Presentation is loading. Please wait.

Presentation is loading. Please wait.

Security of JavaCard smart card applets Erik Poll University of Nijmegen

Published byMaia Lingley Modified over 10 years ago

Similar presentations

Presentation on theme: "Security of JavaCard smart card applets Erik Poll University of Nijmegen"— Presentation transcript:

1 Security of JavaCard smart card applets Erik Poll University of Nijmegen http://www.cs.kun.nl/~erikpoll

2 2 Contents Smart cards New generation smart cards –smart card applets –language level security –applet security Applet Security

3 SMART CARDS

4 4 Smart Cards Card with microprocessor capable of –storing information –processing information: en/decyption This is what makes a smart card smart; stupid cards cannot do this Eg. bank card, mobile phone SIM

5 5 private key K CPU challenge c response f K (c) Why use smart cards ? Private key K never leaves the card Card issuer does not have to trust card holder, terminal, or network

6 6 Why use smart cards ? send password unencrypted over net (eg. rlogin) trust network, terminal, user send password encrypted over net (eg. slogin) trust terminal, user idem, but user, not terminal, does encryption trust user using smart card trust no-one

7 7 NB smart card security is not perfect Card can be physically attacked: –Reading or writing of the chip (memory, bus) –Analysing timing or power consumption (DPA)

8 NEW GENERATION SMART CARDS Eg: Java Card, Windows for Smart Cards, MULTOS

9 9 Old vs new smart cards one program (applet) written in chip- specific machine code burnt into ROM Applet written in high- level language compiled into bytecode stored in EEPROM interpreted on card multi-application: several applets on one card post-issuance: adding or deleting applets on card

10 10 Multi-application Several applets on one card, possibly interacting Eg –credit card + loyalty program –access to buildings + computer networks –frequent flyer card + electronic check-in –all of the above

11 11 Post-issuance Additional applets downloaded onto card after it has been issued, to add or upgrade services –eg. removing chipper and adding chipknip –cf. downloading applets in web-browser Post-issuance download tightly controlled: only trusted - digitally signed - applets downloaded (using VISA Open Platform), or none at all.

12 12 Java Card A subset of Java –no threads, no doubles, no strings, gc optional... with some extras –persistent and transient objects –transaction mechanism and increased language-level security –standard sandbox (cf. web-browsers) –plus firewall between applets

13 13 Java Card platform Java Card smart card smart card hardware applet Java Card Virtual Machine Java Card API (mini OS)

14 14 applet Java Card smart card Java Card platform applet terminal smart card hardware

15 15 Advantages of new generation easier development of applications –faster and cheaper –high-level language –independent of underlying hardware more flexibility –multi-application –post-issuance download ?

16 16 Disadvantage Disadvantage: Security incorrect or malicious applet may interfere with other applets or platform –Eg a virus on a credit card or mobile phone platform can provide basic security against illegal operations applet should take care to provide any additional security it requires

17 17 Platform level security (platform = VM+OS) language level security byte code verification OS security firewall Applet security anything beyond this Interesting problems for formal methods...

18 APPLET SECURITY

19 19 Context of this work Verification of JML-annotated Java code, eg public int squareRoot(int i); //@ pre true; //@ post \result^2 <= i && i < (\result+1)^2; //@ signals (SomeException) i < 0; using the LOOP tool as front end for the PVS theorem prover. What can we do for applets with this approach ?

20 20 Towards applet security How to specify applet security ? 1. Applet correctness method does what it should do 2. Applet security policy: access control method/data only accessed when allowed 3. Secure information flow method does not leak information......

21 21 1. Applet correctness ie. verify that applet satisfies pre- postconditions and invariants, eg //@ invariant 0<= balance && balance <= MAX; This can be done using JML to specify and LOOP/PVS to verify

22 22 1. Applet correctness But: correctness security? Maybe not, but correctness security In any case: no assumptions on incoming data!

23 23 2. Applet security policy Access control for methods –who may invoke which method when in the smartcard/applet life cycle and for data –confidentiality: who may access data –integrity - preventing corruption of data: modification by authorised party, with correct (digitally signed) value

24 24 Distinguish states in smartcard/applet life cycle Specify who may do what in which state This can be specified in JML, eg //@ assert state == blocked && user == admin; 2. Method access control personalisedblockedinstalled initblock normal operationsinspect

25 25 2. Method access control Method access control method invoked when allowed complements correctness method does what it should do Maybe temporal logic specifications better for expressing (il)legal access control ?

26 26 2. Data access control Annotate any data access with checks... //@ assert: state == admin; PIN = newPIN;... verify that these conditions are met

27 27 2. Data access control Maybe data access already shows up in the pre- and postconditions of methods ?

28 28 3. Secure information flow No sensitive information may be leaked Traditional approach to information flow: –distinguish high and low security level variables –forbid assignments of high to low cq. dependencies of low on high level –check this by static analysis/type checking, or model checking

29 29 3. Secure information flow Information flow using pre/postconditions: public int m(int i); //@ post \result == f(i,low level variables); //@ signals (Exception) P(i,low level vars); for some f and P means that no high security level values are leaked. Practical in real examples ?

30 30 Conclusion Security of a smartcard application relies on –Hardware security –Platform security –Applet security –Use scenario Software How to specify security ? Correctness security ? Ongoing work: applet case study using JML

Download ppt "Security of JavaCard smart card applets Erik Poll University of Nijmegen"

Similar presentations

Why Have The OSGi Specifications Been Based On Java Technology ? By Peter Kriens, CEO aQute OSGi Technology Officer www.aQute.se.

Why Have The OSGi Specifications Been Based On Java Technology ? By Peter Kriens, CEO aQute OSGi Technology Officer
11/2/2013 2:02:38 AM 5864_ER_FED 1 Importing Certificates into Lotus Notes R6.

11/2/2013 2:02:38 AM 5864_ER_FED 1 Importing Certificates into Lotus Notes R6.
What is a Computer Program? For a computer to be able to do anything (multiply, play a song, run a word processor), it must be given the instructions.

What is a Computer Program? For a computer to be able to do anything (multiply, play a song, run a word processor), it must be given the instructions.
Operating Systems Components of OS

Operating Systems Components of OS
1 Copyright © 2005, Oracle. All rights reserved. Introducing the Java and Oracle Platforms.

1 Copyright © 2005, Oracle. All rights reserved. Introducing the Java and Oracle Platforms.
0 - 0.

0 - 0.
ADDING INTEGERS 1. POS. + POS. = POS. 2. NEG. + NEG. = NEG. 3. POS. + NEG. OR NEG. + POS. SUBTRACT TAKE SIGN OF BIGGER ABSOLUTE VALUE.

ADDING INTEGERS 1. POS. + POS. = POS. 2. NEG. + NEG. = NEG. 3. POS. + NEG. OR NEG. + POS. SUBTRACT TAKE SIGN OF BIGGER ABSOLUTE VALUE.
SUBTRACTING INTEGERS 1. CHANGE THE SUBTRACTION SIGN TO ADDITION

SUBTRACTING INTEGERS 1. CHANGE THE SUBTRACTION SIGN TO ADDITION
MULT. INTEGERS 1. IF THE SIGNS ARE THE SAME THE ANSWER IS POSITIVE 2. IF THE SIGNS ARE DIFFERENT THE ANSWER IS NEGATIVE.

MULT. INTEGERS 1. IF THE SIGNS ARE THE SAME THE ANSWER IS POSITIVE 2. IF THE SIGNS ARE DIFFERENT THE ANSWER IS NEGATIVE.
Addition Facts 1 - 20.

Addition Facts
1 G54PRG Programming Lecture 1 Amadeo Ascó Adam Moore G54PRG Programming Lecture 1 Amadeo Ascó 3 Java Programming Language.

1 G54PRG Programming Lecture 1 Amadeo Ascó Adam Moore G54PRG Programming Lecture 1 Amadeo Ascó 3 Java Programming Language.
© 2003 School of Computing, University of Leeds SY32 Secure Computing, Lecture 16 Secure Coding in Java and.NET Part 1: Fundamentals.

© 2003 School of Computing, University of Leeds SY32 Secure Computing, Lecture 16 Secure Coding in Java and.NET Part 1: Fundamentals.
1 Java Card Technology Prepared by:Ali Toyserkani Adopted from: Introduction to Java Card Technology C. Enrique Ortiz.

1 Java Card Technology Prepared by:Ali Toyserkani Adopted from: Introduction to Java Card Technology C. Enrique Ortiz.
563.11.1 Java Card Programming: Overview Presented by: Raman Sharykin PISCES Group: Soumyadeb Mitra, Sruthi Bandhakavi, Ragib Hasan, Raman Sharikyn University.

Java Card Programming: Overview Presented by: Raman Sharykin PISCES Group: Soumyadeb Mitra, Sruthi Bandhakavi, Ragib Hasan, Raman Sharikyn University.
Automata-Based Programming Technology Extension for Generation of JML Annotated Java Card Code Andrey Klebanov, CTD, SPb SU ITMO supervised by Anatoly.

Automata-Based Programming Technology Extension for Generation of JML Annotated Java Card Code Andrey Klebanov, CTD, SPb SU ITMO supervised by Anatoly.
Match On Card Technology and its use for PKI Mgr. Miroslav Valeš Sales Manager Eastern Europe May 9, 2001 CATE 2001 Security and Protection.

Match On Card Technology and its use for PKI Mgr. Miroslav Valeš Sales Manager Eastern Europe May 9, 2001 CATE 2001 Security and Protection.
Gareth Ellis Senior Solutions Consultant Session 5a Key and PIN Management.

Gareth Ellis Senior Solutions Consultant Session 5a Key and PIN Management.
New Security Issues Raised by Open Cards Pierre GirardJean-Louis Lanet GERMPLUS R&D.

New Security Issues Raised by Open Cards Pierre GirardJean-Louis Lanet GERMPLUS R&D.
Information Systems Today: Managing in the Digital World

Information Systems Today: Managing in the Digital World
Review Ch. 3 – Connecting to the Worlds Information © 2010, 2006 South-Western, Cengage Learning.

Review Ch. 3 – Connecting to the Worlds Information © 2010, 2006 South-Western, Cengage Learning.

Similar presentations

Ads by Google