论文信息 - Certifying Native Java API by Formal Refinement

Certifying Native Java API by Formal Refinement

This paper describes a refinement-based approach to show that a native Java Card API function fulfills its specification. We refine a native function from its informal specification (by Sun) through several intermediate models into a low-level model which is very close to its C implementations. We formally prove the correctness of the refinement steps between two adjacent levels. The low-level model is sufficiently detailed such that its correspondence to the C implementation can be informally checked. This work provides a framework to enforce the security of the native code by formal analysis and can be generalized to verify a complete implementation of the Java Card platform.

Quang Huy Nguyen | Boutheina Chetali

[1] Gilles Barthe,et al. Non-interference for a JVM-like language , 2005, TLDI '05.

[2] Thomas P. Jensen,et al. Secure Object Flow Analysis for Java Card , 2002, CARDIS.

[3] Gilles Barthe,et al. A Tool-Assisted Framework for Certified Bytecode Verification , 2004, FASE.

[4] Pierre Courtieu,et al. Tool-Assisted Specification and Verification of the JavaCard Platform , 2002, AMAST.

[5] June Andronick,et al. Formal Verification of Security Properties of Smart Card Embedded Source Code , 2005, FM.

[6] Bart Jacobs,et al. Specification of the JavaCard API in JML , 2000, CARDIS.

[7] Sylvain Boulmé,et al. Adaptable Translator of B Specifications to Embedded C Programs , 2003, FME.

[8] Olivier Ly,et al. Using Coq to Verify Java Card Applet Isolation Properties , 2003, TPHOLs.

[9] Jean-Louis Lanet,et al. Enforcing High-Level Security Properties for Applets , 2004, CARDIS.

[10] Bill Venners,et al. Inside the Java Virtual Machine , 1997 .

[11] Andrew C. Myers,et al. Language-based information-flow security , 2003, IEEE J. Sel. Areas Commun..

[12] Jean-Louis Lanet,et al. Java Applet Correctness: A Developer-Oriented Approach , 2003, FME.

[13] Erik Poll,et al. Towards a Full Formal Specification of the JavaCard API , 2001, E-smart.