Cookies Policy
The website need some cookies and similar means to function. If you permit us, we will use those means to collect data on your visits for aggregated statistics to improve our service. Find out More
Accept Reject
  • Menu
    Facts & Numbers
    000
    Presentation

    High-Assurance Software

    HASLab is focused on the design and implementation of high-assurance software systems: software that is correct by design and resilient to environment faults and malicious attacks. 

    To accomplish this mission, HASLab covers three main competences — Cybersecurity, Distributed Systems, and Software Engineering — complemented by other competences such as Human-Computer Interaction, Programming Languages, or the Mathematics of Computing. 

    Software Engineering – methods, techniques, and tools for rigorous software development, that can be applied to the internal functionality of a component, its composition with other components, as well as the interaction with the user.

    Distributed Systems – improving the reliability and scalability of software, by exploring properties inherent to the distribution and replication of computer systems.

    Cybersecurity – minimize the vulnerability of software components to hostile attacks, by deploying structures and cryptographic protocols whose security properties are formally proven.

    Through a multidisciplinary approach that is based on solid theoretical foundations, we aim to provide solutions — theory, methods, languages, tools — for the development of complete ICT systems that provide strong guarantees to their owners and users. Prominent application areas of HASLab research include the development of safety and security critical software systems, the operation of secure cloud infrastructures, and the privacy-preserving management and processing of big data.

    Latest News

    Researchers from INESC TEC awarded with the Excellence Grant of UMinho

    Francisco Ribeiro and Michael Oliveira, researchers from the High-Assurance Software Laboratory (HASLab) of INESC TEC, received the Excellence Grant of UMinho from last academic year.

    21st June 2019

    New member in HASLab’s coordination

    In the meeting of INESC TEC’s Board that was held on 7 May, António Luís Sousa was appointed for the co-coordination of the High-Assurance Software Laboratory (HASLab), in which his duties will be carried out alongside Alcino Cunha who continues to be the Co-coordinator of the Centre.

    17th June 2019

    The project that fosters the creation of business apps with non-relational data has come to an end

    RADicalize Big Data, a service provision project with OutSystems carried out by INESC TEC’s High-Assurance Software Laboratory (HASLab), allowed the development of a way to integrate Big Data sources in business applications, using a low-code approach that is compatible with the OutSystems platform.

    14th June 2019

    Keyruptive is INESC TEC's most recent spin-off

    Keyruptive is INESC TEC's most recent spin-off and it operates in the IT security area. It was born in Braga, being the result of a work of many years from a group of researchers of INESC TEC’s High-Assurance Software Laboratory (HASLab), and already has a technology solution to present to the market, whose name is the same as the company that was created.

    13th June 2019

    INESC TEC leads EUR 36M European project for the digitalisation of the power system

    InterConnect, which is the name of the biggest European collaborative project approved by the European Commission, under the Horizon 2020’s funding programme, will be led by INESC TEC.

    04th June 2019

    View all News
    060

    Projects

    INSIEME

    Integrated Network for data Space and Interoperable Energy Management in Europe

    2025-2028

    JRCSIF

    JRC Interoperability Laboratory Adoption of the Semantic Interoperability Framework

    2025-2025

    CDMS

    Claim Denial Management Solution

    2025-2026

    PeT

    PeT - Privacidade e Transparência

    2024-2028

    exaSIMPLE

    exaSIMPLE: A Hybrid ML-CFD SIMPLE Algorithm for the Exascale Era

    2024-2025

    EPICURE

    High-level specialised application support service in High-Performance Computing (HPC)

    2024-2028

    BCDSM

    BCD.S+M - Modular Blockchain Data Storage and Management System with AI

    2024-2027

    TwinEU

    Digital Twin for Europe

    2024-2026

    HEDGE_IoT

    Holistic Approach towards Empowerment of the DiGitalization of the Energy Ecosystem through adoption of IoT solutions

    2024-2027

    HANAMI

    Hpc AlliaNce for Applications and supercoMputing Innovation: the Europe - Japan collaboration

    2024-2026

    AzDIH

    Azores Digital Innovation Hub on Tourism and Sustainability

    2023-2025

    PFAI4_4eD

    Programa de Formação Avançada Industria 4 - 4a edição

    2023-2023

    ATE

    Alliance for Energy Transition

    2023-2025

    Green_Dat_AI

    Energy-efficient AI-ready Data Spaces

    2023-2025

    EuroCC2

    National Competence Centres in the framework of EuroHPC Phase 2

    2023-2025

    AURORA

    Deteção de atividade no interior do veículo

    2022-2023

    ATTRACT_DIH

    Digital Innovation Hub for Artificial Intelligence and High-Performance Computing

    2022-2025

    NewSpacePortugal

    Agenda New Space Portugal

    2022-2025

    BeFlexible

    Boosting engagement to increase flexibility

    2022-2026

    ENERSHARE

    European commoN EneRgy dataSpace framework enabling data sHaring-driven Across- and beyond- eneRgy sErvices

    2022-2025

    Gridsoft

    Parecer sobre a implementação de software para redes elétricas inteligentes

    2022-2022

    PFAI4_3ed

    Programa de Formação Avançada Industria 4 - 3a edição

    2022-2022

    THEIA

    Automated Perception Driving

    2022-2023

    IBEX

    Métodos quantitativos para a programação ciber-física: Uma abordagem precisa para racicionar sobre imprecisões na computação ciber-física

    2022-2025

    SpecRep

    Constraint-based Specification Repair

    2022-2023

    FLEXCOMM

    Towards Energy-aware Communications: Connecting the power grid and communication infrastructure

    2022-2023

    Sustainable HPC

    Computação de elevado desempenho sustentável

    2021-2025

    CircThread

    Building the Digital Thread for Circular Economy Product, Resource & Service Management

    2021-2025

    PassCert

    Exploring the Impact of Formal Verification on the Adoption of Password Security Software

    2021-2022

    IoT4Distribuicao

    Análise de Requisitos e Especificação Funcional de uma Arquitetura Distribuída baseada em soluções IoT para a Gestão e Controlo da Rede de Distribuição

    2021-2023

    RISC2

    A network for supporting the coordination of High-Performance Computing research between Europe and Latin America

    2021-2023

    PFAI4.0

    Programa de Formação Avançada Industria 4.0

    2020-2021

    PAStor

    Programmable and Adaptable Storage for AI-oriented HPC Ecosystems

    2020-2021

    ACTPM

    Automating Crash-Consistency Testing for Persistent Memory

    2020-2021

    AIDA

    Adaptive, Intelligent and Distributed Assurance Platform

    2020-2023

    BigHPC

    A Management Framework for Consolidated Big Data and HPC

    2020-2023

    SLSNA

    Prestação de Serviços no ambito do projeto SKORR

    2020-2021

    InterConnect

    Interoperable Solutions Connecting Smart Homes, Buildings and Grids

    2019-2024

    T4CDTKC

    Training 4 Cotec, Digital Transformation Knowledge Challenge - Elaboração de Programa de Formação “CONHECER E COMPREENDER O DESAFIO DAS TECNOLOGIAS DE TRANSFORMAÇÃO DIGITAL”

    2019-2021

    CLOUD4CANDY

    Cloud for CANDY

    2019-2019

    HADES

    HArdware-backed trusted and scalable DEcentralized Systems

    2018-2022

    MaLPIS

    Aprendizagem Automática para Deteção de Ataques e Identificação de Perfis Segurança na Internet

    2018-2022

    SKORR

    Advancing the Frontier of Social Media Management Tools

    2018-2021

    DaVinci

    Distributed architectures: variability and interaction for cyber-physical systems

    2018-2022

    SAFER

    Safery verification for robotic software

    2018-2021

    KLEE

    Coalgebraic modeling and analysis for computational synthetic biology

    2018-2021

    InteGrid

    Demonstration of INTElligent grid technologies for renewables INTEgration and INTEractive consumer participation enabling INTEroperable market solutions and INTErconnected stakeholders

    2017-2020

    Lightkone

    Lightweight Computation for Networks at the Edge

    2017-2019

    CloudDBAppliance

    European Cloud In-Memory Database Appliance with Predictable Performance for Critical Applications

    2016-2019

    Cloud-Setup

    PLATAFORMA DE PREPARAÇÃO DE CONTEÚDOS AUDIOVISUAIS PARA INGEST NA CLOUD

    2016-2019

    GSL

    GreenSoftwareLab: Towards an Engineering Discipline for Green Software

    2016-2019

    CORAL-TOOLS

    CORAL – Sustainable Ocean Exploitation: Tools and Sensors

    2016-2018

    SafeCloud

    Secure and Resilient Cloud Architecture

    2015-2018

    NanoStima-RL1

    NanoSTIMA - Macro-to-Nano Human Sensing Technologies

    2015-2019

    NanoStima-RL3

    NanoSTIMA - Health data infrastructure

    2015-2019

    SMILES

    SMILES - Smart, Mobile, Intelligent and Large scale Sensing and analytics

    2015-2019

    UPGRID

    Real proven solutions to enable active demand and distributed generation flexible integration, through a fully controllable LOW Voltage and medium voltage distribution grid

    2015-2017

    LeanBigData

    Ultra-Scalable and Ultra-Efficient Integrated and Visual Big Data Analytics

    2014-2017

    Practice

    Privacy-Preserving Computation in the Cloud

    2013-2016

    CoherentPaaS

    A Coherent and Rich PaaS with a Common Programming Model

    2013-2016

    Team
    Alcino Cunha

    Centre Coordinator

    António Luís Sousa

    Centre Coordinator

    Catarina Leones Fernandes

    Advisor to the Centre Coordinator

    ViewClose Alphabet
    • a
    • b
    • c
    • d
    • e
    • f
    • g
    • h
    • i
    • j
    • k
    • l
    • m
    • n
    • o
    • p
    • q
    • r
    • s
    • t
    • u
    • v
    • w
    • x
    • y
    • z
    001

    Laboratory

    CLOUDinha

    Publications

    HASLab Publications

    View all Publications

    2024

    X-Wing

    Authors
    Barbosa, M; Connolly, D; Duarte, J; Kaiser, A; Schwabe, P; Varner, K; Westerbaan, B;

    Publication
    IACR Communications in Cryptology

    Abstract
    X-Wing is a hybrid key-encapsulation mechanism based on X25519 and ML-KEM-768. It is designed to be the sensible choice for most applications. The concrete choice of X25519 and ML-KEM-768 allows X-Wing to achieve improved efficiency compared to using a generic KEM combiner. In this paper, we introduce the X-Wing hybrid KEM construction and provide a proof of security. We show (1) that X-Wing is a classically IND-CCA secure KEM if the strong Diffie-Hellman assumption holds in the X25519 nominal group, and (2) that X-Wing is a post-quantum IND-CCA secure KEM if ML-KEM-768 is itself an IND-CCA secure KEM and SHA3-256 is secure when used as a pseudorandom function. The first result is proved in the ROM, whereas the second one holds in the standard model. Loosely speaking, this means X-Wing is secure if either X25519 or ML-KEM-768 is secure. We stress that these security guarantees and optimizations are only possible due to the concrete choices that were made, and it may not apply in the general case.

    CloseRead Abstract

    2024

    Bare PAKE: Universally Composable Key Exchange from Just Passwords

    Authors
    Barbosa, M; Gellert, K; Hesse, J; Jarecki, S;

    Publication
    ADVANCES IN CRYPTOLOGY - CRYPTO 2024, PT II

    Abstract
    In the past three decades, an impressive body of knowledge has been built around secure and private password authentication. In particular, secure password-authenticated key exchange (PAKE) protocols require only minimal overhead over a classical Diffie-Hellman key exchange. PAKEs are also known to fulfill strong composable security guarantees that capture many password-specific concerns such as password correlations or password mistyping, to name only a few. However, to enjoy both round-optimality and strong security, applications of PAKE protocols must provide unique session and participant identifiers. If such identifiers are not readily available, they must be agreed upon at the cost of additional communication flows, a fact which has been met with incomprehension among practitioners, and which hindered the adoption of provably secure password authentication in practice. In this work, we resolve this issue by proposing a new paradigm for truly password-only yet securely composable PAKE, called bare PAKE. We formally prove that two prominent PAKE protocols, namely CPace and EKE, can be cast as bare PAKEs and hence do not require pre-agreement of anything else than a password. Our bare PAKE modeling further allows to investigate a novel reusability property of PAKEs, i.e., whether n(2) pairwise keys can be exchanged from only n messages, just as the Diffie-Hellman non-interactive key exchange can do in a public-key setting. As a side contribution, this add-on property of bare PAKEs leads us to observe that some previous PAKE constructions relied on unnecessarily strong, reusable building blocks. By showing that non-reusable tools suffice for standard PAKE, we open a new path towards round-optimal post-quantum secure password-authenticated key exchange.

    CloseRead Abstract

    2024

    X-Wing: The Hybrid KEM You've Been Looking For

    Authors
    Barbosa, M; Connolly, D; Duarte, JD; Kaiser, A; Schwabe, P; Varner, K; Westerbaan, B;

    Publication
    IACR Cryptol. ePrint Arch.

    Abstract

    Read Full Publication

    2024

    A Tight Security Proof for SPHINCS+, Formally Verified

    Authors
    Barbosa, M; Dupressoir, F; Hülsing, A; Meijers, M; Strub, PY;

    Publication
    Advances in Cryptology - ASIACRYPT 2024 - 30th International Conference on the Theory and Application of Cryptology and Information Security, Kolkata, India, December 9-13, 2024, Proceedings, Part IV

    Abstract

    2023

    TADA: A Toolkit for Approximate Distributed Agreement

    Authors
    da Conceiçao, EL; Alonso, AN; Oliveira, RC; Pereira, JO;

    Publication
    DISTRIBUTED APPLICATIONS AND INTEROPERABLE SYSTEMS, DAIS 2023

    Abstract
    Approximate agreement has long been relegated to the sidelines compared to exact consensus, with its most notable application being clock synchronisation. Other proposed applications stemming from control theory target multi-agent consensus, namely for sensor stabilisation, coordination in robotics, and trust estimation. Several proposals for approximate agreement follow the Mean Subsequence Reduce approach, simply applying different functions at each phase. However, taking clock synchronisation as an example, applications do not fit neatly into the MSR model: Instead they require adapting the algorithms' internals. Our contribution is two-fold. First, we identify additional configuration points, establishing a more general template of MSR approximate agreement algorithms. We then show how this allows us to implement not only generic algorithms but also those tailored for specific purposes (clock synchronisation). Second, we propose a toolkit for making approximate agreement practical, providing classical implementations as well as allow these to be configured for specific purposes. We validate the implementation with classical algorithms and clock synchronisation.

    CloseRead Abstract

    Facts & Figures

    4Papers in indexed journals

    2020

    1R&D Employees

    2020

    14Proceedings in indexed conferences

    2020

    View all Facts & Figures
    Contacts
    António Luís Sousa

    Centre Coordinator

    +351253604440

    antonio.l.sousa@inesctec.pt

    Alcino Cunha

    Centre Coordinator

    +351253604440

    alcino.cunha@inesctec.pt