JACK: Java Applet Correctness Kit
نویسندگان
چکیده
The paper presents a solution to improve the applet quality by allowing proof on Java Card annotated applets. It presents the chosen annotation language: JML that allows to formally specify each method and to give properties on fields. The innovative part of the paper is the presentation of the tools developed in the Gemplus Software Research Labs which allows proving the annotation by translating them in a formal language. To reduce the difficulty of using formal techniques, the tools aim to provide a user-friendly interface which hides to developers most of the formal features and provides him a "Java view" of proofs.
منابع مشابه
JACK - A Tool for Validation of Security and Behaviour of Java Applications
We describe the main features of JACK (Java Applet Correctness Kit), a tool for the validation of Java applications, annotated with JML specifications. JACK has been especially designed to improve the quality of trusted personal device applications. JACK is fully integrated with the IDE Eclipse, and provides an easily accessible user interface. In particular, it allows to inspect the generated ...
متن کاملGuaranteeing Correctness Properties of a Java Card Applet
The paper describes an experiment in which a framework for model checking Java byte code, combined with the application of runtime monitoring techniques through code rewriting, was used to guarantee correctness properties of a Java Card applet.
متن کاملSecure Object Sharing Development Kit for Java Card
Nowadays, Java Card platform-based Smart Cards are multi-application and support interapplet collaboration. The Java Card framework enforces applet isolation by means of the applet Firewall to prevent highly sensitive data in one applet to be leaked to another. The framework provides the Shareable Interface Object mechanism to allow developers to share services through the Firewall protection. ...
متن کاملReverse Engineering of Java Applets
Java applets have been used increasingly on web sites to perform client-side processing and provide dynamic content. While many web site analysis tools are available, their focus has been on static HTML content and most ignore applet code completely. This paper presents a system that analyzes and tracks changes in Java applets. The tool extracts information from applet code about classes, metho...
متن کاملReverse Engineering of Java
Java applets have been used increasingly on web sites to perform client-side processing and provide dynamic content. While many web site analysis tools are available , their focus has been on static HTML content and most ignore applet code completely. This paper presents a system that analyzes and tracks changes in Java ap-plets. The tool extracts information from applet code about classes, met...
متن کامل