A Load Time Policy Checker for Open Multi-Application Smart Cards

Nicola Dragoni, Eduardo Lostal, Olga Gadyatskaya, Fabio Massacci, Federica Paci

    Research output: Chapter in Book/Report/Conference proceedingArticle in proceedingsResearchpeer-review

    Abstract

    Applications on multi-application smart cards contain sensitive data and can exchange information. Thus a major concern is that these applications should not exchange data unless permitted by their respective policy. As modern smart cards allow post-issuance installation and removal of applications, traditional approaches for information flow analysis are not suitable. We suggest the Security-by-Contract approach for loading time application certification on the card, that will enable the stakeholders with the means to ensure the compliance of every update of the card with their security policy. We describe an extension of the card security architecture to deal with verification for different types of updates and present a Java Card prototype implementation of the Policy Checker with performance measurements.
    Original languageEnglish
    Title of host publication2011 IEEE International Symposium on Policies for Distributed Systems and Networks (POLICY)
    PublisherIEEE
    Publication date2011
    Pages153-156
    ISBN (Print)978-1-4244-9879-6
    DOIs
    Publication statusPublished - 2011
    EventIEEE International Symposium on Policies for Distributed Systems and Networks - Pisa, Italy
    Duration: 6 Jun 20118 Jun 2011
    http://www.policy-workshop.org/2011/

    Conference

    ConferenceIEEE International Symposium on Policies for Distributed Systems and Networks
    CountryItaly
    CityPisa
    Period06/06/201108/06/2011
    Internet address

    Fingerprint Dive into the research topics of 'A Load Time Policy Checker for Open Multi-Application Smart Cards'. Together they form a unique fingerprint.

    Cite this