Name
Abstract | ||
|---|---|---|
The Internet, as it stands today, is highly vulnerable to attacks. However, little has been done to understand and verify the formal security guarantees of proposed secure inter-domain routing protocols, such as Secure BGP (S-BGP). In this paper, we develop a sound program logic for SANDLog-a declarative specification language for secure routing protocols-for verifying properties of these protocols. We prove invariant properties of SANDLog programs that run in an adversarial environment. As a step towards automated verification, we implement a verification condition generator (VCGen) to automatically extract proof obligations. VCGen is integrated into a compiler for SANDLog that can generate executable protocol implementations; and thus, both verification and empirical evaluation of secure routing protocols can be carried out in this unified framework. To validate our framework, we (1) encoded several proposed secure routing mechanisms in SANDLog, (2) verified variants of path authenticity properties by manually discharging the generated verification conditions in Coq, and (3) generated executable code based on SANDLog specification and ran the code in simulation. |
Year | DOI | Venue |
|---|---|---|
2014 | 10.2168/LMCS-11(4:19)2015 | Lecture Notes in Computer Science |
Keywords | Field | DocType |
Declarative networking,Program logic,Routing protocols | Specification language,Cryptographic protocol,Computer science,Program logic,Compiler,Theoretical computer science,Distributed computing,Executable,Routing protocol,Protocol implementations,The Internet | Conference |
Volume | Issue | ISSN |
8461 | 4 | 0302-9743 |
Citations | PageRank | References |
3 | 0.36 | 23 |
Authors | ||
6 | ||
Name | Order | Citations | PageRank |
|---|---|---|---|
| Chen Chen | 1 | 6 | 2.22 |
| Limin Jia | 2 | 666 | 71.97 |
| Hao Xu | 3 | 3 | 0.36 |
| Cheng Luo | 4 | 3 | 0.36 |
| Wenchao Zhou | 5 | 451 | 32.30 |
| Boon Thau Loo | 6 | 2118 | 131.09 |