Join GitHub today
GitHub is home to over 40 million developers working together to host and review code, manage projects, and build software together.Sign up
Adds Verifpal model (formal verification) #30
I also moved the Proverif report out to a new formal-verification directory.
Formal verification is interesting. Verifpal's specification is pleasantly intuitive, so I modeled salt-channel.
Here's an example of the output:
It would be neat to have the Proverif model added to the repo for comparison / examination.
…dels to match Proverif report The ServerSigKey on ServerAuth and FullAuth are a bit of a hack. Verifpal doesn't support multiple assignment, aliasing or anything that would allow a principal to send the same information twice. That's what ServerSigKey is sending the public key that we *already* got via pre-auth. By hashing the sig in M1's ServerSigKey, we can model the function. Could be revisited if Verifpal gains the ability in the future.
I added commits to improve the model added two models. There are now three models that should correspond to the three models tested in the Proverif report:
I named the Verifpal files to match (notice vp suffix vs. pv suffix).
If you're interested in committing these changes, I'll squash them down to a single commit.
This looks really interesting. I have no idea how to interpret the input, but looking into the tool now. Tried running SaltChannelFullAuth.vp on my computer, but it seems to take very long time (didn't complete during the night). Does it take this long for you as well?