About: Automatic source code transformations for strengthening practical security of smart card applications

Facets (new session)
Description
Metadata
Settings
- owl:sameAs
- Inference Rule:

About: Automatic source code transformations for strengthening practical security of smart card applications Goto Sponge NotDistinct Permalink

An Entity of Type : http://linked.opendata.cz/ontology/domain/vavai/Vysledek, within Data Space : linked.opendata.cz associated with source document(s)

Attributes	Values
rdf:type	skos:Concept http://linked.opendata.cz/ontology/domain/vavai/Vysledek
Description	Smart card platforms like Java Card or .NET allow to implement portable applications that can be run on different smart card hardware. The resulting overall security of the applet is strongly dependent on the implementation of the smart card operating system, related libraries, as well as physical resistance and information leakage of the underlying hardware. Defenses implementable on the source code level for later case might exist, but such a situation is unfavorable for applet developer as multiple versions of applet must be maintained to support a wider range of smart cards (although all providing Java Card platform). In this paper we describe several practical attacks on modern smart cards, discuss possible defenses and propose a general framework for automatic replacement of vulnerable operations by safe equivalents. A code strengthening constructions can be also automatically inserted. Practical implementation and examples of usage are presented and discussed. Smart card platforms like Java Card or .NET allow to implement portable applications that can be run on different smart card hardware. The resulting overall security of the applet is strongly dependent on the implementation of the smart card operating system, related libraries, as well as physical resistance and information leakage of the underlying hardware. Defenses implementable on the source code level for later case might exist, but such a situation is unfavorable for applet developer as multiple versions of applet must be maintained to support a wider range of smart cards (although all providing Java Card platform). In this paper we describe several practical attacks on modern smart cards, discuss possible defenses and propose a general framework for automatic replacement of vulnerable operations by safe equivalents. A code strengthening constructions can be also automatically inserted. Practical implementation and examples of usage are presented and discussed. (en)
Title	Automatic source code transformations for strengthening practical security of smart card applications Automatic source code transformations for strengthening practical security of smart card applications (en)
skos:prefLabel	Automatic source code transformations for strengthening practical security of smart card applications Automatic source code transformations for strengthening practical security of smart card applications (en)
skos:notation	RIV/00216224:14330/10:00044029!RIV11-MSM-14330___
http://linked.open...avai/riv/aktivita	P
http://linked.open...avai/riv/aktivity	P(LA09016)
http://linked.open...vai/riv/dodaniDat	2011
http://linked.open...aciTvurceVysledku	Lorenc, Václav Švenda, Petr Smolka, Tobiáš
http://linked.open.../riv/druhVysledku	D - Článek ve sborníku
http://linked.open...iv/duvernostUdaju	S - Úplné a pravdivé údaje nepodléhající ochraně podle zvláštních právních předpisů
http://linked.open...titaPredkladatele	Masarykova univerzita / Fakulta informatiky
http://linked.open...dnocenehoVysledku	248204
http://linked.open...ai/riv/idVysledku	RIV/00216224:14330/10:00044029
http://linked.open...riv/jazykVysledku	eng - angličtina
http://linked.open.../riv/klicovaSlova	smart card; power analysis; source code analysis; platform security (en)
http://linked.open.../riv/klicoveSlovo	smart card platform security power analysis source code analysis
http://linked.open...ontrolniKodProRIV	[8518EDFEC0ED]
http://linked.open...v/mistoKonaniAkce	Maxičky
http://linked.open...i/riv/mistoVydani	Plzeň
http://linked.open...i/riv/nazevZdroje	Sborník příspěvků z 36. konference EurOpen.CZ
http://linked.open...in/vavai/riv/obor	IN
http://linked.open...ichTvurcuVysledku	3 (xsd:int)
http://linked.open...cetTvurcuVysledku	3 (xsd:int)
http://linked.open...vavai/riv/projekt	Czech Republic membership in the European Research Consortium for Informatics and Mathematics (ERCIM)
http://linked.open...UplatneniVysledku	2010
http://linked.open...iv/tvurceVysledku	Švenda, Petr Smolka, Tobiáš Lorenc, Václav
http://linked.open...vavai/riv/typAkce	CST - Celostátní
http://linked.open.../riv/zahajeniAkce	2010-05-16 (xsd:date)
number of pages	118 (xsd:int)
http://purl.org/ne...btex#hasPublisher	EurOpen.CZ
https://schema.org/isbn	978-80-86583-19-8
http://localhost/t...ganizacniJednotka	14330

Faceted Search & Find service v1.16.118 as of Jun 21 2024

Alternative Linked Data Documents: ODE Content Formats:

RDF

ODATA

Microdata

About

OpenLink Virtuoso version 07.20.3240 as of Jun 21 2024, on Linux (x86_64-pc-linux-gnu), Single-Server Edition (126 GB total memory, 47 GB memory in use)
Data on this page belongs to its respective rights holders.
Virtuoso Faceted Browser Copyright © 2009-2024 OpenLink Software