Skip to content
This repository has been archived by the owner on Feb 5, 2021. It is now read-only.

Formal verification #108

Open
tarcieri opened this issue Nov 26, 2017 · 2 comments
Open

Formal verification #108

tarcieri opened this issue Nov 26, 2017 · 2 comments
Labels
enhancement help wanted rust security

Comments

@tarcieri
Copy link
Contributor

It would be nice to formally verify Miscreant's implementations of algorithms (e.g. CMAC, PMAC), and in particular verify the Rust version.

Galois Cryptol may be useful here:

https://cryptol.net/

My understanding is given a Cryptol description of an algorithm, Galois' Software Analysis Workbench tool could potentially formally prove equivalence to e.g. the Rust implementation:

https://saw.galois.com/
@ranweiler
Copy link

Hi! FYI, I'm currently looking into this, and starting a conversation with my former coworkers about the state of Rust verification via SAW/Cryptol.

@tarcieri
Copy link
Contributor Author

tarcieri commented Dec 5, 2017

@ranweiler great news! I'd probably suggest starting with the cmac and pmac crates from the RustCrypto project:

https://github.com/RustCrypto/MACs

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
enhancement help wanted rust security
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@tarcieri @ranweiler