Evaluation of the ability to transform SIM applications into hostile applications

Authors:
Guillaume Bouffard;Jean-Louis Lanet;Jean-Baptiste Machemie;Jean-Yves Poichotte;Jean-Philippe Wary
Affiliations:
SSD - XLIM Labs, University of Limoges, Limoges, France;SSD - XLIM Labs, University of Limoges, Limoges, France;SSD - XLIM Labs, University of Limoges, Limoges, France;Direction Fraud and Information Security, SFR, Paris la Defense, France;Direction Fraud and Information Security, SFR, Paris la Defense, France
Venue:
CARDIS'11 Proceedings of the 10th IFIP WG 8.8/11.2 international conference on Smart Card Research and Advanced Applications
Year:
2011

Citing 12
Cited 2

Optical Fault Induction Attacks

CHES '02 Revised Papers from the 4th International Workshop on Cryptographic Hardware and Embedded Systems
Fault Attacks on RSA with CRT: Concrete Results and Practical Countermeasures

CHES '02 Revised Papers from the 4th International Workshop on Cryptographic Hardware and Embedded Systems
Safe Virtual Execution Using Software Dynamic Translation

ACSAC '02 Proceedings of the 18th Annual Computer Security Applications Conference
A new CRT-RSA algorithm secure against bellcore attacks

Proceedings of the 10th ACM conference on Computer and communications security
Cryptanalysis of a provably secure CRT-RSA algorithm

Proceedings of the 11th ACM conference on Computer and communications security
SWIFT: Software Implemented Fault Tolerance

Proceedings of the international symposium on Code generation and optimization
Control-flow integrity

Proceedings of the 12th ACM conference on Computer and communications security
Automatic detection of fault attack and countermeasures

WESS '09 Proceedings of the 4th Workshop on Embedded Systems Security
Developing a Trojan applets in a smart card

Journal in Computer Virology
Combined attacks and countermeasures

CARDIS'10 Proceedings of the 9th IFIP WG 8.8/11.2 international conference on Smart Card Research and Advanced Application
Attacks on java card 3.0 combining fault and logical attacks

CARDIS'10 Proceedings of the 9th IFIP WG 8.8/11.2 international conference on Smart Card Research and Advanced Application
Combined software and hardware attacks on the java card control flow

CARDIS'11 Proceedings of the 10th IFIP WG 8.8/11.2 international conference on Smart Card Research and Advanced Applications

Combined software and hardware attacks on the java card control flow

CARDIS'11 Proceedings of the 10th IFIP WG 8.8/11.2 international conference on Smart Card Research and Advanced Applications
Load time code validation for mobile phone Java Cards

Journal of Information Security and Applications

Quantified Score

Hi-index	0.00

Visualization

Abstract

The ability of Java Cards to withstand attacks is based on software and hardware countermeasures, and on the ability of the Java platform to check the correct behavior of Java code (by using byte code verification). Recently, the idea of combining logical attacks with a physical attack in order to bypass byte code verification has emerged. For instance, correct and legitimate Java Card applications can be dynamically modified on-card using a laser beam. Such applications become mutant applications, with a different control flow from the original expected behaviour. This internal change could lead to bypass controls and protections and thus offer illegal access to secret data and operations inside the chip. This paper presents an evaluation of the application ability to become mutant and a new countermeasure based on the runtime checks of the application control flow to detect the deviant mutations.