Section: New Results

A guide to use Coq for security evaluations

Participants : Maxime Dénès, Yves Bertot, Vincent Laporte, Arnaud Fontaine [ANSSI] , Thomas Letan [ANSSI] .

Common Criteria are an international standard for computer security certification. Evaluations are rated with Evaluation Assurance Levels, from 1 to 7. Eal6 and EAL7 require developers to conduct a formal analysis of their product with respect to certain security properties.

In France, the Certification Body (the entity emitting Common Criteria certificates) is part of the ANSSI (l’Agence Nationale de la Sécurité des Systèmes d’Information, also referred to as the French Cybersecurity Agency), and is one of the few emitters of EAL6 and EAL7 certificates.

Coq has already been used to support Common Criteria formal analysis. The ANSSI and Inria have been collaborating on an authoritative document to introduce guidelines and rules for formal analyses supported by Coq, in order to make these developments easier to read and evaluate.