A Dynamic Syntax Interpretation for Java Based Smart Card to Mitigate Logical Attacks

Razafindralambo, Tiana; Bouffard, Guillaume; Thampi, Bhagyalekshmy N.; Lanet, Jean‐Louis

doi:10.1007/978-3-642-34135-9_19

Cited by 12 publications

(12 citation statements)

References 6 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In [18], a more memory-friendly countermeasure is presented, called field of bit; this countermeasure verifies whether a FA leads the JVM to illegally interpret bytecode operands as opcodes. An off-card encryption of the method bytecode is proposed in [17]. This bytecode encryption counteracts the security threat of jumping out of the actual method code and executing undefined data.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Countering type confusion and buffer overflow attacks on Java smart cards by data type sensitive obfuscation

Lackner

Berlach

Weiß

et al. 2014

Proceedings of the First Workshop on Cryptography and Security in Computing Systems

View full text Add to dashboard Cite

Java enabled smart cards protect security-related code and data by a sandbox concept. Unfortunately, this sandbox can be bypassed by fault attacks. Therefore, there is a substantial need for transparent, effective, and low-overhead countermeasures. This work demonstrates a new countermeasure against type confusion and buffer overflow attacks. This new countermeasure is based on obfuscating the security critical calculation parts of a virtual machine by secret keys. This countermeasure was integrated into a Java Card virtual machine running on a smart card prototype. New hardware features were added to this prototype to accelerate the obfuscating operation. The execution time overhead of the new countermeasure is demonstrated by performing run-time measurements on the prototype.

show abstract

Section: Related Workmentioning

confidence: 99%

“…The countermeasure needs no off-card pre-processing of a Java applet, as required by other countermeasures [18,5,19,17,7,11,13]. Furthermore, the countermeasure consumes no additional run-time memory for storing the Java type information during run-time as in [11].…”

Section: Industrial Usabilitymentioning

confidence: 99%

Countering type confusion and buffer overflow attacks on Java smart cards by data type sensitive obfuscation

Lackner

Berlach

Weiß

et al. 2014

Proceedings of the First Workshop on Cryptography and Security in Computing Systems

View full text Add to dashboard Cite

show abstract

“…In [20], the authors propose storing a countermeasure flag in a new applet component to indicate whether the method is encrypted. They perform this encryption using a secret key and the Java program counter for the bytecode of every method.…”

Section: Countermeasures Against Java Card Attacksmentioning

confidence: 99%

“…To be able to execute Java applets, the VM uses internal data structures, such as the OS or the LV, to store interim results of logical and combinatorial operations. All of these internal data structures are general objects for adversaries that attack the Java Card [4,20,24]. For every method invocation performed by the VM, a new Java frame [19] is created.…”

Section: Java Card Virtual Machinementioning

confidence: 99%

See 1 more Smart Citation

A Defensive Virtual Machine Layer to Counteract Fault Attacks on Java Cards

Lackner

Berlach

Raschke

et al. 2013

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Abstract. The objective of Java Cards is to protect security-critical code and data against a hostile environment. Adversaries perform fault attacks on these cards to change the control and data flow of the Java Card Virtual Machine. These attacks confuse the Java type system, jump to forbidden code or remove run-time security checks. This work introduces a novel security layer for a defensive Java Card Virtual Machine to counteract fault attacks. The advantages of this layer from the security and design perspectives of the virtual machine are demonstrated. In a case study, we demonstrate three implementations of the abstraction layer running on a Java Card prototype. Two implementations use software checks that are optimized for either memory consumption or execution speed. The third implementation accelerates the run-time verification process by using the dedicated hardware protection units of the Java Card.

show abstract

Memory Forensics of a Java Card Dump

Lanet

Bouffard

Lamrani

et al. 2015

Smart Card Research and Advanced Applications

Self Cite

View full text Add to dashboard Cite

International audienceNowadays several papers have shown the ability to dump the EEPROM area of several Java Cards leading to the disclosure of already loaded applet and data structure of the card. Such a reverse engineering process is costly and prone to errors. Currently there are no tools available to help the process. We propose here an approach to find in the raw data obtained after a dump, the area containing the code and the data. Then, once the code area has been identified, we propose to rebuilt the original binary Cap file in order to be able to obtain the source code of the applet stored in the card

show abstract

A Dynamic Syntax Interpretation for Java Based Smart Card to Mitigate Logical Attacks

Cited by 12 publications

References 6 publications

Countering type confusion and buffer overflow attacks on Java smart cards by data type sensitive obfuscation

Countering type confusion and buffer overflow attacks on Java smart cards by data type sensitive obfuscation

A Defensive Virtual Machine Layer to Counteract Fault Attacks on Java Cards

Memory Forensics of a Java Card Dump

Contact Info

Product

Resources

About