[Verifpal] Verifpal 0.6.8

[Nadim Kobeissi]

Hello everyone,
Verifpal 0.6.8 is now available.

Change Log

   - Major refactor of analysis logic. Missed attacks in more complex models should be expected. However, Verifpal’s behavior is now significantly more correct, more complete, and analysis speed has increased dramatically.

Release Notes

   - This is for sure the most significant update since Verifpal was originally released a few weeks ago.
   - Ouf, where to begin. While debugging 0.6.7, one thing led to another, and I’ve spent the last three days obsessively refactoring a huge part of the analysis logic. Overall, this release is much faster (due to less resolution steps) and I think much more correct in its analysis — however, I am also certain that it misses more attacks than 0.6.7.
   - “But Nadim, if it’s more correct in its analysis, how can it miss more attacks?” — turns out a lot of attacks detected in earlier versions were due to incorrect analysis — Verifpal was more or less cheating.
   - To be clear, 0.6.8 still matches all the expected results from Loup’s test models as well as my internal testing models. In fact it even finds missed attacks in 0.6.7! There’s no obvious regression… yet. But I am 100% sure that 0.6.8 will miss attacks that 0.6.7 “finds”. I am absolutely certain of this. What I would really like you guys to do is find those missed attacks and document them. They are *certainly* out there.

Installing and Updating Verifpal

   - If you’re fine with running arbitrary scripts in your terminal, you can instantly update like this:
       - bash -c 'curl -sL https://verifpal.com/install|bash'
   - Or you can download a pre-compiled binary here:
       - https://source.symbolic.software/verifpal/verifpal/releases

Looking forward to hearing from you all!

Nadim Kobeissi
Symbolic Software • https://symbolic.software