Abstract
The Security-by-Contract (S×C) framework has recently been
proposed to support software evolution in open multi-application smart
cards. The key idea lies in the notion of contract, a specification of the
security behavior of an application that must be compliant with the security
policy of the card hosting the application. In this paper we address a
key issue to realize the S×C idea, namely the outsourcing of the contractpolicy
matching service to a Trusted Third Party (TTP). In particular,
we present the design and implementation of (SC)2 (Secure Communication
over Smart Cards), a system securing the communication between
a smart card and the TTP which provides the S×C matching service.
Original language | English |
---|---|
Title of host publication | Foundations and Practice of Security : 4th Canada-France MITACSWorkshop, FPS 2011 Paris, France, May 12-13, 2011 Revised Selected Papers |
Editors | Joaquin Garcia-Alfaro, Pascal Lafourcade |
Publisher | Springer |
Publication date | 2012 |
Pages | 32-48 |
ISBN (Print) | 978-3-642-27900-3 |
ISBN (Electronic) | 978-3-642-27901-0 |
DOIs | |
Publication status | Published - 2012 |
Event | 4th Canada-France MITACS Workshop on Foundations & Practice of Security - Paris, France Duration: 12 May 2011 → 13 May 2011 http://fps2011.dyndns.org/ |
Workshop
Workshop | 4th Canada-France MITACS Workshop on Foundations & Practice of Security |
---|---|
Country/Territory | France |
City | Paris |
Period | 12/05/2011 → 13/05/2011 |
Internet address |
Series | Lecture Notes in Computer Science |
---|---|
Number | 6888 |
ISSN | 0302-9743 |