Beta 1

Title Securing Multi-Application Smart Cards by Security-by-Contract
Author Lostal, Eduardo (Department of Informatics and Mathematical Modeling, Technical University of Denmark, DTU, DK-2800 Kgs. Lyngby, Denmark)
Supervisor Dragoni, Nicola (Embedded Systems Engineering, Department of Informatics and Mathematical Modeling, Technical University of Denmark, DTU, DK-2800 Kgs. Lyngby, Denmark)
Institution Technical University of Denmark, DTU, DK-2800 Kgs. Lyngby, Denmark
Thesis level Master's thesis
Year 2010
Abstract Java card technology has progressed at the point of running Web servers and web clients on a smart card. Yet concrete deployment of multi-applications smart cards has remained extremely rare because the business model of the asynchronous download and update of applications by different parties requires the control of interactions among possible applications after the card has been fielded. Current security models and techniques do not support this type of evolution. A promising approach to address this problem seems to be the Security-By- Contract (SxC) idea. SxC is a framework which makes mandatory that any post-issuance modification of the applications of the card comes bringing a specification of its security behavior, called contract. This must be compliant with the security policy of the multi-application smart card. Because of the constraint resources of these devices, the SxC approach can be applied at several level of abstractions, according to a defined hierarchy of models which provides benefits in terms of computational complexity or language expressivity. The most detailed one requires algorithms too complex to be executed on the card; hence, there is a need to send private data from the card to some Trusted Third Party which will be responsible for the comparison of the contract against the policy (process called Contract-Policy Matching) in order to decide whether the modification is compliant with the security policy or not. The purpose of the project is to develop a system which addresses the problem of outsourcing the Contract-Policy Matching to an o-card entity for Java multiapplication smart cards. It has to guarantee a secure communication between the card and some Trusted Third Party through an untrusted environment. This communication has to be secure in terms of authentication, integrity and confidentiality. Achieving that goal will require to solve several problems, such as identities and keys management and use of cryptographic functions to make communication of the private data stored on the smart card secure.
Imprint Technical University of Denmark (DTU) : Kgs. Lyngby, Denmark
Series IMM-M.Sc.-2010-55
Original PDF ep10_55.pdf (2.06 MB)
Admin Creation date: 2011-05-30    Update date: 2011-05-30    Source: dtu    ID: 277054    Original MXD