@inbook{13355403b681442d9e5ed2239d8a164e,
title = "Security Protocols as Choreographies",
abstract = "A choreography gives a description of how endpoints in a concurrent systems should exchange messages during its execution. In this paper, we informally introduce a choreographic language for describing security protocols and a property language for expressing non-trivial security properties of such protocols. We motivate this work using the envelope protocol [2] as an example, which ensures auditable transfers by means of a TPM, that guarantees that the issuer of a message always learns whether such message has been opened or not. We then take an implementation of the TPM formulated as an API and discuss how such implementation and the usage of the TPM in the protocol can be related. Finally, we illustrate how the protocol and property descriptions can be translated into multiset rewrite rules and metric first order logic respectively, in order to check if auditable transfer holds.",
keywords = "Security protocols, Choreography, Verification",
author = "Alessandro Bruni and Marco Carbone and Rosario Giustolisi and M{\"o}dersheim, {Sebastian Alexander} and Carsten Sch{\"u}rmann",
year = "2021",
doi = "10.1007/978-3-030-91631-2_5",
language = "English",
isbn = "978-3-030-91630-5",
series = "Lecture Notes in Computer Science",
publisher = "Springer",
pages = "98--111",
editor = "Daniel Dougherty and Jos{\'e} Meseguer and M{\"o}dersheim, {Sebastian Alexander } and Rowe, {Paul }",
booktitle = "Protocols, Strands, and Logic",
}