Formal Models of Bank Cards for Free

Aarts, Fides; Ruiter, Joeri de; Poll, Erik

doi:10.1109/icstw.2013.60

Cited by 67 publications

(48 citation statements)

References 12 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Using this method, 'undesired' states, that introduce security vulnerabilities, could be discovered. In related work, models are inferred for smart cards like banking cards [20] and electronic passports [21]. Furthermore, additional testing can be done by supplying the learned model as input for model-based testing.…”

Section: Discussionmentioning

confidence: 99%

The SmartLogic Tool: Analysing and Testing Smart Card Protocols

Gans

Ruiter

2012

2012 IEEE Fifth International Conference on Software Testing, Verification and Validation

Self Cite

View full text Add to dashboard Cite

Abstract-This paper introduces the SmartLogic, which is a flexible smart card research tool that gives complete control over the smart card communication channel for eavesdropping, man-in-the-middle attacks, relaying and card emulation. The hardware is available off-the-shelf at a price of about 100 euros. Furthermore, the necessary firm-and software is open source. The SmartLogic provides essential functionality for smart card protocol research and testing. This is demonstrated by reproducing two attack scenarios. The first attack is on an implementation of the EMV payment protocol where a payment terminal is forced to do a rollback to plaintext PIN instead of using encrypted PIN. The second attack is a relay of a smart card payment over a 20 km distance. We also show that this distance can be increased to at least 10.000 km.

show abstract

Section: Discussionmentioning

confidence: 99%

The SmartLogic Tool: Analysing and Testing Smart Card Protocols

Gans

Ruiter

2012

2012 IEEE Fifth International Conference on Software Testing, Verification and Validation

Self Cite

View full text Add to dashboard Cite

show abstract

“…The approach has been successfully used in practical applications [ASV10,AdRP13], but a drawback is that a priori insight into the target component's behavior is required, making it not quite black-box. In [HSM11], automated (alphabet) refinement is used.…”

Section: Related Workmentioning

confidence: 99%

Active learning for extended finite state machines

et al. 2016

View full text Add to dashboard Cite

We present a black-box active learning algorithm for inferring extended finite state machines (EFSM)s by dynamic black-box analysis. EFSMs can be used to model both data flow and control behavior of software and hardware components. Different dialects of EFSMs are widely used in tools for model-based software development, verification, and testing. Our algorithm infers a class of EFSMs called register automata. Register automata have a finite control structure, extended with variables (registers), assignments, and guards. Our algorithm is parameterized on a particular theory, i.e., a set of operations and tests on the data domain that can be used in guards.Key to our learning technique is a novel learning model based on so-called tree queries. The learning algorithm uses tree queries to infer symbolic data constraints on parameters, e.g., sequence numbers, time stamps, identifiers, or even simple arithmetic. We describe sufficient conditions for the properties that the symbolic constraints provided by a tree query in general must have to be usable in our learning model. We also show that, under these conditions, our framework induces a generalization of the classical Nerode equivalence and canonical automata construction to the symbolic setting. We have evaluated our algorithm in a black-box scenario, where tree queries are realized through (black-box) testing. Our case studies include connection establishment in TCP and a priority queue from the Java Class Library.

show abstract

“…We add an automat to follow the behavior of this smart card. We decided to add the machine state of the EMV application based on (Aarts et al, 2013). The inputs of the Observer are communication APDU and the selected properties to verify.…”

Section: Observation Of the Emv Transaction 411 View Of The Platformmentioning

confidence: 99%

An Observe-and-Detect Methodology for the Security and Functional Testing of Smart Card Applications

Jolly

Vernois

Rosenberger

2016

Proceedings of the 2nd International Conference on Information Systems Security and Privacy

View full text Add to dashboard Cite

Abstract:Smart cards are tamper resistant devices but vulnerabilities are sometimes discovered. We address in this paper the security and the functional testing of embedded applications in smart cards. We propose an original methodology for the evaluation of applications and we show its benefit by comparing it to a classical certification process. The proposed method is based on the observation of the APDU (Application Protocol Data unit) communication with the smart card. Some specific properties are verified as a complementary method in the evaluation process and allows the on-the-fly detection of an anomaly and the reasons that triggered this anomaly during the test. Here are presented two uses of this method: a simple use to illustrate the use of properties to verify an implementation of an application and a more complex illustration by applying the fuzzing method to show what we can obtain with the proposed approach, i.e. an analysis of an anomaly.

show abstract

Formal Models of Bank Cards for Free

Cited by 67 publications

References 12 publications

The SmartLogic Tool: Analysing and Testing Smart Card Protocols

The SmartLogic Tool: Analysing and Testing Smart Card Protocols

Active learning for extended finite state machines

An Observe-and-Detect Methodology for the Security and Functional Testing of Smart Card Applications

Contact Info

Product

Resources

About