1. The goal is to develop a tool that analyzes cryptographic protocol implementations at the source code level to detect potential security flaws or prove security. 2. As motivation, the document describes a 2009 vulnerability in OpenSSL that allowed a corrupted certificate to be incorrectly validated due to a faulty return value check. 3. The tool assumes cryptographic primitives are correctly implemented but aims to verify security at the implementation level rather than just the high-level specification.