Application of the B formal method to the proof of a type verification algorithm

Author

Requet, Antoine ; Casset, Ludovic ; Grimaud, Gilles

Author_Institution

Gemplus Res. Lab., France

fYear

2000

fDate

2000

Firstpage

115

Lastpage

124

Abstract

Smart cards are credit-card sized devices embedding a microprocessor. They are typically used to provide security to an information system. Open cards are smart cards able to download code after their issuance. The card security is usually ensured by a third party that sends a cryptographic certificate with the code to authenticate it. On-card code verification could be a solution for improving card deployment flexibility. However, due to the small amount of resources, the verification process is generally done off-card, and checking downloaded code on-card is a real challenge. The FACADE architecture proposes to generate a certificate off-card and to check the code using this certificate on-card. However, the certificate or the code can be modified, and so cannot be trusted. This paper presents the approach used to formally prove that the proposed verification algorithm never accepts an invalid program

Keywords

authorisation; cryptography; program verification; smart cards; B formal method; FACADE architecture; card security; cryptographic certificate; microprocessor embedding; security; smart cards; type verification algorithm; Data security; Information security; Information systems; Java; Microprocessors; Power system security; Read only memory; Runtime; Smart cards; Testing;

fLanguage

English

Publisher

ieee

Conference_Titel

High Assurance Systems Engineering, 2000, Fifth IEEE International Symposim on. HASE 2000

Conference_Location

Albuquerque, NM

Print_ISBN

0-7695-0927-4

Type

conf

DOI

10.1109/HASE.2000.895449

Filename

895449