Context Inference for Static Analysis of Java Card Object Sharing
نویسندگان
چکیده
منابع مشابه
JAIL: Firewall Analysis of Java Card by Abstract Interpretation
We introduce JAIL, a tool for the static analysis and the verification of the applet isolation property of Java Card, where applet isolation means that one applet can not access the fields or objects of an applet in another context unless the other applet explicitly provides an interface for access. The tool statically checks whether the analyzed source code violates this property, thus detecti...
متن کاملSecure Object Flow Analysis for Java Card
The access control exercised by the Java Card firewall can be bypassed by the use of shareable objects. To help detecting unwanted access to objects, we propose a static analysis that calculates a safe approximation of the possible flow of objects between Java Card applets. The analysis deals with a subset of the Java Card bytecode focusing on aspects of the Java Card firewall, method invocatio...
متن کاملAn in-card bytecode optimization for objects management in Java-based smart cards
Providing object programming for smart cards comes up against difficulties related to performance. Indeed, object management overheads represent an important source of inefficiency in Java programs (such data structures, heap allocation, garbage collection, etc.). In current Java Cards, object programming is not encouraged since garbage collection of objects is not mandatory. However, in the co...
متن کاملSecure Object Sharing in Java Card
Since the invention of the Java Card, the issue of code and data sharing has been a topic of great interest. Early Java Cards shared data via files secured with access control lists. Java Card 2.1 specification introduced a method of object sharing, allowing access to methods of server applets using Shareable Interface Objects (SIO). However, this SIO approach can be improved. It permits access...
متن کاملConstraint-based security analysis for the Java Card firewall
This paper presents a constraint-based static analysis to prove security (confidentiality) properties of Java Card programs. We define a subset of the Java Card bytecode focussing on aspects of the Java Card firewall, method invocation, field access, variable access, shareable objects and contexts and present an analysis to compute an approximation of the set of possible value stored in each va...
متن کامل