{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,3]],"date-time":"2026-04-03T22:36:33Z","timestamp":1775255793945,"version":"3.50.1"},"publisher-location":"Cham","reference-count":41,"publisher":"Springer International Publishing","isbn-type":[{"value":"9783030030438","type":"print"},{"value":"9783030030445","type":"electronic"}],"license":[{"start":{"date-parts":[[2018,1,1]],"date-time":"2018-01-01T00:00:00Z","timestamp":1514764800000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2018]]},"DOI":"10.1007\/978-3-030-03044-5_12","type":"book-chapter","created":{"date-parts":[[2018,10,23]],"date-time":"2018-10-23T08:55:14Z","timestamp":1540284914000},"page":"180-197","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":2,"title":["A Methodology for Protocol Verification Applied to EMV\u00ae\u00a01"],"prefix":"10.1007","author":[{"given":"Leo","family":"Freitas","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Paolo","family":"Modesti","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Martin","family":"Emms","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2018,10,24]]},"reference":[{"key":"12_CR1","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"209","DOI":"10.1007\/978-3-319-24177-7_11","volume-title":"Computer Security \u2013 ESORICS 2015","author":"O Almousa","year":"2015","unstructured":"Almousa, O., M\u00f6dersheim, S., Modesti, P., Vigan\u00f2, L.: Typing and compositionality for security protocols: a generalization to the geometric fragment. In: Pernul, G., Ryan, P.Y.A., Weippl, E. (eds.) ESORICS 2015. LNCS, vol. 9327, pp. 209\u2013229. Springer, Cham (2015). https:\/\/doi.org\/10.1007\/978-3-319-24177-7_11"},{"key":"12_CR2","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"66","DOI":"10.1007\/978-3-319-25527-9_7","volume-title":"Programming Languages with Applications to Biology and Security","author":"O Almousa","year":"2015","unstructured":"Almousa, O., M\u00f6dersheim, S., Vigan\u00f2, L.: Alice and bob: reconciling formal models and implementation. In: Bodei, C., Ferrari, G.-L., Priami, C. (eds.) Programming Languages with Applications to Biology and Security. LNCS, vol. 9465, pp. 66\u201385. Springer, Cham (2015). https:\/\/doi.org\/10.1007\/978-3-319-25527-9_7"},{"key":"12_CR3","unstructured":"AVISPA: Deliverable 2.3: The Intermediate Format (2003). avispa-project.org"},{"issue":"3","key":"12_CR4","doi-asserted-by":"publisher","first-page":"181","DOI":"10.1007\/s10207-004-0055-7","volume":"4","author":"D Basin","year":"2005","unstructured":"Basin, D., M\u00f6dersheim, S., Vigan\u00f2, L.: OFMC: a symbolic model checker for security protocols. Int. J. Inf. Secur. 4(3), 181\u2013208 (2005)","journal-title":"Int. J. Inf. Secur."},{"key":"12_CR5","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"160","DOI":"10.1007\/978-3-319-23165-5_7","volume-title":"Logic, Rewriting, and Concurrency","author":"D Basin","year":"2015","unstructured":"Basin, D., Keller, M., Radomirovi\u0107, S., Sasse, R.: Alice and Bob meet equational theories. In: Mart\u00ed-Oliet, N., \u00d6lveczky, P.C., Talcott, C. (eds.) Logic, Rewriting, and Concurrency. LNCS, vol. 9200, pp. 160\u2013180. Springer, Cham (2015). https:\/\/doi.org\/10.1007\/978-3-319-23165-5_7"},{"key":"12_CR6","doi-asserted-by":"crossref","unstructured":"Bhargavan, K., Fournet, C., Gordon, A.D., Tse, S.: Verified interoperable implementations of security protocols. In: IEEE Computer Security Foundations Workshop (2006)","DOI":"10.1007\/11841197_6"},{"key":"12_CR7","unstructured":"Blanchet, B.: An efficient cryptographic protocol verifier based on Prolog rules. In: Computer Security Foundations Workshop, IEEE, pp. 0082\u20130082. IEEE Computer Society (2001)"},{"key":"12_CR8","unstructured":"Blanchet, B., Smyth, B., Cheval, V.: ProVerif 2.00: Automatic Cryptographic Protocol Verifier, User Manual and Tutorial (2018)"},{"key":"12_CR9","doi-asserted-by":"crossref","unstructured":"Bond, M., Choudary, O., Murdoch, S.J., Skorobogatov, S., Anderson, R.: Chip and skim: cloning EMV cards with the pre-play attack. In: S&P, pp. 49\u201364. IEEE (2014)","DOI":"10.1109\/SP.2014.11"},{"key":"12_CR10","doi-asserted-by":"crossref","unstructured":"Brzuska, C., Smart, N.P., Warinschi, B., Watson, G.J.: An analysis of the EMV channel establishment protocol. In: CCS, pp. 373\u2013386. ACM (2013)","DOI":"10.1145\/2508859.2516748"},{"key":"12_CR11","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"164","DOI":"10.1007\/978-3-642-16074-5_12","volume-title":"Automated Reasoning for Security Protocol Analysis and Issues in the Theory of Security","author":"M Bugliesi","year":"2010","unstructured":"Bugliesi, M., Modesti, P.: AnBx - security protocols design and verification. In: Armando, A., Lowe, G. (eds.) ARSPA-WITS 2010. LNCS, vol. 6186, pp. 164\u2013184. Springer, Heidelberg (2010). https:\/\/doi.org\/10.1007\/978-3-642-16074-5_12"},{"key":"12_CR12","first-page":"46","volume":"30","author":"M Bugliesi","year":"2016","unstructured":"Bugliesi, M., Calzavara, S., M\u00f6dersheim, S., Modesti, P.: Security protocol specification and verification with AnBx. J. Inf. Secur. Appl. 30, 46\u201363 (2016)","journal-title":"J. Inf. Secur. Appl."},{"issue":"1","key":"12_CR13","first-page":"13","volume":"10","author":"M Cortet","year":"2016","unstructured":"Cortet, M., Rijks, T., Nijland, S.: Psd2: the digital transformation accelerator for banks. J. Paym.S Strat. Syst. 10(1), 13\u201327 (2016)","journal-title":"J. Paym.S Strat. Syst."},{"key":"12_CR14","doi-asserted-by":"crossref","unstructured":"Cortier, V., Filipiak, A., Florent, J., Gharout, S., Traor\u00e9, J.: Designing and proving an EMV-compliant payment protocol for mobile devices. In: EuroS&P, pp. 467\u2013480. IEEE (2017)","DOI":"10.1109\/EuroSP.2017.19"},{"key":"12_CR15","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"113","DOI":"10.1007\/978-3-642-27375-9_7","volume-title":"Theory of Security and Applications","author":"J Ruiter de","year":"2012","unstructured":"de Ruiter, J., Poll, E.: Formal analysis of the EMV protocol suite. In: M\u00f6dersheim, S., Palamidessi, C. (eds.) TOSCA 2011. LNCS, vol. 6993, pp. 113\u2013129. Springer, Heidelberg (2012). https:\/\/doi.org\/10.1007\/978-3-642-27375-9_7"},{"key":"12_CR16","unstructured":"Dolev, D., Yao, A.: On the security of public-key protocols. IEEE Trans. Inf. Theory 2(29), 350\u2013357 (1983)"},{"key":"12_CR17","unstructured":"Drimer, S., Murdoch, S.J., et al.: Keep your enemies close: distance bounding against smartcard relay attacks. In: USENIX Security Symposium, vol. 312 (2007)"},{"key":"12_CR18","doi-asserted-by":"crossref","unstructured":"Emms, M., Arief, B., Freitas, L., Hannon, J., van Moorsel, A.: Harvesting high value foreign currency transactions from EMV contactless credit cards without the PIN. In: CCS, pp. 716\u2013726. ACM (2014)","DOI":"10.1145\/2660267.2660312"},{"key":"12_CR19","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"313","DOI":"10.1007\/978-3-642-39884-1_26","volume-title":"Financial Cryptography and Data Security","author":"M Emms","year":"2013","unstructured":"Emms, M., Arief, B., Little, N., van Moorsel, A.: Risks of offline verify PIN on contactless cards. In: Sadeghi, A.-R. (ed.) FC 2013. LNCS, vol. 7859, pp. 313\u2013321. Springer, Heidelberg (2013). https:\/\/doi.org\/10.1007\/978-3-642-39884-1_26"},{"key":"12_CR20","unstructured":"Emms, M., Freitas, L., van Moorsel, A.: Rigorous design and implementation of an emulator for EMV contactless payments. Technical report, Newcastle University (2014)"},{"key":"12_CR21","unstructured":"Emms, M.J.: Contactless payments: usability at the cost of security? Ph.D. thesis, Newcastle University (2016)"},{"key":"12_CR22","unstructured":"EMVCo: EMV integrated circuit card specifications for payment systems [books 1 to 4], December 2011. https:\/\/www.emvco.com\/emv-technologies\/contact\/"},{"key":"12_CR23","unstructured":"EMVCo: EMV contactless specifications for payment systems [books a, b, c-1, c-2, c-3, c-4, c-5, c- 6, c-7 and d], February 2016. https:\/\/www.emvco.com\/emv-technologies\/contactless\/"},{"key":"12_CR24","unstructured":"Financial Fraud Action: Fraud the fact. the definitive overview of payment industry fraud and measures to prevent it (2017). https:\/\/www.financialfraudaction.org.uk\/fraudfacts17\/"},{"key":"12_CR25","unstructured":"Freitas, L., Emms, M.: Formal specification of EMV protocol. Technical report, Newcastle University (2014)"},{"key":"12_CR26","doi-asserted-by":"crossref","unstructured":"Freitas, L.: VDM at large: modelling the EMV(R) 2nd generation kernel. In: Formal Methods: Foundations and Applications - 21st Brazilian Symposium, SBMF 2018, Salvador, Brazil, 28\u201330 November 2018, Proceedings. Lecture Notes in Computer Science, vol. 11254. Springer (2018)","DOI":"10.1007\/978-3-030-03044-5_8"},{"key":"12_CR27","unstructured":"Freitas, L., Jones, C.B., Velykis, A., Whiteside, I.: How to say why (in AI4FM). Technical report, Newcastle University (2013)"},{"issue":"1","key":"12_CR28","doi-asserted-by":"publisher","first-page":"117","DOI":"10.1007\/s00165-007-0059-y","volume":"20","author":"L Freitas","year":"2008","unstructured":"Freitas, L., Woodcock, J.: Mechanising mondex with Z\/Eves. Form. Asp. Comput. 20(1), 117 (2008)","journal-title":"Form. Asp. Comput."},{"key":"12_CR29","doi-asserted-by":"crossref","unstructured":"Garcia, R., Modesti, P.: An IDE for the design, verification and implementation of security protocols. In: ISSRE Workshops, pp. 157\u2013163. IEEE (2017)","DOI":"10.1109\/ISSREW.2017.69"},{"key":"12_CR30","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"79","DOI":"10.1007\/978-3-319-14054-4_6","volume-title":"Security Standardisation Research","author":"D Garrett","year":"2014","unstructured":"Garrett, D., Ward, M.: Blinded Diffie-Hellman. In: Chen, L., Mitchell, C. (eds.) SSR 2014. LNCS, vol. 8893, pp. 79\u201392. Springer, Cham (2014). https:\/\/doi.org\/10.1007\/978-3-319-14054-4_6"},{"key":"12_CR31","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"116","DOI":"10.1007\/11580850_8","volume-title":"Trustworthy Global Computing","author":"JD Guttman","year":"2005","unstructured":"Guttman, J.D., Herzog, J.C., Ramsdell, J.D., Sniffen, B.T.: Programming cryptographic protocols. In: De Nicola, R., Sangiorgi, D. (eds.) TGC 2005. LNCS, vol. 3705, pp. 116\u2013145. Springer, Heidelberg (2005). https:\/\/doi.org\/10.1007\/11580850_8"},{"key":"12_CR32","unstructured":"Hoare, C.A.R.: CSP - Communicating Sequential Processes. Prentice-Hall (1985)"},{"key":"12_CR33","volume-title":"Systematic Software Development Using VDM","author":"CB Jones","year":"1990","unstructured":"Jones, C.B.: Systematic Software Development Using VDM, vol. 2. Prentice Hall, Englewood Cliffs (1990)"},{"key":"12_CR34","doi-asserted-by":"crossref","unstructured":"Lowe, G.: A hierarchy of authentication specifications. In: CSFW 1997, pp. 31\u201343. IEEE Computer Society Press (1997)","DOI":"10.1109\/CSFW.1997.596782"},{"key":"12_CR35","unstructured":"Maiden, J.: EMV\u2019s Relay Resistance Protocol in MasterCard Contactless Specification. Master\u2019s thesis, School of Computing Science, Newcastle University (2017)"},{"key":"12_CR36","doi-asserted-by":"crossref","unstructured":"M\u00f6dersheim, S.: Algebraic properties in Alice and Bob notation. In: International Conference on Availability, Reliability and Security (ARES 2009), pp. 433\u2013440 (2009)","DOI":"10.1109\/ARES.2009.95"},{"key":"12_CR37","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"156","DOI":"10.1007\/978-3-319-30303-1_10","volume-title":"Foundations and Practice of Security","author":"P Modesti","year":"2016","unstructured":"Modesti, P.: AnBx: Automatic generation and verification of security protocols implementations. In: Garcia-Alfaro, J., Kranakis, E., Bonfante, G. (eds.) FPS 2015. LNCS, vol. 9482, pp. 156\u2013173. Springer, Cham (2016). https:\/\/doi.org\/10.1007\/978-3-319-30303-1_10"},{"key":"12_CR38","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"204","DOI":"10.1007\/978-3-319-11851-2_17","volume-title":"Security and Trust Management","author":"P Modesti","year":"2014","unstructured":"Modesti, P.: Efficient Java code generation of security protocols specified in AnB\/AnBx. In: Mauw, S., Jensen, C.D. (eds.) STM 2014. LNCS, vol. 8743, pp. 204\u2013208. Springer, Cham (2014). https:\/\/doi.org\/10.1007\/978-3-319-11851-2_17"},{"key":"12_CR39","doi-asserted-by":"crossref","unstructured":"Murdoch, S.J., Drimer, S., Anderson, R., Bond, M.: Chip and pin is broken. In: S&P, pp. 433\u2013446. IEEE (2010)","DOI":"10.1109\/SP.2010.33"},{"key":"12_CR40","doi-asserted-by":"crossref","unstructured":"Schmidt, B., Meier, S., Cremers, C., Basin, D.: Automated analysis of Diffie-Hellman protocols and advanced security properties. In: CSF, pp. 78\u201394. IEEE (2012)","DOI":"10.1109\/CSF.2012.25"},{"key":"12_CR41","doi-asserted-by":"crossref","unstructured":"Woodcock, J., Freitas, L.: Linking VDM and Z. In: IEEE International Conference on Engineering of Complex Computer Systems, pp. 143\u2013152. IEEE (2008)","DOI":"10.1109\/ICECCS.2008.36"}],"container-title":["Lecture Notes in Computer Science","Formal Methods: Foundations and Applications"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-030-03044-5_12","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2026,4,3]],"date-time":"2026-04-03T21:16:09Z","timestamp":1775250969000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-030-03044-5_12"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2018]]},"ISBN":["9783030030438","9783030030445"],"references-count":41,"URL":"https:\/\/doi.org\/10.1007\/978-3-030-03044-5_12","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2018]]},"assertion":[{"value":"SBMF","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Brazilian Symposium on Formal Methods","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Salvador","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Brazil","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2018","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"26 November 2018","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"30 November 2018","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"21","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"sbmf2018","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"http:\/\/www.sbmf2018.ufba.br\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Single-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"EasyChair","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"30","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"14","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"0","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"47% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"3.3","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"1.8","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"Yes","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}}]}}