Presentation is loading. Please wait.

Presentation is loading. Please wait.

Java Card Technology Ch05: Atomicity and transactions Instructors: Fu-Chiung Cheng ( 鄭福炯 ) Associate Professor Computer Science & Engineering Computer.

Published byKerry Garrett Modified over 9 years ago

Similar presentations

Presentation on theme: "Java Card Technology Ch05: Atomicity and transactions Instructors: Fu-Chiung Cheng ( 鄭福炯 ) Associate Professor Computer Science & Engineering Computer."— Presentation transcript:

1 Java Card Technology Ch05: Atomicity and transactions Instructors: Fu-Chiung Cheng ( 鄭福炯 ) Associate Professor Computer Science & Engineering Computer Science & Engineering Tatung University

2 Atomicity and transactions Smart cards are emerging as a preferred device in such applications as Smart cards are emerging as a preferred device in such applications as  storing personal confidential data and  providing authentication services in mobile and distributed environment With smart card, there is a risk of failure at any time during applet execution. With smart card, there is a risk of failure at any time during applet execution.  a computational error,  a user may accidentally remove card from the CAD, cutting off the power supply to the card CPU.

3 Atomic Operations: JCRE provides a robust mechanism to ensure atomic operations: JCRE provides a robust mechanism to ensure atomic operations:  The java card platform guarantees that any update to a single field in a persistent object or a single class field is atomic.  The java card platform supports a transactional model, in which an applet can group a set of updates into a transaction.

4 Atomicity (I) Atomicity means that any update to a single persistent object field (including an array element) or to a class field is guaranteed to either complete successfully or else be restored to its original value if an error occurs during the update. Atomicity means that any update to a single persistent object field (including an array element) or to a class field is guaranteed to either complete successfully or else be restored to its original value if an error occurs during the update. The concept of atomicity apply only to the contents of persistent storage. The concept of atomicity apply only to the contents of persistent storage.

5 Atomicity (II) Atomicity defines how the JCRE handles a single data element in the case of an error (power loss) occurs during an update to that element Atomicity defines how the JCRE handles a single data element in the case of an error (power loss) occurs during an update to that element JCRE atomicity feature does not apply to transient arrays. JCRE atomicity feature does not apply to transient arrays. After an error occurs, the transient array is set to default values (zero, false or null). After an error occurs, the transient array is set to default values (zero, false or null).

6 Block data updates in an array The javacard.framework.Util class provides methods for block data updates: The javacard.framework.Util class provides methods for block data updates: 1. arrayCopy 2. arrayCopyNonAtomic 3. arrayFillNonAtomic

7 Util.arrayCopy mehtod Syntax: Syntax:  public static short arrayCopy(byte[] src, short srcOff, byte[] dest, short desOff, short length) Guarantees that either all bytes are correctly copied or the destination array is restored to its previous byte values. Guarantees that either all bytes are correctly copied or the destination array is restored to its previous byte values. Note that if the destination array is transient, the atomic feature does not hold. Note that if the destination array is transient, the atomic feature does not hold. arrayCopy requires extra EEPROM writes to support atomicity (slow) arrayCopy requires extra EEPROM writes to support atomicity (slow)

8 Util.arrayCopyNonAtomic Syntax: Syntax:  public static short arrayCopyNonAtomic(byte[] src, short srcOff, byte[] dest, short desOff, short length) Does not use transaction facility. Does not use transaction facility.

9 Util.arrayFillNonAtomic Syntax: Syntax:  public static short arrayFillNonAtomic(byte[] bArray, short bOff, short bLen, byte bValue) Nonatomically fills the elements of a byte array with specified value. Nonatomically fills the elements of a byte array with specified value.

10 Transactions Atomicity guarantees atomic modifications of a single data element Atomicity guarantees atomic modifications of a single data element However, an applet may need to atomically update several different fields in several different object However, an applet may need to atomically update several different fields in several different object For example: credit or debit transaction For example: credit or debit transaction  Increment the transaction number  Update the purse balance  Write a transaction log

11 Transactions Java card technology supports a similar transactional model, with commit and rollback capability to guarantee that complex operations can be accomplished atomically; either they successfully complete or their partial results are not put into effect. Java card technology supports a similar transactional model, with commit and rollback capability to guarantee that complex operations can be accomplished atomically; either they successfully complete or their partial results are not put into effect.

12 Commit Transactions // begin a transaction // begin a transactionJCSystem.beginTransaction(); //all modifications in a set of updates of //persistent data are temporary until //the transaction is committed //all modifications in a set of updates of //persistent data are temporary until //the transaction is committed…………… //commit a transactions //commit a transactionsJCSystem.commitTransaction();

13 Abort Transaction Transactions can be aborted either by an applet or by the JCRE.(by calling JCSystem.abortTransaction method) Transactions can be aborted either by an applet or by the JCRE.(by calling JCSystem.abortTransaction method) Aborting a transaction causes the JCRE to throw away any changes made during the transaction and restore conditionally update fields or array elements to their previous value Aborting a transaction causes the JCRE to throw away any changes made during the transaction and restore conditionally update fields or array elements to their previous value A transaction must be in progress when the abortTransaction method is invoked; otherwise, the JCRE throws a TransactionException. A transaction must be in progress when the abortTransaction method is invoked; otherwise, the JCRE throws a TransactionException.

14 Abort Transaction If power is lost or an error occurs during a transaction, the JCRE invokes a JRCE internal rollback facility the next time the card is powered on to restore the data involved in the transaction to their pre-transaction value If power is lost or an error occurs during a transaction, the JCRE invokes a JRCE internal rollback facility the next time the card is powered on to restore the data involved in the transaction to their pre-transaction value

15 Nested Transaction Transaction in the Java Card platform cannot be nested. Transaction in the Java Card platform cannot be nested. There can be only one transaction in progress at a time. (due to the limited computing resources of smart card.) There can be only one transaction in progress at a time. (due to the limited computing resources of smart card.) If JCSystem.beginTransaction is called while a transaction is already in progress, JCRE throws a TransactionException If JCSystem.beginTransaction is called while a transaction is already in progress, JCRE throws a TransactionException

16 Commit capacity (I) To support the rollback of uncommitted transactions, the JCRE maintains a commit buffer where the original contents of the updated fields are stored until the transaction is committed. To support the rollback of uncommitted transactions, the JCRE maintains a commit buffer where the original contents of the updated fields are stored until the transaction is committed. The size of the commit buffer varies, depending on the available card memory. The size of the commit buffer varies, depending on the available card memory. Due to the size of commit buffer, putting too many things in a transaction may not be possible Due to the size of commit buffer, putting too many things in a transaction may not be possible

17 Commit capacity (II) Before attempting a transaction, an applet can check the size of the available commit buffer against the size of the data requiring an atomic update Before attempting a transaction, an applet can check the size of the available commit buffer against the size of the data requiring an atomic update JCSystem provides two methods JCSystem provides two methods  JCSystem.getMaxCommitCapacity() return the total number of bytes in the commit buffer.  JCSystem.getUnusedCommitCapacity() returns the number of unused bytes left in the commit buffer.

18 Commit capacity (III) In addition to storing the contents of fields modified during a transaction, the commit buffer holds additional bytes of overhead data (location of the fields). In addition to storing the contents of fields modified during a transaction, the commit buffer holds additional bytes of overhead data (location of the fields). The amount of overhead data depends on the number of fields being modified The amount of overhead data depends on the number of fields being modified If the commit capacity is exceeded during a transaction, the JCRE throws a TransactionException. Even so, the transactions is still in progress unless it is explicitly aborted by the applet or by the JCRE. If the commit capacity is exceeded during a transaction, the JCRE throws a TransactionException. Even so, the transactions is still in progress unless it is explicitly aborted by the applet or by the JCRE.

19 TransactionException JCRE throws a TransactionException if JCRE throws a TransactionException if  nested transaction  commit buffer overflow TransactionException provides a reason code to indicate the cause of the exception: TransactionException provides a reason code to indicate the cause of the exception:  IN_PROGRESS: beginTransaction was called while a transaction was already in progress  NOT_IN_PROGRESS: commitTransaction or abortTransaction  BUFFER_FULL:  INTERNAL_FAILURE

20 Local variables and Transient Objects during a transaction Update to transient objects and local variables are never undone regardless of whether or not they were inside a transaction Update to transient objects and local variables are never undone regardless of whether or not they were inside a transaction See the example 1 in next page See the example 1 in next page  key_buffer: transient object  a_local: local variable See the example 2 See the example 2  Ref_1: reference to a transient object  Ref_2: reference to a persistent object

21 EXAMPLE1 Byte[] key_buffer = JCSystem.makeTransientBYteArray (KEY_LENGTH, JCSystem.CLEAR_ON_RESET); JCSystem.biginTransaction(); Util.arrayCopy(src, src_off, key_buffer, 0, KEY_LENGTH); Util.arrayCopyNonAtomic(src, src_off, key_buffer, 0, KEY_LENGTH); For(byte i =0; i<KEY_LENGTH; i++) key_buffer[i]=0; key_buffer[i]=0; Byte a_local = 1; JCSystem.abortTransaction();

22 EXAMPLE2 JCSystem.biginTransaction(); // ref_1 refers to a transient object ref_1 = JCSystem.makeTransientObjectArray(LENGTH, JCSystem.CLEAR_ON_DESELECT); // ref_2 refers to a persistent object ref_2 = new SomeClass(); if(!condition) JCSystem.abortTransaction(); JCSystem.abortTransaction();else JCSystem.commitTransaction(); JCSystem.commitTransaction(); return ref_2; // return null if abortTransactiion

Download ppt "Java Card Technology Ch05: Atomicity and transactions Instructors: Fu-Chiung Cheng ( 鄭福炯 ) Associate Professor Computer Science & Engineering Computer."

Similar presentations

Java Card Technology Ch04: Java Card Object

Java Card Technology Ch04: Java Card Object
Lectures on File Management

Lectures on File Management
Chapter 16: Recovery System

Chapter 16: Recovery System
TRANSACTION PROCESSING SYSTEM ROHIT KHOKHER. TRANSACTION RECOVERY TRANSACTION RECOVERY TRANSACTION STATES SERIALIZABILITY CONFLICT SERIALIZABILITY VIEW.

TRANSACTION PROCESSING SYSTEM ROHIT KHOKHER. TRANSACTION RECOVERY TRANSACTION RECOVERY TRANSACTION STATES SERIALIZABILITY CONFLICT SERIALIZABILITY VIEW.
Database Recovery Unit 12 Database Recovery 12-1.

Database Recovery Unit 12 Database Recovery 12-1.
©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 20 Slide 1 Critical systems development 2.

©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 20 Slide 1 Critical systems development 2.
Java Card Technology Ch07: Applet Instructors: Fu-Chiung Cheng ( 鄭福炯 ) Associate Professor Computer Science & Engineering Computer Science & Engineering.

Java Card Technology Ch07: Applet Instructors: Fu-Chiung Cheng ( 鄭福炯 ) Associate Professor Computer Science & Engineering Computer Science & Engineering.
Java Card Technology Ch06: Exception and Exception Handling Instructors: Fu-Chiung Cheng ( 鄭福炯 ) Associate Professor Computer Science & Engineering Computer.

Java Card Technology Ch06: Exception and Exception Handling Instructors: Fu-Chiung Cheng ( 鄭福炯 ) Associate Professor Computer Science & Engineering Computer.
1 CSIS 7102 Spring 2004 Lecture 8: Recovery (overview) Dr. King-Ip Lin.

1 CSIS 7102 Spring 2004 Lecture 8: Recovery (overview) Dr. King-Ip Lin.
Recovery CPSC 356 Database Ellen Walker Hiram College (Includes figures from Database Systems by Connolly & Begg, © Addison Wesley 2002)

Recovery CPSC 356 Database Ellen Walker Hiram College (Includes figures from Database Systems by Connolly & Begg, © Addison Wesley 2002)
Jan. 2014Dr. Yangjun Chen ACS-49021 Database recovery techniques (Ch. 21, 3 rd ed. – Ch. 19, 4 th and 5 th ed. – Ch. 23, 6 th ed.)

Jan. 2014Dr. Yangjun Chen ACS Database recovery techniques (Ch. 21, 3 rd ed. – Ch. 19, 4 th and 5 th ed. – Ch. 23, 6 th ed.)
Recovery 10/18/05. Implementing atomicity Note, when a transaction commits, the portion of the system implementing durability ensures the transaction’s.

Recovery 10/18/05. Implementing atomicity Note, when a transaction commits, the portion of the system implementing durability ensures the transaction’s.
Recovery Fall 2006McFadyen 49021 Concepts Failures are either: catastrophic to recover one restores the database using a past copy, followed by redoing.

Recovery Fall 2006McFadyen Concepts Failures are either: catastrophic to recover one restores the database using a past copy, followed by redoing.
1 Transaction Management Database recovery Concurrency control.

1 Transaction Management Database recovery Concurrency control.
Database Systems Chapter 17 ITM 354 Dr. Rick Kazman.

Database Systems Chapter 17 ITM 354 Dr. Rick Kazman.
Database Systems: Design, Implementation, and Management Eighth Edition Chapter 10 Transaction Management and Concurrency Control.

Database Systems: Design, Implementation, and Management Eighth Edition Chapter 10 Transaction Management and Concurrency Control.
Academic Year 2014 Spring. MODULE CC3005NI: Advanced Database Systems “DATABASE RECOVERY” (PART – 1) Academic Year 2014 Spring.

Academic Year 2014 Spring. MODULE CC3005NI: Advanced Database Systems “DATABASE RECOVERY” (PART – 1) Academic Year 2014 Spring.
INTRODUCTION TO TRANSACTION PROCESSING CHAPTER 21 (6/E) CHAPTER 17 (5/E)

INTRODUCTION TO TRANSACTION PROCESSING CHAPTER 21 (6/E) CHAPTER 17 (5/E)
Chapter 6Java: an Introduction to Computer Science & Programming - Walter Savitch 1 l Array Basics l Arrays in Classes and Methods l Programming with Arrays.

Chapter 6Java: an Introduction to Computer Science & Programming - Walter Savitch 1 l Array Basics l Arrays in Classes and Methods l Programming with Arrays.
1 Course Lectures Available on line:

1 Course Lectures Available on line:

Similar presentations

Ads by Google