Heap $$\ldots $$ Hop! Heap Is Also Vulnerable

Bouffard, Guillaume; Lackner, Michael; Lanet, Jean‐Louis; Loinig, Johannes

doi:10.1007/978-3-319-16763-3_2

Cited by 3 publications

(1 citation statement)

References 16 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…These hardware blocks aim at protecting the runtime environment. Lackner et al designed mitigation to prevent type confusion onto the stack [24,25] and the heap [8]. In his master's thesis, Zelle [46] describes how to protect the Java Card firewall through a Memory Protection Unit (MPU).…”

Section: Related Workmentioning

confidence: 99%

Java Card Virtual Machine Memory Organization: a Design Proposal

Bouffard¹,

Giraud²,

Gaspard³

2021

Preprint

Self Cite

View full text Add to dashboard Cite

The Java Card Virtual Machine (JCVM) platform is widely deployed on security-oriented components. JCVM implementations are mainly evaluated under security schemes. However, existing implementation are close-source without detail. We believe studying how to design JCVM will improve them and it can be reused by the community to improve Java Card security. In 2018, Bouffard et al. [6] introduced an Operating System (OS) which aims at running JCVM compatible implementation. This OS is compatible with several Commercially available Off-The-Shelf (COTS) components. This is a first step to design a secure JCVM platform. However, some important details are missing to design a secure-oriented Java Card platform. In this article, we focus on the JCVM memory. This memory contains everything required to run JCVM and applets. Currently, JCVM memory is out of the Java Card specification and each JCVM developer use his own approach. Based on the existing tools and documentation, we explain how to extract from the Java Card toolchain every data required by applets and JCVM. When data to store in memory are identified, this article introduces how to organize required data onto JCVM memory.

show abstract

Section: Related Workmentioning

confidence: 99%