SATMC: History and Funding

SATMC is a research program carried out at the AI-Lab of the University of Genova. Funding has been and is currently provided by:

• AVISS: a FET Open Assessment project supported by the European Commission. Duration: 01/05/2001-30/04/2010. The development of SATMC began in the context of this project. A first prototype of SATMC was developed and thoroughly tested against protocols drawn from the Clark-Jacob's library of cryptographic protocols (small and medium size protocols).
• AVISPA: FET open project funded by the European Commission in the context of the the Fifth Framework Programme. Duration: 01/01/2003-31/12/2005. Development of the SATMC v1.0 with up to 2 order of magnitude improvements over the prototype implementation developed in the context of the AVISS Project. SATMC v1.0 was able to tackle the analysis of complex Internet security protocols (cf. AVISPA library).
• V@PSI: research project (project id RBAU01P5SS) funded by the Italian Ministry of Education, University and Research (MIUR) under the FIRB ("Fondo per gli Investimenti della Ricerca di Base") Programme. Duration: 01/01/2004-31/12/2006. Design and first implementation of SATMC v2.0 featuring a first prototype implementation of a model checking procedure for LTL formulae. SATMC used to unveil a flaw in a "patched" version of the Asokan, Weidner, Shoup protocol for optimistic fair exchange [csf2007].
• AVANTSSAR: Project no. 216471 funded by the European Commission in the context of the Seventh Framework Programme. Duration: 01/01/2008-31/12/2010. Development of SATMC v3.0 featuring full support to LTL properties and secure channels. SATMC was key to the discovery of a man-in-the-middle attack on the SAML-based Single Sign-On for Google Apps.
• SPaCIoS: STREP project no. 257876 funded by the EU in the context of the Seventh Framework Programme. Duration: 01/10/2010-30/09/2013. SATMC has been used to unveil an authentication flaw in the SAML 2.0 Web Browser SSO Profile [sec2011].