A defensive Java Card virtual machine to thwart fault attacks by microarchitectural support

Lackner, Michael; Berlach, Reinhard; Hraschan, Michael; Weiß, Reinhold; Steger, Christian

doi:10.1109/crisis.2013.6766360

Cited by 7 publications

(3 citation statements)

References 19 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Girand and his copartners proposed a level object sharing mechanism based on partial sequence grid [9]. In order to control the flow of data, you can specify a level for all objects generated by the card application, the data information can only flow from a low level applet object to a high level of object in java card.…”

Section: Analysis Of Other Methodsmentioning

confidence: 99%

Optimization of access policy among multiple objects in java card

Jiang¹,

Li²

2014

Proceedings of the International Conference on Logistics, Engineering, Management and Computer Science

View full text Add to dashboard Cite

Applets which are in different contexts in java card use shareable interface object to pass information and provide method services. This kind of access applications method is only suitable for the situation between two applets in different contexts. When pass information and services among three or more applications, it appears the security issues that it is unable to control the data flow. To find the reason of the problem, analyze the whole access process and point to the key of the judgment method. In order to solve this problem, propose a new security access policy among multiple objects, use the feature set of the applet, and calculate the feature set by JCRE logical judgment module. According to the result of calculation, decide whether to allow application to use the shareable interface object. The new policy implements data security access and adapts to a variety of data-access requirements.

show abstract

Section: Analysis Of Other Methodsmentioning

confidence: 99%

Optimization of access policy among multiple objects in java card

Jiang¹,

Li²

2014

Proceedings of the International Conference on Logistics, Engineering, Management and Computer Science

View full text Add to dashboard Cite

show abstract

“…There is a vast literature regarding attacks of various nature against smart card and more specifically against Java Card. The control-flow attacks category is one of the categories that affects the Java interpreter [21,22]. As Fig.…”

Section: Bounds Checkmentioning

confidence: 98%

Hardware/software co-design for a high-performance Java Card interpreter in low-end embedded systems

Zilli

Raschke

Weiß

et al. 2015

Microprocessors and Microsystems

Self Cite

View full text Add to dashboard Cite

“…However, run-time rather than static approaches have also been proposed to achieve similar advantages in the context of bytecode execution on Java smart cards. Lackner et al proposed to adapt the virtual machine (VM) that interprets the bytecode to inject the necessary redundancy in the executed code [27,28]. By duplicating code at run time, they achieve the same goal of providing protection without interfering with the software development cycle.…”

Section: Related Workmentioning

confidence: 99%

Link-time smart card code hardening

Keulenaer

Maebe

Bosschere

et al. 2015

Int. J. Inf. Secur.

View full text Add to dashboard Cite

This paper presents a feasibility study to protect smart card software against fault-injection attacks by means of link-time code rewriting. This approach avoids the drawbacks of source code hardening, avoids the need for manual assembly writing, and is applicable in conjunction with closed third-party compilers. We implemented a range of cookbook code hardening recipes in a prototype link-time rewriter and evaluate their coverage and associated overhead to conclude that this approach is promising. We demonstrate that the overhead of using an automated link-time approach is not significantly higher than what can be obtained with compile-time hardening or with manual hardening of compiler-generated assembly code.

show abstract

A defensive Java Card virtual machine to thwart fault attacks by microarchitectural support

Cited by 7 publications

References 19 publications

Optimization of access policy among multiple objects in java card

Optimization of access policy among multiple objects in java card

Hardware/software co-design for a high-performance Java Card interpreter in low-end embedded systems

Link-time smart card code hardening

Contact Info

Product

Resources

About