[OAUTH-WG] PAVeTrust @ FM24 call for (virtual) participation: Formal methods for standardization

Muhammad Usama Sardar <muhammad_usama.sardar@tu-dresden.de> Tue, 03 September 2024 18:26 UTC

Return-Path: <muhammad_usama.sardar@tu-dresden.de>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 81F46C1D8753; Tue, 3 Sep 2024 11:26:19 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.406
X-Spam-Level:
X-Spam-Status: No, score=-4.406 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=tu-dresden.de
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id wGQ7_BAlHEkz; Tue, 3 Sep 2024 11:26:15 -0700 (PDT)
Received: from mailout3.zih.tu-dresden.de (mailout3.zih.tu-dresden.de [141.30.67.74]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 544C8C1DA2FE; Tue, 3 Sep 2024 11:25:58 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=tu-dresden.de; s=dkim2022; h=CC:To:Subject:From:MIME-Version:Date: Message-ID:Content-Type:Sender:Reply-To:Content-Transfer-Encoding:Content-ID: Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc :Resent-Message-ID:In-Reply-To:References:List-Id:List-Help:List-Unsubscribe: List-Subscribe:List-Post:List-Owner:List-Archive; bh=cF+J9J6WlG5bIoNiYu0oA+ZMlOh+EEKrGxSeAkOF78I=; b=adc5lyqHjeSYgpqwFEGNXtM/wK QRYh8tPPgm1O7v9hWYhtp0UuTei9/YN/FiRFXTwP3kCwrzn9fhPKR2bJp2B4WGzRWKkieVmpOlR1P 0Q7ECkAxivy7AzfFYZZlTmt3AZWVIbkYNbSBRJp/91nDWejAIBkafUwKp7rUojZ9wCFEIzPciBoKT R9iDWzDU35YR9ZiPccm15QJHZ6THZXK7rpREnDWOHCe1OHL89ZiIQvugiTqDDwyy8nI9U5VIlDRiO P0ElRmhfTfU7hJUb+nEkGeKuGxztACokxRzRx9lcOW3b0CEHZL0pSIUQTg5O3dXZdeMDRznVjTdZO dRBoF7yg==;
Received: from [172.26.35.111] (helo=msx.tu-dresden.de) by mailout3.zih.tu-dresden.de with esmtps (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.94.2) (envelope-from <muhammad_usama.sardar@tu-dresden.de>) id 1slXvv-00A6n6-DO; Tue, 03 Sep 2024 20:07:15 +0200
Received: from msx-t422.msx.ad.zih.tu-dresden.de (172.26.35.139) by MSX-T311.msx.ad.zih.tu-dresden.de (172.26.35.111) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.1.2507.39; Tue, 3 Sep 2024 20:07:06 +0200
Received: from [192.168.1.2] (77.13.234.11) by msx-t422.msx.ad.zih.tu-dresden.de (172.26.35.139) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.1544.11; Tue, 3 Sep 2024 20:07:05 +0200
Content-Type: multipart/alternative; boundary="------------RpUKHUrTiKHsQ6OLXJfl2rKX"
Message-ID: <b40cf4df-48c5-48c5-8bfe-a444a8afc015@tu-dresden.de>
Date: Tue, 03 Sep 2024 20:07:04 +0200
MIME-Version: 1.0
User-Agent: Mozilla Thunderbird
Content-Language: en-US
From: Muhammad Usama Sardar <muhammad_usama.sardar@tu-dresden.de>
To: UFMRG IRTF <ufmrg@irtf.org>, "rats@ietf.org" <rats@ietf.org>, "TLS@ietf.org" <tls@ietf.org>, oauth@ietf.org
X-ClientProxiedBy: MSX-L312.msx.ad.zih.tu-dresden.de (172.26.34.112) To msx-t422.msx.ad.zih.tu-dresden.de (172.26.35.139)
X-TUD-Virus-Scanned: mailout3.zih.tu-dresden.de
Message-ID-Hash: CPDG32GXSFSFETRI4BS43H4VRLZR5JAE
X-Message-ID-Hash: CPDG32GXSFSFETRI4BS43H4VRLZR5JAE
X-MailFrom: muhammad_usama.sardar@tu-dresden.de
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-oauth.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: Pedro <pedro@tbtl.com>
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [OAUTH-WG] PAVeTrust @ FM24 call for (virtual) participation: Formal methods for standardization
List-Id: OAUTH WG <oauth.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/Q0rPJu_BPiroGi57GBEEDZsOd9g>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Owner: <mailto:oauth-owner@ietf.org>
List-Post: <mailto:oauth@ietf.org>
List-Subscribe: <mailto:oauth-join@ietf.org>
List-Unsubscribe: <mailto:oauth-leave@ietf.org>

Dear all,

I thought PAVeTrust [1], co-located with FM24 [2], might be of interest 
to some of you to see how formal methods are shaping some of the 
standardization efforts in RATS, TLS and OAuth WGs.

Invited talks are:

  * Secure Authentication in the Era of Confidential Computing: Insights
    from the Formal Analysis of OAuth by *Hannes Tschofenig* (University
    of Applied Sciences Bonn-Rhein-Sieg/Siemens, Germany)
  * Remote Attestation and Formal Methods - the bigger picture by *Ian
    Oliver* (University of Oulu, Finland)
  * Formal Verification of the Realm Management Monitor (RMM) by *Eleni
    Vafeiadi Bila* (Arm)
  * Beyond the Surface: Validation Challenges and Opportunities for
    Confidential Computing by *Jo Van Bulck* (KU Leuven, Belgium)

Additionally, I will present ongoing formalization of attested TLS. See 
the complete program and abstracts of talks at [3].

In case you cannot attend PAVeTrust in person, we have negotiated a 
registration fees of only 50 Euros for virtual attendance. To get the 
discount code, please contact the FM co-chairs Matteo G. Rossi 
<matteo.rossi@polimi.it> and Matteo Pradella <matteo.pradella@polimi.it> 
and register [4] using that code.

The workshop has no formal proceedings. It aims to initiate the 
much-needed discussions between the different communities. We have, 
therefore, requested the invited speakers to leave 15 minutes for Q&A 
and discussion.

Workshop material (slides and papers) will only be available to 
registered attendees.

If you have questions, please do not hesitate to contact us.

Best Regards,

Usama and Pedro

Organizers PAVeTrust'24


[1] https://pavetrust.github.io/

[2] https://www.fm24.polimi.it/

[3] https://pavetrust.github.io/program/

[4] https://www.fm24.polimi.it/?page_id=559