A Formal Model of Access Control for Mobile Interactive Devices

Besson, Frédéric; Dufay, Guillaume; Jensen, Thomas

doi:10.1007/11863908_8

Cited by 8 publications

(21 citation statements)

References 16 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…One of the main objectives of the work that is being reported here, has been to build a framework which would provide a formal setting to define the permission models defined by MIDP and the one presented in [2] (and variants of it) in an uniform way and to perform a formal analysis and comparison of those models. This framework, which is formally defined using the Calculus of Inductive Constructions [4,5], adopts, with variations, most of the security and programming constructions defined in [2].…”

Section: An Alternative Modelmentioning

confidence: 99%

“…This framework, which is formally defined using the Calculus of Inductive Constructions [4,5], adopts, with variations, most of the security and programming constructions defined in [2]. In particular it has been modified so as to be parameterized by permission granting policies, while in the original work this relation is fixed.…”

Section: An Alternative Modelmentioning

confidence: 99%

“…In [2], a security model for interactive mobile devices is put forward which can be grasped as an extension of the JME-MIDP model. The work presented in that paper has focused in developing a formal model for studying, in particular, interactive user querying mechanisms for permission granting for application execution on mobile devices.…”

Section: Introductionmentioning

confidence: 99%

“…The principal difference is that most of those constructions are now parameterized by a permission grant policy. In this paper it is shown how the framework can be used to define a type of permission grant policies and to represent the four user permission modes of MIDP and the policies defined in [2] as objects of that type. The paper also presents the definition of an order relation, based on a notion of safe programs, which can be used to perform a comparative analysis of grant policies.…”

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

A Framework for the Analysis of Access Control Models for Interactive Mobile Devices

Crespo

Betarte

Luna

2009

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Abstract. The Java Micro Edition platform (JME), a Java enabled technology, provides the Mobile Information Device Profile (MIDP) standard that facilitates applications development and specifies a security model for the controlled access to sensitive resources of the device. The model builds upon the notion of protection domain, which in turn can be grasped as a set of permissions. An alternative model has been proposed that extends MIDP's by introducing permissions with multiplicities and adding flexibility to the way in which permissions are granted by the user of the device and used by the applications running on it. This paper presents a framework, formalized using the proof-assistant Coq, suitable for defining and comparing the access control policies that can be enforced by (variants of) those security models and to prove desirable properties they should satisfy. The proofs of some of those properties are also stated and discussed in this work.

show abstract

Section: An Alternative Modelmentioning

confidence: 99%

Section: An Alternative Modelmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

A Framework for the Analysis of Access Control Models for Interactive Mobile Devices

Crespo

Betarte

Luna

2009

Lecture Notes in Computer Science

View full text Add to dashboard Cite

show abstract

“…Resource security may be assured either by runtime checks, or a type system for resource accounting, such that any well-typed program will only attempt to use resources for which it already has authorisation. We have also used abstract interpretation to model such external resources [10]. From a program control-flow graph, we infer constraints in a lattice of permissions: whenever some resourceful action takes place, the program must have acquired at least the permissions required.…”

Section: Em Ory Usagementioning

confidence: 99%

MOBIUS: Mobility, Ubiquity, Security

Barthe

Beringer

Crégut

et al.

Trustworthy Global Computing

View full text Add to dashboard Cite

Abstract. Through their global, uniform provision of services and their dis tributed nature, global computers have the potential to profoundly enhance our daily life. However, they will not realize their full potential, unless the necessary levels of trust and security can be guaranteed. The goal of the MOBIUS project is to develop a Proof Carrying Code architecture to secure global computers that consist of Java-enabled mobile devices. In this progress report, we detail its objectives and provide a snapshot of the project results during its first year of activity.

show abstract

A Formal Specification of the MIDP 2.0 Security Model

Zanella-Béguelin

Betarte

Luna

Formal Aspects in Security and Trust

View full text Add to dashboard Cite

This paper overviews a formal specification, using the Calculus of Inductive Constructions, of the application security model defined by the Mobile Information Device Profile 2.0 for Java 2 Micro Edition. We present an abstract model of the state of the device and security-related events that allows to reason about the security properties of the platform where the model is deployed. We then state and sketch the proof of some desirable properties of this model.

show abstract

A Formal Model of Access Control for Mobile Interactive Devices

Cited by 8 publications

References 16 publications

A Framework for the Analysis of Access Control Models for Interactive Mobile Devices

A Framework for the Analysis of Access Control Models for Interactive Mobile Devices

MOBIUS: Mobility, Ubiquity, Security

A Formal Specification of the MIDP 2.0 Security Model

Contact Info

Product

Resources

About