1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
|
\documentclass[12pt,a4paper,parskip=full]{scrreprt}
\usepackage{scrhack} % http://tex.stackexchange.com/questions/51867/koma-warning-about-toc
\usepackage[top=3.5cm,bottom=3.5cm,left=3cm,right=3cm]{geometry}
% \usepackage[spanish]{babel}
\usepackage{fontspec} \usepackage{url}
\usepackage{graphicx} \usepackage{cite} \usepackage{amsmath}
\usepackage{mathtools} \usepackage{listings} \usepackage{syntax}
% \usepackage[compact,small]{titlesec}
\usepackage[usenames,dvipsnames]{xcolor}
\usepackage[backref,colorlinks=true,linkcolor=black,urlcolor=black,citecolor=blue]{hyperref}
\usepackage{perpage} \usepackage{subcaption}
\usepackage{tikz}
% \usepackage{minted}
\usepackage{float}
\floatstyle{boxed}
\newfloat{code}{th}{los}[chapter]
\floatname{code}{Code listing}
\usetikzlibrary{shapes,arrows}
\hypersetup{pageanchor=false}
\input{ec-defs}
\input{front/front-init}
\MakePerPage{footnote}
\def\emptypage{\newpage\thispagestyle{empty}\mbox{}}
\begin{document}
\input{front/front-body}
\pagenumbering{roman}
\emptypage
\chapter*{Resumen}
La sociedad depende hoy más que nunca de la tecnología, pero la inversión en
seguridad es escasa y los sistemas informáticos siguen estando muy lejos de ser
seguros. La criptografía es una de las piedras angulares de la seguridad en este
ámbito, por lo que recientemente se ha dedicado una cantidad considerable de
recursos al desarrollo de herramientas que ayuden en la evaluación y mejora de
los algoritmos criptográficos. EasyCrypt es uno de estos sistemas, desarrollado
recientemente en el Instituto IMDEA Software en respuesta a la creciente
necesidad de disponer de herramientas fiables de verificación formal de
criptografía.
(TODO: En este documento se explicará cripto y reescritura de términos para bla
bla)
\chapter*{Abstract}
Today, society depends more than ever on technology, but the investment in
security is still scarce and using computer systems are still far from safe to
use. Cryptography is one of the cornerstones of security, so there has been a
considerable amount of effort devoted recently to the development of tools
oriented to the evaluation and improvement of cryptographic algorithms. One of
these tools is EasyCrypt, developed recently at IMDEA Software Institute in
response to the increasing need of reliable formal verification tools for
cryptography.
(TODO: In this document we will see crypto and term rewriting theory in order to
understand EasyCrypt and implement bla bla bla)
\emptypage
\tableofcontents
%% Content begins here
%
%% Level | Spaces before | '%'s after
% ---------+---------------+-----------
% part | 5 | until EOL
% chapter | 4 | 10
% section | 3 | 2
% subs. | 2 |
% subsubs. | 1 |
\emptypage
\chapter{INTRODUCTION} %%%%%%%%%%
\pagenumbering{arabic}
\setcounter{page}{1}
In the last years, society is becoming ever more dependent on computer
systems. People manage their bank accounts via web, are constantly in touch with
their contacts thanks to instant messaging applications, and have huge amounts
of personal data stored in the \textit{cloud}. All this personal information
flowing through computer networks need to be protected by correctly implementing
adequate security measures regarding both information transmission and
storage. Building strong security systems is not an easy task, because there are
lots of parts that must be studied in order to assure the system as a whole
behaves as intended.
One of the most fundamental tools used to build security computer systems is
\textbf{cryptography}. Due to its heavy mathematical roots, cryptography today
is a mature science that, when correctly implemented, can provide strong
security guarantees to the systems using it. In fact, it is usually the case
that cryptography is one of the \textit{most secure} parts of the system, and a
lot of other concerns should be taken care of, such as underlying operating
systems, security policies, or the human factor.
At this point, one could be tempted of just ``using strong, NIST-approved
cryptography'' and focusing on the security of other parts of the system. The
reality is that correctly implementing cryptography is a pretty difficult task
on its own, mainly because there is not a one-size-fits-all construction that
covers all security requirements. Every cryptographic primitive has its own
security assumptions and guarantees, so one must be exceptionally cautious when
combining them in order to build larger systems. For example, a given
cryptographic construction could be well suited for a concrete scenario and
totally useless in some others. In turn, this situation can produce a false
sense of security, potentially worse that not having any security at all.
In order to have the best guarantee that some cryptographic construction meets
its security requirements, we can use use formal methods to prove that the
requirements follow from the assumptions (scenario).
(TODO: maybe a sub-section on sequences of games, Hoare logic, etc.)
\section{Problem} %%
(TODO: Need of Computer-assisted proofs)
\subsection{EasyCrypt}
(TODO: What is EasyCrypt (Coq-like, screens, etc))
\section{Contributions} %%
\begin{itemize}
\item Reference implementations of various rewriting engines
\item Improvement of EasyCrypt's one
\end{itemize}
\part{STATE OF THE ART} %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
\chapter{CRYPTOGRAPHY} %%%%%%%%%%
(TODO: Intro to crypto)
\section{Symmetric Cryptography} %%
(TODO: not sure if this section is really needed)
\section{Asymmetric Cryptography} %%
Here we will introduce some of the most fundamental concepts in asymmetric
cryptography, as they will be useful to understand the next sections on
sequences of games (TODO: ref).
\textbf{Asymmetric cryptography} (also called \textbf{Public Key cryptography}),
refers to cryptographic algorithms that make use of two different keys, $pk$
(public key) and $sk$ (secret key). There must be some mathematical relationship
that allows a specific pair of keys to perform dual operations, e.g., $pk$ to
encrypt and $sk$ to decrypt, $pk$ to verify a signature and $sk$ to create it,
and so on. A pair of (public, secret) keys can be generated using a procedure
called \textbf{key generation} ($\KG$).
The encryption ($\Enc$) and decryption ($\Dec$) functions work in the
following way:
$$\Enc(pk,M) = C$$
$$\Dec(sk,C) = M$$
That is, a message ($M$) can be encrypted using a public key to obtain a
ciphertext ($C$).
\section{Sequences of games} %%
While mathematical proofs greatly enhance the confidence we have in that a given
cryptosystem behaves as expected, with the recent increase in complexity it has
become more and more difficult to write and verify the proofs by hand, to the
point of being practically non-viable. In 2004 \cite{Shoup04}, Victor Shoup
introduced the concept of \textbf{sequences of games} as a method of taming the
complexity of cryptography related proofs. A game is like a program written in a
well-defined, probabilistic programming language, and a sequence of games is the
result of applying transformations over the initial one.
\section{Verification: EasyCrypt} %%
\subsection{Specification languages}
\subsubsection{Expressions}
\subsubsection{Probabilistic expressions}
\subsubsection{pWhile language}
\subsection{Proof languages}
\subsubsection{Judgments}
\subsubsection{Tactics}
\chapter{TERM REWRITING} %%%%%%%%%%
\section{Term Rewriting Systems/Theory} %%
\section{Lambda Calculus} %%
\subsection{Extensions}
\subsubsection{Case expressions}
\subsubsection{Fixpoints}
\subsection{Reduction rules}
http://adam.chlipala.net/cpdt/html/Equality.html
\begin{itemize}
\item Alpha reduction
\item Beta reduction
\item ...
\end{itemize}
\section{Evaluation Strategies} %%
\section{Abstract Machines} %%
\subsection{Krivine Machine}
\cite{Krivine07}
\subsection{ZAM}
\cite{GregoireLeroy02}
\part{IMPLEMENTATION} %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
\chapter{KRIVINE MACHINE} %%%%%%%%%%
- Outside EasyCrypt: weak symbolic with fixpts and cases
- Inside EasyCrypt: bla bla
\chapter{ZAM} %%%%%%%%%%
\chapter{REDUCTION IN EASYCRYPT} %%%%%%%%%%
\section{Architecture overview} %%
\part{EPILOGUE} %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
\chapter{CONCLUSIONS} %%%%%%%%%%
\chapter{FUTURE WORK} %%%%%%%%%%
\chapter{ANNEX} %%%%%%%%%%
\section{Krivine Machine source code} %%
\section{ZAM source code} %%
\pagebreak \bibliography{bib}{} \bibliographystyle{ieeetr}
\end{document}
|
