Enforcement of applet boundaries in Java card systems.
Enforcement of applet boundaries in Java card systems.
In multi-application Java Cards, applet's sensitive data must be protected against unauthorized accesses. Applet isolation is normally achieved through the firewall mechanism. The firewall allows an applet to access external objects only through an object sharing mechanism, called shareable interface. Firewall is based on the access control policy and does not control information propagation. This paper shows how extending the firewall with the inspection of call-stack of shareable interface methods contributes to avoid unwanted information flow that can arise as a result of method callback from one applet to another. This control detects the illegal information flow of the well-known Electronic Purse case study.
- University of Pisa Italy
Embedded Systems programming; Java Card Firewall; Security
Embedded Systems programming; Java Card Firewall; Security
selected citations These citations are derived from selected sources.This is an alternative to the "Influence" indicator, which also reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).0 popularity This indicator reflects the "current" impact/attention (the "hype") of an article in the research community at large, based on the underlying citation network.Average influence This indicator reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).Average impulse This indicator reflects the initial momentum of an article directly after its publication, based on the underlying citation network.Average
Citations provided by BIP!Popularity provided by BIP!