Welcome!
To use the personalized features of this site, please log in or register.
If you have forgotten your username or password, we can help.
|
 |
Formal Verification of Security Properties of Smart Card Embedded Source Code
| |
|
Security
Formal Verification of Security Properties of Smart Card Embedded Source Code June Andronick1  , Boutheina Chetali1 and Christine Paulin-Mohring2
| (1) |
Axalto, Smart Cards Research 36-38, rue de la Princesse, BP45, 78431 Louveciennes Cedex, France |
| (2) |
Université Paris-Sud, Laboratoire de Recherche en Informatique, UMR 8623 CNRS, Bâtiment 490, F-91405 Orsay Cedex, France |
Abstract
This paper reports on a method to handle the verification of various security properties of imperative source code embedded on smart cards. The idea is to combine two program verification approaches: the functional verification at the source code level and the verification of high level properties on a formal model built from the program and its specification. The method presented uses the Caduceus tool, built on top of the Why tool. Caduceus enables the verification of an annotated C program and provides a validation process that we used to generate a high level formal model of the C source code. This method is illustrated by an example extracted from the verification of a smart card embedded operating system.
Keywords: Theorem Proving, Smart Card, Security, Source code verification, Formal Methods.
Fulltext Preview (Small, Large)
|
|
|
|
|
|