Relative Security

Andrei Popescu šŸ“§ and Jamie Wright šŸ“§

May 24, 2024


This entry formalizes the notion of relative security presented in the CSF 2024 paper ā€œRelative Security: Formally Modeling and (Dis)Proving Resilience Against Semantic Optimization Vulnerabilitiesā€ by Brijesh Dongol, Matt Griffin, Andrei Popescu and Jamie Wright. It defines two versions of relative security: a finitary one (restricted to finite traces), and an infinitary one (working with both finite and infinite traces). It introduces unwinding methods for verifying relative security in both the finitary and infinitary versions, and proves their soundness. The proof of soudness in the infinitary case is a substantial application of Isabelleā€™s corecursion and coinduction infrastructure.


BSD License


Session Relative_Security