Skip to Main content Skip to Navigation
Journal articles

Mitigating Type Confusion on Java Card

Jean Dubreuil Guillaume Bouffard 1, * N. Thampi Bhagyalekshmy 1 Jean-Louis Lanet 1
* Corresponding author
Abstract : One of the challenges for smart card deployment is the security interoperability. A smart card resistant to an attack on a given platform should be able to guarantee the same behavior on another platform. But the current implementations do not comply with this requirement. In order to improve such standardization we propose a framework based on annotations with an external pre-processing to switch the Java Card Virtual Machine (JCVM) into a secure mode by activating a set of countermeasures. An example has been proposed in this paper for implementing a countermeasure against type confusion with a fault attack. Smart cards are often the target of software, hardware or combined attacks. In recent days most of the attacks are based on fault injection which can modify the behavior of applications loaded onto the card, changing them into mutant applications. This countermeasure requires a transformation of the original program byte codes which remain semantically equivalent. It needs a modification of the JCVM which stays backward compatible and a dedicated framework to deploy these applications. Thus, the proposed platform can resist to a fault enabled mutant.
Complete list of metadatas
Contributor : Guillaume Bouffard <>
Submitted on : Wednesday, March 26, 2014 - 2:29:22 PM
Last modification on : Thursday, January 11, 2018 - 6:26:29 AM

Links full text




Jean Dubreuil, Guillaume Bouffard, N. Thampi Bhagyalekshmy, Jean-Louis Lanet. Mitigating Type Confusion on Java Card. International Journal of Secure Software Engineering, 2013, 4 (2), pp.19-39. ⟨10.4018/jsse.2013040102⟩. ⟨hal-00966327⟩



Record views