Abstract
We describe an implementation of a Java program to perform automated deduction in propositional multi-modal logics on a Java smart card. The tight space limits of Java smart cards make the implementation non-trivial. A potential application is to ensure that applets down-loaded off the internet conform to personalised security permissions stored on the Java card using a security policy encoded in multi-modal logic. In particular, modal logic may be useful to ensure that previously checked “trust” relationships between pre-existing multiple applets on a Java card are not broken by the addition of a new applet. That is, by using multi-modal logic to express notions of permissions and obligations, we can turn the security check into an on-board theorem proving task. Our theorem prover itself could be down-loaded “just in time” to perform the check, and then deleted to free up space on the card once the check has been completed. Our work is thus a “proof of principle” for the application of formal logic to the security of multi-application Java cards.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
N Bonnette and R Goré. A labelled sequent system for tense logic Kt. In AI98: Proceedings of the Australian Joint Conference on Artificial Intelligence, LNAI 1502:71–82. Springer, 1998.
V Boyapati and R Goré. System description: KtSeqC. In N. Murray, editor, Proc. International Conference on Theorem Proving with Analytic Tableau, volume LNCS 1617: 29–31. Springer, 1999.
P Blackburn. Nominal tense logic. Notre Dame Journal of Formal Logic, 34(1):56–83, 1993.
P Girard. Which security policy for multiapplication smart cards. In Proceedings USENIX Workshop on Smartcard Technology, pages 21–28, Chicago, USA, 1999.
G Grimaud, J-L Lanet, and J-J Vandewalle. FACADE: a typed intermediate language dedicated to smart cards. Technical report, Gemplus Research, http://www.gemplus.com/smart/r_d/publications/index.html,1999.
R. I. Goldblatt. Logics of Time and Computation. CSLI Lecture Notes No. 7, Center for the Study of Language and Information, Stanford, 1987.
R Goré. Chapter 6: Tableau methods for modal and temporal logics. In M D’Agostino, D Gabbay, R Hänle, J Posegga, editor, Handbook of Tableau Methods, pages 297–396. Kluwer Academic Publishers, 1999.
G. E. Hughes and M. J. Cresswell. A New Introduction To Modal Logic. Routledge, 1996.
Funge Inc. http://www.funge.net/, 1999.
B Lampson M Abadi, M Burrows and G Plotkin. A calculus for access control in distributed systems. AM Transactions on Programming Languages and Systems, 15(3):1–29, 1993.
A Mathuria. Contributions to Authentication Logics and Analysis of Authentication Protocols. PhD thesis, School of Information Technology and Computer Science, University of Wollongong, Australia, 1997.
M Abadi M Burrows and R Needham. A logic of authentication. ACM Transactions on Computer Systems, 8:18–36, 1990.
Sun Microsystems. Sun’s java web site. http://www.java.sun.com, 2000.
G Necula. Proof-carrying code. In Proc. of 24th Annual Symposium on Principles Of Programming Languages, 1997.
P Girard J-L Lanet V Wiels G Zanon P Bieber, J Cazin. Checking secure interactions of smart card applets. Technical report, Gemplus R&D Centre, 2000. http://www.gemplus.com/smart/r_d/projects/pacap.htm.
C C Peter. http://www.cityu.edu.hk/computer/c3_smartcard.htm.
A Rao and M Georgeff. A model-theoretic approach to the verification of situated reasoning systems. In Proceedings of the Thirteenth International Joint Conference on Artificial Intelligence (IJCAI-93), pages 318–324. Morgan-Kauffman, 1993.
A Slater, R Goré, J Posegga, and H Vogt. CardTAP: Automated theorem proving on a smart card. In AI98: Proceedings of the Australian Joint Conference on Artificial Intelligence, LNAI 1502:239–248. Springer, 1998.
G F. Shvarts. Autoepistemic modal logics. In Rohit Parikh, editor, Theoretical Aspects About Reasoning About Knowledge, pages 97–109, 1990.
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2001 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Goré, R., Nguyen, L.D. (2001). CardKt: Automated Multi-modal Deduction on Java Cards for Multi-application Security. In: Attali, I., Jensen, T. (eds) Java on Smart Cards:Programming and Security. JavaCard 2000. Lecture Notes in Computer Science, vol 2041. Springer, Berlin, Heidelberg. https://doi.org/10.1007/3-540-45165-X_4
Download citation
DOI: https://doi.org/10.1007/3-540-45165-X_4
Published:
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-42167-2
Online ISBN: 978-3-540-45165-5
eBook Packages: Springer Book Archive