Skip to main content Skip to main navigation


Verifying a Chipcard-Based Biometric Identification Protocol in {VSE}

Lassaad Cheikhrouhou; Georg Rock; Werner Stephan; Matthias Schwan; Gunter Lassmann
In: Computer Safety, Reliability, and Security, 25th International Conference. IFAC Symposium on Safety of Computer Control Systems (SAFECOMP-06), September 27-29, Gdansk, Poland, Pages 42-56, LNCS, No. 4166, ISBN 3-540-45762-3, Springer, 2006.


In this paper we describe our experiences in specifying and verifying a complex cryptographic protocol actually used in industry that has been developed for the area of chipcard based biometric identification systems. The main emphasis was placed on authenticity, integrity and confidentiality properties. The formal analysis even led to several simplifying modifications of the protocol that facilitate the implementation, yet maintaining the protocol security properties we considered. The formal analysis is based on an inductive approach performed with the help of VSE (Verification Support Environment). The heuristic based proof automation techniques realized in VSE result in an average grade of automation of 80 percent. Thus, VSE provides substantial support for the specification and verification of cryptographic protocols.