A tool for checking secure interaction in Java Cards

Bernardeschi, Cinzia; Masci, Paolo; Avvenuti, Marco; Francesco, Nicoletta De; Waeselynck, Hélène; Marco Avvenuti; Cinzia Bernardeschi; Nicoletta De Francesco; Paolo Masci

Citation:: Avvenuti M, Bernardeschi C, Francesco ND, Masci P. 2009. A tool for checking secure interaction in Java Cards. Proceedings of the 12th European Workshop on Dependable Computing, EWDC 2009 12th European Workshop on Dependable Computing, EWDC 2009. :8pages. copy at www.tinyurl.com/gtdwqfw

Date Presented:

May

Abstract:

We present an approach based on a multilevel security policy and the theory of abstract interpretation for checking secure interaction between applications in Java Cards. The security policy is defined by the user, which assigns security levels to Java Card applications. Actual values are abstracted into security levels, and an abstract interpreter executes the bytecode of applications in the abstract domain. We show JCSI, a tool that implements the presented approach. JCSI can be used to check the binary code of Java Card.

Citation Key:

ABDM09

DOI:

10.1016/j.jss.2012.05.061

Paolo Masci

Software Engineering