],"design,":[83],"lead":[86],"sub-optimal":[88],"implementations.":[89,112],"In":[90],"this":[91],"paper,":[92],"we":[93],"present":[94],"a":[95,123,170,177],"methodology":[96,114,166],"modular":[99],"strong":[102],"properties":[104],"directly":[105],"level":[108],"Our":[113],"leverages":[115],"state-of-the-art":[116],"logics":[118],"tools":[120],"support":[122],"wide":[124],"range":[125],"languages.":[130],"We":[131,161],"demonstrate":[132],"its":[133],"effectiveness":[134],"by":[135],"verifying":[136],"memory":[137],"safety":[138],"Go":[142],"Needham-Schroeder-Lowe,":[146],"Diffie-Hellman":[147],"key":[148],"exchange,":[149],"WireGuard":[151],"protocols,":[152],"including":[153],"forward":[154],"secrecy":[155],"injective":[157],"agreement":[158],"WireGuard.":[160],"also":[162],"our":[165],"agnostic":[168],"particular":[171],"program":[174],"verifier":[175],"with":[176],"prototype":[178],"C.":[181]},"counts_by_year":[{"year":2026,"cited_by_count":2},{"year":2025,"cited_by_count":4},{"year":2024,"cited_by_count":1}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2022-12-20T00:00:00"}