A cryptographic protocol security verification apparatus includes a formal verification unit verifying a presence or absence of a defect of a process for a party and a first virtual entity based on a description of a verifiable cryptographic protocol specification data, wherein the verifiable cryptographic protocol specification data includes a first description section containing a description of a process for the party actually involved in the execution of a cryptographic protocol, and a second description section, where the second description section corresponds to an ideal protocol defined by an universal composability and containing the description of the process for the party actually involved in the execution of the cryptographic protocol and a first virtual entity not actually involved in the execution of the cryptographic protocol, and does not contain a description for a second virtual entity not actually involved in the execution of the cryptographic protocol, and wherein the first virtual entity corresponds to an ideal functionality of the ideal protocol, and the second virtual entity corresponds to a simulator of the ideal protocol.
展开▼