Developing provable secure m-commerce applications

Authors:
Holger Grandy;Dominik Haneberg;Wolfgang Reif;Kurt Stenzel
Affiliations:
Lehrstuhl für Softwaretechnik und Programmiersprachen, Institut für Informatik, Universität Augsburg, Augsburg, Germany;Lehrstuhl für Softwaretechnik und Programmiersprachen, Institut für Informatik, Universität Augsburg, Augsburg, Germany;Lehrstuhl für Softwaretechnik und Programmiersprachen, Institut für Informatik, Universität Augsburg, Augsburg, Germany;Lehrstuhl für Softwaretechnik und Programmiersprachen, Institut für Informatik, Universität Augsburg, Augsburg, Germany
Venue:
ETRICS'06 Proceedings of the 2006 international conference on Emerging Trends in Information and Communication Security
Year:
2006

Citing 15
Cited 3

Data refinement refined

Proc. of the European symposium on programming on ESOP 86
Evolving algebras 1993: Lipari guide

Specification and validation methods
Using Z: specification, refinement, and proof

Using Z: specification, refinement, and proof
The inductive approach to verifying cryptographic protocols

Journal of Computer Security
Refinement in Z and object-Z: foundations and advanced applications

Refinement in Z and object-Z: foundations and advanced applications
Intercepting mobile communications: the insecurity of 802.11

Proceedings of the 7th annual international conference on Mobile computing and networking
Dynamic Logic

Dynamic Logic
Formal System Development with KIV

FASE '00 Proceedings of the Third Internationsl Conference on Fundamental Approaches to Software Engineering: Held as Part of the European Joint Conferences on the Theory and Practice of Software, ETAPS 2000
A Method for Secure Smartcard Applications

AMAST '02 Proceedings of the 9th International Conference on Algebraic Methodology and Software Technology
Breaking and Fixing the Needham-Schroeder Public-Key Protocol Using FDR

TACAs '96 Proceedings of the Second International Workshop on Tools and Algorithms for Construction and Analysis of Systems
On the Refinement and Simulation of Data Types and Processes

IFM '99 Proceedings of the 1st International Conference on Integrated Formal Methods
Abstract State Machines: A Method for High-Level System Design and Analysis

Abstract State Machines: A Method for High-Level System Design and Analysis
ASM Refinement and generalizations of forward simulation in data refinement: a comparison

Theoretical Computer Science - Abstract state machines and high-level system design and analysis
Object Oriented Verification Kernels for Secure Java Applications

SEFM '05 Proceedings of the Third IEEE International Conference on Software Engineering and Formal Methods
Analysis of the SSL 3.0 protocol

WOEC'96 Proceedings of the 2nd conference on Proceedings of the Second USENIX Workshop on Electronic Commerce - Volume 2

Generating formal specifications for security-critical applications - A model-driven approach

IWSESS '09 Proceedings of the 2009 ICSE Workshop on Software Engineering for Secure Systems
Verifying smart card applications: an ASM approach

IFM'07 Proceedings of the 6th international conference on Integrated formal methods
A refinement method for Java programs

FMOODS'07 Proceedings of the 9th IFIP WG 6.1 international conference on Formal methods for open object-based distributed systems

Quantified Score

Hi-index	0.00

Visualization

Abstract

We present a modeling framework and a verification technique for m-commerce applications. Our approach supports the development of secure communication protocols for such applications as well as the refinement of the abstract protocol descriptions into executable Java code without any gap. The technique is explained using an interesting m-commerce application, an electronic ticketing system for cinema tickets. The verification has been done with KIV [BRS+00].