Code Security Analysis of a Biometric Authentication System Using Automated Theorem Provers

Tucson, Arizona December 05-December 09

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/CSAC.2005.15

21st Annual Computer Security Applica ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Jan Jurjens

	ASCII Text	x
	Jan Jurjens, "Code Security Analysis of a Biometric Authentication System Using Automated Theorem Provers," Computer Security Applications Conference, Annual, pp. 138-149, 21st Annual Computer Security Applications Conference (ACSAC'05), 2005.

	BibTex	x
	@article{ 10.1109/CSAC.2005.15, author = {Jan Jurjens}, title = {Code Security Analysis of a Biometric Authentication System Using Automated Theorem Provers}, journal ={Computer Security Applications Conference, Annual}, volume = {0}, year = {2005}, issn = {1063-9527}, pages = {138-149}, doi = {http://doi.ieeecomputersociety.org/10.1109/CSAC.2005.15}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computer Security Applications Conference, Annual TI - Code Security Analysis of a Biometric Authentication System Using Automated Theorem Provers SN - 1063-9527 SP138 EP149 A1 - Jan Jurjens, PY - 2005 KW - null VL - 0 JA - Computer Security Applications Conference, Annual ER -

Jan Jurjens, TU Munich, Germany

Understanding the security goals provided by cryptographic protocol implementations is known to be difficult, since security requirements such as secrecy, integrity and authenticity of data are notoriously hard to establish, especially in the context of cryptographic interactions. A lot of research has been devoted to developing formal techniques to analyze abstract specifications of cryptographic protocols. Less attention has been paid to the analysis of cryptoprotocol implementations, for which a formal link to specifications is often not available. In this paper, we apply an approach to determine security goals provided by a C implementation to a industrially-strength biometric authentication system. Our approach is based on control flow graphs and automated theorem provers for first-order logic.

Citation:

Jan Jurjens, "Code Security Analysis of a Biometric Authentication System Using Automated Theorem Provers," acsac, pp.138-149, 21st Annual Computer Security Applications Conference (ACSAC'05), 2005

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.