Other formats:
BibTeX
LaTeX
RIS
@inproceedings{885711, author = {Lorenc, Václav and Smolka, Tobiáš and Švenda, Petr}, address = {Plzeň}, booktitle = {Sborník příspěvků z 36. konference EurOpen.CZ}, keywords = {smart card; power analysis; source code analysis; platform security}, language = {eng}, location = {Plzeň}, isbn = {978-80-86583-19-8}, pages = {93-115}, publisher = {EurOpen.CZ}, title = {Automatic source code transformations for strengthening practical security of smart card applications}, url = {http://europen.cz/Anot/36/eo-1-10.pdf}, year = {2010} }
TY - JOUR ID - 885711 AU - Lorenc, Václav - Smolka, Tobiáš - Švenda, Petr PY - 2010 TI - Automatic source code transformations for strengthening practical security of smart card applications PB - EurOpen.CZ CY - Plzeň SN - 9788086583198 KW - smart card KW - power analysis KW - source code analysis KW - platform security UR - http://europen.cz/Anot/36/eo-1-10.pdf N2 - Smart card platforms like Java Card or .NET allow to implement portable applications that can be run on different smart card hardware. The resulting overall security of the applet is strongly dependent on the implementation of the smart card operating system, related libraries, as well as physical resistance and information leakage of the underlying hardware. Defenses implementable on the source code level for later case might exist, but such a situation is unfavorable for applet developer as multiple versions of applet must be maintained to support a wider range of smart cards (although all providing Java Card platform). In this paper we describe several practical attacks on modern smart cards, discuss possible defenses and propose a general framework for automatic replacement of vulnerable operations by safe equivalents. A code strengthening constructions can be also automatically inserted. Practical implementation and examples of usage are presented and discussed. ER -
LORENC, Václav, Tobiáš SMOLKA and Petr ŠVENDA. Automatic source code transformations for strengthening practical security of smart card applications. In \textit{Sborník příspěvků z 36. konference EurOpen.CZ}. Plzeň: EurOpen.CZ, 2010, p.~93-115, 118 pp. ISBN~978-80-86583-19-8.
|