Data

Tools

Indexes

Applications

Experiments

Open Source Science

secure-deletion

Generic methodology for the verification of strong security properties in protocol implementations like Signal (Master’s Thesis)

https://github.com/hugoqnc/secure-deletion

Science Score: 57.0%

This score indicates how likely this project is to be science-related based on various indicators:

  • CITATION.cff file
    Found CITATION.cff file
  • codemeta.json file
    Found codemeta.json file
  • .zenodo.json file
    Found .zenodo.json file
  • DOI references
    Found 2 DOI reference(s) in README
  • Academic publication links
  • Academic email domains
  • Institutional organization owner
  • JOSS paper metadata
  • Scientific vocabulary similarity
    Low similarity (7.0%) to scientific vocabulary
Last synced: 10 months ago · JSON representation ·

Repository

Generic methodology for the verification of strong security properties in protocol implementations like Signal (Master’s Thesis)

Basic Info
Statistics
  • Stars: 1
  • Watchers: 1
  • Forks: 0
  • Open Issues: 0
  • Releases: 0
Created over 2 years ago · Last pushed over 2 years ago
Metadata Files
Readme Citation

README.md

Secure Deletion of Sensitive Data in Protocol Implementations

Master's Thesis — ETH Zürich — Hugo Queinnec — 2023

Hello

Abstract

Security protocols are crucial for protecting sensitive information and communications in today's digital age. Even a minor flaw in how these protocols are implemented can lead to serious consequences. Hence, proving the implementations secure is attractive as we prove the absence of such flaws.

Arquint et al. propose a generic and modular methodology to verify the security of protocol implementations. We extend their methodology to reason about ephemeral and time-sensitive data, which must be deleted within certain time frames. This enhancement allows us to verify strong security properties, such as forward secrecy and post-compromise security, for protocols that frequently renew their keys, such as Signal. Our contributions encompass a conceptual expansion of their methodology and an extension of their Go library, which simplifies the verification of protocol implementations in Go. A case study, featuring a Signal-like protocol implementation, showcases expressiveness and practical applicability of our methodology extension.

Repository

This repository contains the source code associated to this Master's thesis, as well as the Latex source files of the project description and the final report. It is organized as follows: - library contains the source code of the extended Reusable Verification Library in Go. - ratcheting-protocol contains the source code of the full ratcheting protocol implementation (and specification) in Go. As explained in the report, this implementation is not yet complete. - report contains the Latex source files of the final report. - description contains the Latex source files of the project description.

Owner

  • Name: Hugo Queinnec
  • Login: hugoqnc
  • Kind: user
  • Location: France

Computer Science Student in Télécom Paris & ETH Zürich.

Citation (CITATION.cff) 

cff-version: 1.2.0
message: "If you mention this Master's thesis or use this software, please cite it as below."
authors:
- family-names: "Queinnec"
  given-names: "Hugo"
title: "Secure Deletion of Sensitive Data in Protocol Implementations"
date-released: 2023-09-24
url: "https://github.com/hugoqnc/Secure-Deletion"
preferred-citation:
  type: article
  authors:
  - family-names: "Queinnec"
    given-names: "Hugo"
  title: "Secure Deletion of Sensitive Data in Protocol Implementations"
  year: 2023

GitHub Events

Total
  • Watch event: 1
Last Year
  • Watch event: 1

Issues and Pull Requests

Last synced: about 2 years ago

All Time
  • Total issues: 0
  • Total pull requests: 0
  • Average time to close issues: N/A
  • Average time to close pull requests: N/A
  • Total issue authors: 0
  • Total pull request authors: 0
  • Average comments per issue: 0
  • Average comments per pull request: 0
  • Merged pull requests: 0
  • Bot issues: 0
  • Bot pull requests: 0
Past Year
  • Issues: 0
  • Pull requests: 0
  • Average time to close issues: N/A
  • Average time to close pull requests: N/A
  • Issue authors: 0
  • Pull request authors: 0
  • Average comments per issue: 0
  • Average comments per pull request: 0
  • Merged pull requests: 0
  • Bot issues: 0
  • Bot pull requests: 0
View more stats
Top Authors
Issue Authors
Pull Request Authors
Top Labels
Issue Labels
Pull Request Labels