www.prismmodelchecker.org
[OPR20] Michael Oxford, David Parker and Mark Ryan. Quantitative Verification of Certificate Transparency Gossip Protocols. In Proc. 6th International Workshop on Security and Privacy in the Cloud (SPC'20), IEEE. To appear. June 2020. [pdf] [bib] [Analyses the effectiveness of certificate transparency gossiping protocols using probabilistic model checking and PRISM.]
Downloads:  pdf pdf (1.09 MB)  bib bib
Abstract. Certificate transparency is a promising log-based system designed to audit internet certificates publicly and is currently supported by Google Chrome. However, it is potentially vulnerable to split-world attacks, where certain users are directed to a fake version of the log. So, to ensure that users are seeing the same version of a log, gossip protocols have been designed in which users share data sourced from the log. In this paper, we propose a new way of evaluating these protocols using probabilistic model checking, a technique for formally verifying quantitative properties of computer systems. We describe our approach to modelling and verifying the protocols, including a novel approach to determine worst-case model parameters. We analyse several aspects of the protocols, including the success rate of detecting inconsistencies in gossiped data and the efficiency in terms of bandwidth, comparing different protocol variants and also our own proposals to improve protocol performance.

Publications