论文信息 - Automated Verification of Electrum Wallet

Automated Verification of Electrum Wallet

We introduce a formal modeling in ASLan++ of the two-factor authentication protocol used by the Electrum Bitcoin wallet. This allows us to perform an automatic analysis of the wallet and show that it is secure for standard scenarios in Dolev Yao model [Dolev 1981]. The result could be derived thanks to some advanced features of the protocol analyzer such as the possibility to specify (i) new intruder deduction rules with clauses and (ii) non-deducibility constraints.

Michaël Rusinowitch | Mathieu Turuani | Thomas Voegtlin

[1] Danny Dolev,et al. On the Security of Public Key Protocols (Extended Abstract) , 1981, FOCS.

[2] Alessandro Armando,et al. Formal analysis of SAML 2.0 web browser single sign-on: breaking the SAML-based single sign-on for google apps , 2008, FMSE '08.

[3] Marcin Andrychowicz,et al. Modeling Bitcoin Contracts by Timed Automata , 2014, FORMATS.

[4] Sebastian Mödersheim,et al. ASLan++ - A Formal Security Specification Language for Distributed Systems , 2010, FMCO.

[5] Mathieu Turuani,et al. The CL-Atse Protocol Analyser , 2006, RTA.