论文信息 - Model Checking of Multi-Applet JavaCard Applications

Model Checking of Multi-Applet JavaCard Applications

The paper describes a framework for model checking JavaCard applets on the bytecode level. From a set of JavaCard applets we extract their method call graphs using a static analysis tool. The resulting structure is translated into a pushdown system for which the model checking problem for Linear Temporal Logic (LTL) is decidable, and for which there are efficient model checking tools available. The model checking approach of the paper is tailored to the analysis of inter applet (intra card) communications and we demonstrate it using a prototypical example of a purse applet and a set of loyalty applets.

[1] Javier Esparza,et al. A BDD-Based Model Checker for Recursive Programs , 2001, CAV.

[2] Faron Moller,et al. Verification on Infinite Structures , 2001, Handbook of Process Algebra.

[3] Radu Iosif,et al. Modeling and Validation of Java Multithreading Applications using SPIN , 1998 .

[4] Javier Esparza,et al. Efficient Algorithms for Model Checking Pushdown Systems , 2000, CAV.

[5] Jean-Louis Lanet,et al. Checking Secure Interactions of Smart Card Applets , 2000, ESORICS.

[6] Gilles Barthe,et al. Compositional Verification of Secure Applet Interactions , 2002, FASE.

[7] Klaus Havelund,et al. Model checking JAVA programs using JAVA PathFinder , 2000, International Journal on Software Tools for Technology Transfer.

[8] James C. Corbett,et al. Bandera: extracting finite-state models from Java source code , 2000, ICSE.

[9] Javier Esparza,et al. Reachability Analysis of Pushdown Automata: Application to Model-Checking , 1997, CONCUR.

[10] Daniel Le Métayer,et al. Verification of control flow based security properties , 1999, Proceedings of the 1999 IEEE Symposium on Security and Privacy (Cat. No.99CB36344).

[11] Pierre Wolper,et al. A direct symbolic approach to model checking pushdown systems , 1997, INFINITY.