Enforcing Portability and Security Policies on Java Card Applications
Abstract
We motivate and present an automated validation tool takes as input a Java Card application and a set of rules, and provides as output an analysis of the way in which the Java Card application follows the rules. The applications are usually provided in binary format, as CAP files, which means that the validation occurs on the exact code that will be downloaded in the card. The rules may consist of a standard set of rules, for instance the application portability rules defined by the SIM Alliance. They may also include some rules customized for a specific card issuer, card program, or even for a specific application (for instance, a highly sensitive application may require specific rules that do not apply to other applications). The result of the validation consists of a diagnosis and a report.
Domains
Other [cs.OH]
Origin : Files produced by the author(s)