A security vulnerability of Java Card on array access in financial system | IEEE Conference Publication | IEEE Xplore

A security vulnerability of Java Card on array access in financial system


Abstract:

Generally, Java Card mainly consists of the following parts: COS (Chip Operating System), JCVM (Java Card Virtual Machine), and API (Application Programming Interface). A...Show More

Abstract:

Generally, Java Card mainly consists of the following parts: COS (Chip Operating System), JCVM (Java Card Virtual Machine), and API (Application Programming Interface). As a multi-application system, Java Card itself is very complicated, so it may inevitably exist some security vulnerabilities inside. Based on these parts of Java Card, we can find out some detectable points to its security vulnerabilities. This paper presents a method containing a specific case to test Java Card on array access, aiming to detect the possible security vulnerabilities of JCVM. In this paper, three different kinds of Java Cards have been tested and the test result has been described. From the test result, we successfully find out a security vulnerability of JCVM.
Date of Conference: 16-18 May 2013
Date Added to IEEE Xplore: 02 December 2013
ISBN Information:

ISSN Information:

Conference Location: Chongqing, China

References

References is not available for this document.