package cryptoverif

  1. Overview
  2. No Docs
CryptoVerif: Cryptographic protocol verifier in the computational model

Install 

dune-project
 Dependency

cryptoverif.inria.fr Edit opam file Versions (12)

Authors

  1. B
    Bruno Blanchet <Bruno.Blanchet@inria.fr>, Pierre Boutry <boutry.pierre@gmail.com>, David Cadé <David.Cade@normalesup.org>, Christian Doczkal <christian.doczkal@mpi-sp.org>, Aymeric Fromherz <Aymeric.Fromherz@inria.fr>, Charlie Jacomme <Charlie.Jacomme@inria.fr>, Benjamin Lipp <Benjamin.Lipp@mpi-sp.org>, and Pierre-Yves Strub <pierre-yves@strub.nu>

Maintainers

  1. B
    Bruno Blanchet <Bruno.Blanchet@inria.fr>

Sources

cryptoverif2.12.tar.gz
md5=a7d04beb0aa5f1ed6f28c0e05f24104b
sha512=46bcd2ff73545a7de3963c0064539b87961fc415d030e1ad7d2d24451f9056b34c3bd2d8a08b5feac9ad1ee00bdb5934a1a79f02e82d62a39e8d6ad91c4aa88a

Description

CryptoVerif is an automatic protocol prover sound in the computational model. It can prove

  • secrecy;
  • correspondences, which include in particular authentication;
  • indistinguishability between two games.

It provides a generic mechanism for specifying the security assumptions on cryptographic primitives, which can handle in particular symmetric encryption, message authentication codes, public-key encryption, signatures, hash functions.

The generated proofs are proofs by sequences of games, as used by cryptographers. These proofs are valid for a number of sessions polynomial in the security parameter, in the presence of an active adversary. CryptoVerif can also evaluate the probability of success of an attack against the protocol as a function of the probability of breaking each cryptographic primitive and of the number of sessions (exact security).

This software is under development; please use it at your own risk. Comments and bug reports welcome.

Published: 30 Oct 2025

Dependencies (4)

  1. conf-m4 post
  2. cryptokit post
  3. ocamlfind post
  4. ocaml >= "4.08"

Dev Dependencies

None

Used by

None

Conflicts

None