SC2: Secure Communication over Smart Cards: How to Secure Off-Card Matching in Security-by-Contract for Open Multi-application Smart Cards

Nicola Dragoni, Eduardo Lostal, Davide Papini, Javier Fabra

    Research output: Chapter in Book/Report/Conference proceedingArticle in proceedingsResearchpeer-review

    Abstract

    The Security-by-Contract (S×C) framework has recently been proposed to support software evolution in open multi-application smart cards. The key idea lies in the notion of contract, a specification of the security behavior of an application that must be compliant with the security policy of the card hosting the application. In this paper we address a key issue to realize the S×C idea, namely the outsourcing of the contractpolicy matching service to a Trusted Third Party (TTP). In particular, we present the design and implementation of (SC)2 (Secure Communication over Smart Cards), a system securing the communication between a smart card and the TTP which provides the S×C matching service.
    Original languageEnglish
    Title of host publicationFoundations and Practice of Security : 4th Canada-France MITACSWorkshop, FPS 2011 Paris, France, May 12-13, 2011 Revised Selected Papers
    EditorsJoaquin Garcia-Alfaro, Pascal Lafourcade
    PublisherSpringer
    Publication date2012
    Pages32-48
    ISBN (Print)978-3-642-27900-3
    ISBN (Electronic)978-3-642-27901-0
    DOIs
    Publication statusPublished - 2012
    Event4th Canada-France MITACS Workshop on Foundations & Practice of Security - Paris, France
    Duration: 12 May 201113 May 2011
    http://fps2011.dyndns.org/

    Workshop

    Workshop4th Canada-France MITACS Workshop on Foundations & Practice of Security
    Country/TerritoryFrance
    CityParis
    Period12/05/201113/05/2011
    Internet address
    SeriesLecture Notes in Computer Science
    Number6888
    ISSN0302-9743

    Fingerprint

    Dive into the research topics of 'SC2: Secure Communication over Smart Cards: How to Secure Off-Card Matching in Security-by-Contract for Open Multi-application Smart Cards'. Together they form a unique fingerprint.

    Cite this