Name
Abstract | ||
|---|---|---|
In multi-application Java Cards, applet's sensitive data must be protected against unauthorized accesses. Applet isolation is normally achieved through the firewall mechanism. The firewall allows an applet to access external objects only through an object sharing mechanism, called shareable interface. Firewall is based on the access control policy and does not control information propagation. This paper shows how extending the firewall with the inspection of call-stack of shareable interface methods contributes to avoid unwanted information flow that can arise as a result of method callback from one applet to another. This control detects the illegal information flow of the well-known Electronic Purse case study. |
Year | Venue | Keywords |
|---|---|---|
2004 | IASTED Conf. on Software Engineering and Applications | java card firewall,embedded systems programming,security,information flow,embedded system,java card |
Field | DocType | Citations |
Firewall (construction),Computer science,Java concurrency,Real time Java,Callback,strictfp,Access control,Java Card,Java applet,Operating system | Conference | 3 |
PageRank | References | Authors |
0.49 | 8 | 2 |
Name | Order | Citations | PageRank |
|---|---|---|---|
| Cinzia Bernardeschi | 1 | 226 | 31.87 |
| Luca Martini | 2 | 19 | 3.65 |