Treffer: Enhancing Java Runtime Environment for Smart Cards Against Runtime Attacks

Title:
Enhancing Java Runtime Environment for Smart Cards Against Runtime Attacks
Authors:
Akram, Raja Naeem, Markantonakis, Konstantinos, Mayes, Keith
Contributors:
Ryan, Peter Y A, Weippl, Edgar
Source:
Akram, R N, Markantonakis, K & Mayes, K 2015, Enhancing Java Runtime Environment for Smart Cards Against Runtime Attacks. in P Y A Ryan & E Weippl (eds), Computer Security -- ESORICS 2015 : 20th European Symposium on Research in Computer Security, Vienna, Austria, September 21-25, 2015, Proceedings, Part II. Lecture Notes in Computer Science, vol. 9327, Springer, Vienna, Austria, pp. 541-560. https://doi.org/10.1007/978-3-319-24177-7_27
Publisher Information:
Springer
Publication Year:
2015
Subject Terms:
Smart Card, Java Card, Fault Attacks, Combined Attacks, Counter-Measures, Java Runtime Environment
Document Type:
Fachzeitschrift article in journal/newspaper
File Description:
application/pdf
Language:
English
Relation:
info:eu-repo/semantics/altIdentifier/isbn/978-3-319-24176-0
DOI:
10.1007/978-3-319-24177-7_27
Availability:
https://rhul.elsevierpure.com/en/publications/3a7568c3-af52-4aa7-8a83-514e6660f0fd
https://doi.org/10.1007/978-3-319-24177-7_27
https://pure.royalholloway.ac.uk/ws/files/25117130/ESORICS_2015_submission_210.pdf
Rights:
info:eu-repo/semantics/openAccess
Accession Number:
edsbas.1CC1FC41
Database:
BASE

Weitere Informationen

Smart cards are mostly deployed in security-critical environments in order to provide a secure and trusted access to the provisioned services. These services are delivered to a cardholder using the Service Provider's (SPs) applications on his or her smart card(s). These applications are at their most vulnerable state when they are executing. There exist a variety of runtime attacks that can circumvent the security checks implemented either by the respective application or the runtime environment to protect the smart card platform, user and/or application. In this paper, we discuss the Java Runtime Environment and a potential threat model based on runtime attacks. Subsequently, we discussed the counter-measures that can be deployed to provide a secure and reliable execution platform, along with an evaluation of their effectiveness, incurred performance-penalty and latency.