Abstract
We will discuss security testing and formal methods in the framework of the Common Criteria certification of smart cards. The discussion will introduce the requirements of the standard on the test activity and on the description of the design and will identify their impact on the methods and tools to use. Emphasis will be placed on the high levels of certification in which formal methods are required to demonstrate the correct design of the security. We will discuss the advantage of a mixed approach of formal model-based testing, that will allow to reach, in a pragmatic way, high levels of certification.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Chetali, B., Nguyen, Q.-H.: An Automated Testing Experiment for Layered Embedded C Code. The International Journal on ”Software Tools for Technology Transfer” (STTT-IEEEIsola2005) (2008) (special edition)
Chetali, B., Nguyen, Q.-H.: Industrial Use of Formal Methods for a High-level Security Evaluation. In: Cuellar, J., Maibaum, T., Sere, K. (eds.) FM 2008. LNCS, vol. 5014, pp. 198–213. Springer, Heidelberg (2008)
Masson, P.-A., Julliand, J., Plessis, J.-C., Jaffuel, E., Debois, G.: Automatic Generation of Model Based Tests for a Class of Security Properties. In: A-MOST 2007, 3rd Workshop on Advances in Model Based Testing, London, UK (July 2007)
Lanet, J.L.: The use of Formal Methods in the Smart Card Industry. In: International Workshop on Formal Method and Security, Nanjing, China (May 2004)
Common Criteria, http://www.commoncriteria.org/
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2009 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Chetali, B. (2009). Security Testing and Formal Methods for High Levels Certification of Smart Cards. In: Dubois, C. (eds) Tests and Proofs. TAP 2009. Lecture Notes in Computer Science, vol 5668. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-02949-3_1
Download citation
DOI: https://doi.org/10.1007/978-3-642-02949-3_1
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-02948-6
Online ISBN: 978-3-642-02949-3
eBook Packages: Computer ScienceComputer Science (R0)