Vulnerability Analysis on Smart Cards Using Fault Tree - Archive ouverte HAL Accéder directement au contenu
Communication Dans Un Congrès Année : 2013

Vulnerability Analysis on Smart Cards Using Fault Tree

Guillaume Bouffard
Connectez-vous pour contacter l'auteur
DMI
CV
N. Thampi Bhagyalekshmy
  • Fonction : Auteur
DMI
Jean-Louis Lanet
  • Fonction : Auteur
  • PersonId : 918086
DMI

Résumé

In smart card domain, attacks and countermeasures are advancing at a fast rate. In order to have a generic view of all the attacks, we propose to use a Fault Tree Analysis. This method used in safety analysis helps to understand and implement all the desirable and undesirable events existing in this domain. We apply this method to Java Card vulnerability analysis. We define the properties that must be ensured: integrity and confidentiality of smart card data and code. By modeling the conditions, we discovered new attack paths to get access to the smart card contents. Then we introduce a new security api which is proposed to mitigate the undesirable events defined in the tree models.

Domaines

Informatique [cs] Cryptographie et sécurité [cs.CR] Informatique [cs] Systèmes embarqués

Guillaume Bouffard  : Connectez-vous pour contacter le contributeur

https://hal-unilim.archives-ouvertes.fr/hal-00966375

Soumis le : mercredi 26 mars 2014-15:15:56

Dernière modification le : vendredi 24 mars 2023-14:52:58

Consulter sur la plateforme ISTEX

Dates et versions

hal-00966375 , version 1 (26-03-2014)

Identifiants

Citer

Guillaume Bouffard, N. Thampi Bhagyalekshmy, Jean-Louis Lanet. Vulnerability Analysis on Smart Cards Using Fault Tree. 32nd International Conference of Computer Safety, Reliability, and Security, Sep 2013, Toulouse, France. pp.82-93, ⟨10.1007/978-3-642-40793-2_8⟩. ⟨hal-00966375⟩

Exporter

BibTeX TEI Dublin Core DC Terms EndNote Datacite

Collections

UNILIM CNRS XLIM
105 Consultations
0 Téléchargements

Altmetric

Partager

Gmail Facebook Twitter LinkedIn More