Most cryptographic protocols use cryptographic hash functions as a building block. The
security analyses of these protocols typically assume that the hash functions are perfect …

Bluetooth Low Energy (BLE) is the mainstream Bluetooth standard and BLE Secure
Connections (BLC-SC) pairing is a protocol that authenticates two Bluetooth devices and …

Critical and widely used cryptographic protocols have repeatedly been found to contain
flaws in their design and their implementation. A prominent class of such vulnerabilities is …

Recent years have seen the emergence of practical advanced cryptographic tools that not
only protect data privacy and authenticity, but also allow for jointly processing data from …

Most EMV transactions require online authorization by the card issuer. Namely, the
merchant's payment terminal sends an authorization request to the card issuer over a …

Relay attackers can forward messages between a contactless EMV bank card and a shop
reader, making it possible to wirelessly pickpocket money. To protect against this, Apple Pay …

We provide a framework consisting of tools and metatheorems for the end-to-end verification
of security protocols, which bridges the gap between automated protocol verification and …

The variety and severity of recent DNS-based attacks under-score the importance of a
secure naming system. Although DNSSEC provides data authenticity in theory, practical …

We propose a protocol that explores a synergy between two TEE implementations: it brings
SGX-like remote attestation to SEV VMs. We use the notion of a trusted guest owner …

During the last decades, many advances in the field of automated security protocol analysis
have seen the field mature and grow from being applicable to toy examples, to modeling …