reducing search space for trace equivalence checking
play

Reducing search space for trace equivalence checking FOSAD 2013 - PowerPoint PPT Presentation

Dec 26, 2023 •430 likes •891 views

Reducing search space for trace equivalence checking FOSAD 2013 Lucca Hirschi LSV, ENS Cachan September 5, 2013 David Baelde Stphanie Delaune joint work with and LSV LSV Introduction Model Big Picture Differentiation Conclusion

  1. Reducing search space for trace equivalence checking FOSAD 2013 Lucca Hirschi LSV, ENS Cachan September 5, 2013 David Baelde Stéphanie Delaune joint work with and LSV LSV

  2. Introduction Model Big Picture Differentiation Conclusion Context Prove automatically security properties of cryptographic protocols using formal methods. Lucca Hirschi FOSAD 2013: Reducing search space for trace equivalence checking 2 / 20

  3. Introduction Model Big Picture Differentiation Conclusion Context Prove automatically security properties of cryptographic protocols using formal methods. Tools Applied- π models protocols (Dolev-Yao model); Lucca Hirschi FOSAD 2013: Reducing search space for trace equivalence checking 2 / 20

  4. Introduction Model Big Picture Differentiation Conclusion Context Prove automatically security properties of cryptographic protocols using formal methods. Tools Applied- π models protocols (Dolev-Yao model); reachability or equivalence model security properties; Lucca Hirschi FOSAD 2013: Reducing search space for trace equivalence checking 2 / 20

  5. Introduction Model Big Picture Differentiation Conclusion Context Prove automatically security properties of cryptographic protocols using formal methods. Tools Applied- π models protocols (Dolev-Yao model); reachability or equivalence model security properties; algorithms check reachability or equivalence. Lucca Hirschi FOSAD 2013: Reducing search space for trace equivalence checking 2 / 20

  6. Introduction Model Big Picture Differentiation Conclusion Context Prove automatically security properties of cryptographic protocols using formal methods. Tools Applied- π models protocols (Dolev-Yao model); reachability or equivalence model security properties; algorithms check reachability or equivalence. Issue Main bottleneck: size of search space (interleavings). Lucca Hirschi FOSAD 2013: Reducing search space for trace equivalence checking 2 / 20

  7. Introduction Model Big Picture Differentiation Conclusion Context Prove automatically security properties of cryptographic protocols using formal methods. Tools Applied- π models protocols (Dolev-Yao model); reachability or equivalence model security properties; algorithms check reachability or equivalence. Issue Main bottleneck: size of search space (interleavings). Our Contribution Reduce search space of equivalence checking using POR ideas by eliminating a lot of redundancies. Lucca Hirschi FOSAD 2013: Reducing search space for trace equivalence checking 2 / 20

  8. Introduction Model Big Picture Differentiation Conclusion Our Contribution Reduce search space of equivalence checking using POR ideas by eliminating a lot of redundancies. Sebastian Mödersheim, Luca Vigano, and David Basin. Constraint differentiation: Search-space reduction for the constraint-based analysis of security protocols. Journal of Computer Security , 18(4):575–618, 2010. Lucca Hirschi FOSAD 2013: Reducing search space for trace equivalence checking 3 / 20

  9. Introduction Model Big Picture Differentiation Conclusion Outline Introduction 1 Model 2 Big Picture 3 Differentiation 4 Conclusion 5 Lucca Hirschi FOSAD 2013: Reducing search space for trace equivalence checking 4 / 20

  10. Introduction Model Big Picture Differentiation Conclusion Outline Introduction 1 Model 2 Big Picture 3 Differentiation 4 Conclusion 5 Lucca Hirschi FOSAD 2013: Reducing search space for trace equivalence checking 5 / 20

  11. Introduction Model Big Picture Differentiation Conclusion Applied- π Terms T : a given set of terms modulo an equational theory. E.g. dec ( enc ( m , k ) , k ) = m . Simple Processes P c ::= 0 | [ T ] in ( c , x ) | [ T ] out ( c , m ) . P c m 2 T P s ::= P c 1 | P c 2 | . . . P c n c i 6 = c j Lucca Hirschi FOSAD 2013: Reducing search space for trace equivalence checking 6 / 20

  12. Introduction Model Big Picture Differentiation Conclusion Applied- π Terms T : a given set of terms modulo an equational theory. E.g. dec ( enc ( m , k ) , k ) = m . Simple Processes P c ::= 0 | [ T ] in ( c , x ) | [ T ] out ( c , m ) . P c m 2 T P s ::= P c 1 | P c 2 | . . . P c n c i 6 = c j Process: ( P s ; Φ ) ( Φ set of messages revealed to the intruder). Lucca Hirschi FOSAD 2013: Reducing search space for trace equivalence checking 6 / 20

  13. Introduction Model Big Picture Differentiation Conclusion Applied- π Terms T : a given set of terms modulo an equational theory. E.g. dec ( enc ( m , k ) , k ) = m . Simple Processes P c ::= 0 | [ T ] in ( c , x ) | [ T ] out ( c , m ) . P c m 2 T P s ::= P c 1 | P c 2 | . . . P c n c i 6 = c j Process: ( P s ; Φ ) ( Φ set of messages revealed to the intruder). Semantics ν w . out ( c , w ) ( { [ T ] . out ( c , m ) . P } ] P ; Φ ) � � � � � � � ! ( { P } ] P ; Φ [ { w B m } ) if T ^ w fresh in Φ in ( c , t ) ( { in ( c , x ) . P } ] P ; Φ ) � � � ! ( { P [ x 7! u ] } [ P ; Φ ) if t Φ = u ^ fv ( t ) ✓ dom ( Φ ) Lucca Hirschi FOSAD 2013: Reducing search space for trace equivalence checking 6 / 20

  14. Introduction Model Big Picture Differentiation Conclusion Equivalence Trace equivalence Φ ⇠ Φ 0 ( ) M Φ 0 = N Φ 0 and ) 8 M , N , M Φ = N Φ ( conversely; s ! B 0 ^ Φ A 0 ⇠ Φ B 0 and conversely. s A ⇡ B ( ) 8 A ! A 0 , 9 B 0 , B � � Trace equivalence allows to model anonymity, unlikability, etc. Lucca Hirschi FOSAD 2013: Reducing search space for trace equivalence checking 7 / 20

  15. Introduction Model Big Picture Differentiation Conclusion Equivalence Trace equivalence Φ ⇠ Φ 0 ( ) M Φ 0 = N Φ 0 and ) 8 M , N , M Φ = N Φ ( conversely; s ! B 0 ^ Φ A 0 ⇠ Φ B 0 and conversely. s A ⇡ B ( ) 8 A � ! A 0 , 9 B 0 , B � Trace equivalence allows to model anonymity, unlikability, etc. Our aim Improve algorithms / programs checking trace equivalence (for simple processes). Lucca Hirschi FOSAD 2013: Reducing search space for trace equivalence checking 7 / 20

  16. Introduction Model Big Picture Differentiation Conclusion Symbolic calculus - 1 Inputs messages: infinitely branching symbolic calculus. Lucca Hirschi FOSAD 2013: Reducing search space for trace equivalence checking 8 / 20

  17. Introduction Model Big Picture Differentiation Conclusion Symbolic calculus - 1 Inputs messages: infinitely branching symbolic calculus. System of Constraints Constraints: ( X B x ); u = v , ( fv ? ( X ) : dom ( Φ )) ; System of constraints: ( Φ , D ) . Lucca Hirschi FOSAD 2013: Reducing search space for trace equivalence checking 8 / 20

  18. Introduction Model Big Picture Differentiation Conclusion Symbolic calculus - 1 Inputs messages: infinitely branching symbolic calculus. System of Constraints Constraints: ( X B x ); u = v , ( fv ? ( X ) : dom ( Φ )) ; System of constraints: ( Φ , D ) . P = out ( c , k ) . in ( c , x ) . out ( c , h k , x i ) . in ( c , y ) leads to D = { X B x ; Y B y ; ( fv ? ( X ) : { w } ); ( fv ? ( Y ) = { w ; w 0 } ) } Φ = { w B k ; w 0 B h k , x i } Lucca Hirschi FOSAD 2013: Reducing search space for trace equivalence checking 8 / 20

  19. Introduction Model Big Picture Differentiation Conclusion Symbolic calculus - 1 Inputs messages: infinitely branching symbolic calculus. System of Constraints Constraints: ( X B x ); u = v , ( fv ? ( X ) : dom ( Φ )) ; System of constraints: ( Φ , D ) . P = out ( c , k ) . in ( c , x ) . out ( c , h k , x i ) . in ( c , y ) leads to D = { X B x ; Y B y ; ( fv ? ( X ) : { w } ); ( fv ? ( Y ) = { w ; w 0 } ) } Φ = { w B k ; w 0 B h k , x i } Symbolic processes ( P ; Φ ; D ; tr ) Lucca Hirschi FOSAD 2013: Reducing search space for trace equivalence checking 8 / 20

  20. Introduction Model Big Picture Differentiation Conclusion Symbolic Calculus - 2 Semantics: ν w . out ( c , X ) ( { [ T ] . out ( c , m ) . P } ] P ; Φ ; D ; tr ) � � � � � � � ! s ( { P } ] P ; Φ [ { w B m } ; D [ { T } ; tr . ν w . out ( c , X )) if w fresh in φ in ( c , X ) ( { [ T ] . in ( c , x ) . P } ] P ; Φ ; D ; tr ) � � � � ! s ( P ; Φ ; D [ { T ; ( X B x ); ( fv ? ( X ) : dom ( Φ )) } ; tr . in ( c , X )) Lucca Hirschi FOSAD 2013: Reducing search space for trace equivalence checking 9 / 20

  21. Introduction Model Big Picture Differentiation Conclusion Symbolic Calculus - 2 Semantics: ν w . out ( c , X ) ( { [ T ] . out ( c , m ) . P } ] P ; Φ ; D ; tr ) � � � � � � � ! s ( { P } ] P ; Φ [ { w B m } ; D [ { T } ; tr . ν w . out ( c , X )) if w fresh in φ in ( c , X ) ( { [ T ] . in ( c , x ) . P } ] P ; Φ ; D ; tr ) � � � � ! s ( P ; Φ ; D [ { T ; ( X B x ); ( fv ? ( X ) : dom ( Φ )) } ; tr . in ( c , X )) Symbolic equivalence ! s A 0 8 Θ 2 S ol ( Φ A 0 , D A 0 ) , 9 B 0 B s s A ⇡ s B ( ) 8 A � � ! s B 0 , Θ 2 S ol ( Φ B 0 , D B 0 ) and Φ A 0 ⇠ Φ B 0 and conversely. Lucca Hirschi FOSAD 2013: Reducing search space for trace equivalence checking 9 / 20

  22. Introduction Model Big Picture Differentiation Conclusion Outline Introduction 1 Model 2 Big Picture 3 Differentiation 4 Conclusion 5 Lucca Hirschi FOSAD 2013: Reducing search space for trace equivalence checking 10 / 20

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Checking NFA Equivalence with Bisimulations up to Congruence Filippo Bonchi and Damien Pous

Checking NFA Equivalence with Bisimulations up to Congruence Filippo Bonchi and Damien Pous

Checking NFA Equivalence with Bisimulations up to Congruence Filippo Bonchi and Damien Pous CNRS, LIP, ENS Lyon POPL, Roma, 25.1.2o13 Language equivalence of finite automata Useful for model checking: check that a program refines its

1.36k views • 92 slides
Program Equivalence From Trace Equivalence Tim Wood 1 Sophia Drossopoulou 1 1 Imperial College

Program Equivalence From Trace Equivalence Tim Wood 1 Sophia Drossopoulou 1 1 Imperial College

Program Equivalence From Trace Equivalence Tim Wood 1 Sophia Drossopoulou 1 1 Imperial College London Wood, Drossopoulou (Imperial College London) Program Equivalence October 2014 1 / 30 Context Program maintenance is a common and important

1.02k views • 61 slides
1 Trace Cache Summary of Reducing Cache Hit Time Trace: a dynamic sequence of Small and simple

1 Trace Cache Summary of Reducing Cache Hit Time Trace: a dynamic sequence of Small and simple

Improving Cache Performance 1. Reducing miss rates 3. Reducing miss penalty or miss rates via parallelism Larger block size Lecture 18: Reducing Cache Hit Non-blocking caches larger cache size Time and Main Memory Design

285 views • 3 slides
Reducing the Search Space of Resource Constrained DCOPs T. Matsui 1) , M. Silaghi 2) , K.

Reducing the Search Space of Resource Constrained DCOPs T. Matsui 1) , M. Silaghi 2) , K.

Reducing the Search Space of Resource Constrained DCOPs T. Matsui 1) , M. Silaghi 2) , K. Hirayama 3) , M. Yokoo 4) , B. Faltings 5) and H. Matsuo 1) 1) Nagoya Institute of Technology, 2) Florida Institute of Technology, 3) Kobe University, 4)

567 views • 22 slides
Equivalence test for the trace iterated matrix multiplication polynomial Janaky Murthy M.Tech

Equivalence test for the trace iterated matrix multiplication polynomial Janaky Murthy M.Tech

Equivalence test for the trace iterated matrix multiplication polynomial Janaky Murthy M.Tech Research Advisor: Prof. Chandan Saha Department of Computer Science and Automation IISc Bangalore 1 Overview Introduction and Motivation

552 views • 52 slides
Equivalence checking of prefix-free transducers and deterministic two-tape automata V.A.

Equivalence checking of prefix-free transducers and deterministic two-tape automata V.A.

Equivalence checking of prefix-free transducers and deterministic two-tape automata V.A. Zakharov Lomonosov Moscow State University December 14, 2018 Preliminaries A word over alphabet A is any finite sequence w = a 1 a 2 . . . a k of letters

1.05k views • 62 slides
Reducing CTL-Live Model Checking to First-Order Logic Validity Checking Amirhossein Vakili and

Reducing CTL-Live Model Checking to First-Order Logic Validity Checking Amirhossein Vakili and

Reducing CTL-Live Model Checking to First-Order Logic Validity Checking Amirhossein Vakili and Nancy A. Day Cheriton School of Computer Science 24 October 2014 Vakili and Day (U. of Waterloo) CTL-Live Model Checking in FOL 24 October 2014 1

535 views • 28 slides
Design Verification Sequential Equivalence Checking Virendra Singh Associate Professor

Design Verification Sequential Equivalence Checking Virendra Singh Associate Professor

Design Verification Sequential Equivalence Checking Virendra Singh Associate Professor Computer Architecture and Dependable Systems Lab Department of Electrical Engineering Indian Institute of Technology Bombay

397 views • 24 slides
Decision Diagrams & Equivalence Checking --- Introduction to Formal V Instructor : Debdeep

Decision Diagrams & Equivalence Checking --- Introduction to Formal V Instructor : Debdeep

Decision Diagrams & Equivalence Checking --- Introduction to Formal V Instructor : Debdeep Mukhopadhyay, CSE IIT Madras Introduction Fundamental Problem is to find out whether two Boolean Functions are functionally equivalent Are

775 views • 65 slides
Search Algorithms 15-110 - Monday 2/24 Learning Objectives Trace over recursive functions

Search Algorithms 15-110 - Monday 2/24 Learning Objectives Trace over recursive functions

Search Algorithms 15-110 - Monday 2/24 Learning Objectives Trace over recursive functions that use multiple recursive calls with Towers of Hanoi Recognize linear search on lists and in recursive contexts Use binary search when reading

465 views • 30 slides
Higher-Order Model Checking III: Reducing Model Checking to Type Inference IV: Applications:

Higher-Order Model Checking III: Reducing Model Checking to Type Inference IV: Applications:

Higher-Order Model Checking III: Reducing Model Checking to Type Inference IV: Applications: Verifying Higher-order Functional Programs Luke Ong University of Oxford http://www.cs.ox.ac.uk/people/luke.ong/personal/ http://mjolnir.cs.ox.ac.uk

856 views • 26 slides
Complexity of Equivalence Checking Problems Zden ek Sawa Department of Computer Science

Complexity of Equivalence Checking Problems Zden ek Sawa Department of Computer Science

Complexity of Equivalence Checking Problems Zden ek Sawa Department of Computer Science Technical University of Ostrava, 17. listopadu 15 708 33 OstravaPoruba, Czech Republic zdenek.sawa@vsb.cz Examples

309 views • 14 slides
Concurrency Theory Winter Semester 2019/20 Lecture 11: Trace Equivalence Joost-Pieter Katoen and

Concurrency Theory Winter Semester 2019/20 Lecture 11: Trace Equivalence Joost-Pieter Katoen and

Concurrency Theory Winter Semester 2019/20 Lecture 11: Trace Equivalence Joost-Pieter Katoen and Thomas Noll Software Modeling and Verification Group RWTH Aachen University https://moves.rwth-aachen.de/teaching/ws-19-20/ct/ Introduction

795 views • 66 slides
Foundations of Artificial Intelligence 9. State-Space Search: Tree Search and Graph Search Malte

Foundations of Artificial Intelligence 9. State-Space Search: Tree Search and Graph Search Malte

Foundations of Artificial Intelligence 9. State-Space Search: Tree Search and Graph Search Malte Helmert Universit at Basel March 7, 2016 Introduction Tree Search Graph Search Evaluating Search Algorithms Summary State-Space Search:

550 views • 23 slides
Finite and infinite traces, inductively and coinductively Jurriaan Rot WAIT 2018 1/16 Overview

Finite and infinite traces, inductively and coinductively Jurriaan Rot WAIT 2018 1/16 Overview

Finite and infinite traces, inductively and coinductively Jurriaan Rot WAIT 2018 1/16 Overview Classic fact: if an LTS is image-finite, then finite trace equivalence coincides with infinite trace equivalence Standard proof:

628 views • 16 slides
Equivalence Checking using Grbner Bases Amr Sayed-Ahmed 1 Daniel Groe 1 , 2 Mathias Soeken 3

Equivalence Checking using Grbner Bases Amr Sayed-Ahmed 1 Daniel Groe 1 , 2 Mathias Soeken 3

Equivalence Checking using Grbner Bases Amr Sayed-Ahmed 1 Daniel Groe 1 , 2 Mathias Soeken 3 Rolf Drechsler 1 , 2 1 University of Bremen, Germany 2 DFKI GmbH, Germany 3 EPFL, Switzerland Email: asahmed@informatik.uni-bremen.de FMCAD, October

1.22k views • 62 slides
File-Format Interoperability or the legacy document conversion powerhouse - Thorsten Behrens -

File-Format Interoperability or the legacy document conversion powerhouse - Thorsten Behrens -

File-Format Interoperability or the legacy document conversion powerhouse - Thorsten Behrens - tbehrens@suse.com LibreOffice Hacker at SUSE Philosophy LibreOffice promotes, and lives on, open standards But the world is full of closed

514 views • 9 slides
STAR: croSs-plaTform App Recommendation Da Cao, Xiangnan He, Liqiang Nie, Xiaochi Wei, Xia Hu,

STAR: croSs-plaTform App Recommendation Da Cao, Xiangnan He, Liqiang Nie, Xiaochi Wei, Xia Hu,

STAR: croSs-plaTform App Recommendation Da Cao, Xiangnan He, Liqiang Nie, Xiaochi Wei, Xia Hu, Shunxiang Wu, Tat-Seng Chua This work was finished when Da Cao was a Ph.D. student in XMU and a visiting student in NUS. Currently Da Cao is an

390 views • 21 slides
EVALUATING R E C O M M E N D E R SYSTEMS A C C U R A C Y A N D B E Y O N D

EVALUATING R E C O M M E N D E R SYSTEMS A C C U R A C Y A N D B E Y O N D

EVALUATING R E C O M M E N D E R SYSTEMS A C C U R A C Y A N D B E Y O N D GITHUB.COM/HCORONA/AICS-2016 H U M B E R TO C O R O N A @ TO TO PA M P I N 2 4 -1 0 - 2 0 1 6 A B O U T M E 2 R E F E R E N C E S [1] Humberto Jess Corona

377 views • 35 slides
Apologies to Neil Gaiman and Terry Pratchett Good Omens 1 Matt Graeber has a good talk if you

Apologies to Neil Gaiman and Terry Pratchett Good Omens 1 Matt Graeber has a good talk if you

Apologies to Neil Gaiman and Terry Pratchett Good Omens 1 Matt Graeber has a good talk if you are more curious about evil uses https://www.youtube.com/watch?v=0SjMgnGwpq8 Abusing Windows Management Instrumentation (WMI) @mattifestation Lots of

1.15k views • 41 slides
Dependability in the real world Dependability in the real world p Dependability needs arise from

Dependability in the real world Dependability in the real world p Dependability needs arise from

P redicting redicting V alue from alue from D esign esign Mary Shaw with Ashish Arora, Shawn Butler, Vahe Poladian, Chris Scaffidi Carnegie Mellon University http://www.cs.cmu.edu/~shaw/ Institute for Software Research, International 1

654 views • 63 slides
Model Order Reduction for Wave Equations Rob F. Remis and J orn T. Zimmerling DCSE Fall

Model Order Reduction for Wave Equations Rob F. Remis and J orn T. Zimmerling DCSE Fall

General solution and symmetry Krylov MOR Model Order Reduction for Wave Equations Rob F. Remis and J orn T. Zimmerling DCSE Fall School, Delft, November 4 8, 2019 1 General solution and symmetry Krylov MOR General solution and

479 views • 30 slides
Running Wikipedia.org Varnishcon 2016 Amsterdam Emanuele Rocca Wikimedia Foundation June 17th

Running Wikipedia.org Varnishcon 2016 Amsterdam Emanuele Rocca Wikimedia Foundation June 17th

Running Wikipedia.org Varnishcon 2016 Amsterdam Emanuele Rocca Wikimedia Foundation June 17th 2016 1 1,000,000 HTTP Requests 1 Outline Wikimedia Foundation Trafc Engineering Upgrading to Varnish 4 Future directions 2

865 views • 61 slides
Statistical Inverse Problems and abstract inverse problems examples Instrumental Variables

Statistical Inverse Problems and abstract inverse problems examples Instrumental Variables

Statistical Inverse Problems and Instrumental Variables Thorsten Hohage inverse problems Statistical Inverse Problems and abstract inverse problems examples Instrumental Variables regression problems and statistical inverse problems

1.29k views • 56 slides

More recommend