Universidad de Cantabria
Secure Sockets Layer (SSL) has become one of the most popular security protocols in the Internet. In this paper the authors present a formal verification of this protocol using the Casper/FDR2 toolbox. In the analysis of SSL v3.0 Handshake they have used a methodology that considers incremental versions of the protocol. They have started with the most basic protocol, and then they have included other features such as server and client authentication, digital signatures, etc. They have also verified SSL v2.0 because of the so called version rollback attack. Each version has been modeled and verified, and the results have been interpreted.