Previous | 
Home
Section: New Results
Security Proofs for Revocation
Participants : Graham Steel [correspondant] , Véronique Cortier, Cyrille Wiedling.
security API, key management, formal methods, security proofs
Revocation of expired or corrupted keys is a common feature of industrially deployed key management systems but an aspect that is almost always missing from formal models. We succeeded in adding revocation to a formal specification of a key management API allowing the proof of strong security properties after corrupted keys are revoked. In particular we showed a self-healing property whereby after a corrupted key expires, after a certain amount of time, the system is safe again. The work was published at ACM CCS 2012.