a formal specification of the midp 2 0 security model
play

A Formal Specification of the MIDP 2.0 Security Model eguelin 1 - PowerPoint PPT Presentation

Dec 26, 2023 •882 likes •1.4k views

Motivation Specification Verification Refinement A Formal Specification of the MIDP 2.0 Security Model eguelin 1 Gustavo Betarte 2 Carlos Luna 2 Santiago Zanella B 1 Everest Project, INRIA Sophia Antipolis INRIAMicrosoft Research Joint

  1. Motivation Specification Verification Refinement A Formal Specification of the MIDP 2.0 Security Model eguelin 1 Gustavo Betarte 2 Carlos Luna 2 Santiago Zanella B´ 1 Everest Project, INRIA Sophia Antipolis INRIA–Microsoft Research Joint Laboratory 2 InCo, Universidad de la Rep´ ublica, Uruguay Workshop on Formal Aspects in Security and Trust, 2006 Zanella B´ eguelin, Betarte, Luna A Formal Specification of the MIDP 2.0 Security Model

  2. Motivation Specification Verification Refinement Outline Motivation 1 Specification 2 Verification 3 Refinement 4 Zanella B´ eguelin, Betarte, Luna A Formal Specification of the MIDP 2.0 Security Model

  3. Motivation Specification Verification Refinement What is a Mobile Device? Defining characteristics portable scarce resources (compared with other platforms) communicated stores personal information subscribed to pay-per-use services Zanella B´ eguelin, Betarte, Luna A Formal Specification of the MIDP 2.0 Security Model

  4. Motivation Specification Verification Refinement Some Examples Cell Phones Personal Digital Assistants Zanella B´ eguelin, Betarte, Luna A Formal Specification of the MIDP 2.0 Security Model

  5. Motivation Specification Verification Refinement The Problem What a secure mobile device should enforce: Data confidentiality and integrity Cost control Availability ...even in the presence of malicious applications Zanella B´ eguelin, Betarte, Luna A Formal Specification of the MIDP 2.0 Security Model

  6. Motivation Specification Verification Refinement The Problem What a secure mobile device should enforce: Data confidentiality and integrity Cost control Availability ...even in the presence of malicious applications Zanella B´ eguelin, Betarte, Luna A Formal Specification of the MIDP 2.0 Security Model

  7. Motivation Specification Verification Refinement The Problem A possible scenario If the device supports loading of executable code after issuance... A B Zanella B´ eguelin, Betarte, Luna A Formal Specification of the MIDP 2.0 Security Model

  8. Motivation Specification Verification Refinement The Problem A possible scenario If the device supports loading of executable code after issuance... A B Zanella B´ eguelin, Betarte, Luna A Formal Specification of the MIDP 2.0 Security Model

  9. Motivation Specification Verification Refinement The Problem A possible scenario If the device supports loading of executable code after issuance... A B Zanella B´ eguelin, Betarte, Luna A Formal Specification of the MIDP 2.0 Security Model

  10. Motivation Specification Verification Refinement The Problem A possible scenario If the device supports loading of executable code after issuance... A B Zanella B´ eguelin, Betarte, Luna A Formal Specification of the MIDP 2.0 Security Model

  11. Motivation Specification Verification Refinement The Problem A possible scenario If the device supports loading of executable code after issuance... A B Zanella B´ eguelin, Betarte, Luna A Formal Specification of the MIDP 2.0 Security Model

  12. Motivation Specification Verification Refinement The Problem A possible scenario If the device supports loading of executable code after issuance... A B Zanella B´ eguelin, Betarte, Luna A Formal Specification of the MIDP 2.0 Security Model

  13. Motivation Specification Verification Refinement First Solution Removing the cause Either Don’t allow users to download code but they love to do so (and it’s a big market opportunity) Don’t allow downloaded code to access sensitive APIs but many useful applications must do so (e.g. synchronization, news push) Roughly, MIDP 1.0 used this last solution (a sandbox model) Zanella B´ eguelin, Betarte, Luna A Formal Specification of the MIDP 2.0 Security Model

  14. Motivation Specification Verification Refinement Second solution Establish a security policy A security policy is a mapping from a set of properties that characterize code to a set of access permissions granted to that code Zanella B´ eguelin, Betarte, Luna A Formal Specification of the MIDP 2.0 Security Model

  15. Motivation Specification Verification Refinement Second solution Establish a security policy A security policy is a mapping from a set of properties that characterize code to a set of access permissions granted to that code Zanella B´ eguelin, Betarte, Luna A Formal Specification of the MIDP 2.0 Security Model

  16. Motivation Specification Verification Refinement Layered J2ME - MIDP architecture OEM-specific Applications MIDP Applications Native OEM-specific Applications APIs MIDP CLDC Java Virtual Machine Native Operating System Hardware Users may only download MIDP applications MIDP applications access resources through restricted interface Zanella B´ eguelin, Betarte, Luna A Formal Specification of the MIDP 2.0 Security Model

  17. Motivation Specification Verification Refinement MIDP Security Model In MIDP 1.0, sandbox -like model In MIDP 2.0, model based on protection domains Protection Domain It’s an abstraction of the context of execution of a piece of code Restricts access to sensitive functions In MIDP 2.0, each application belongs to a suite and each suite is bound to a unique Protection Domain Zanella B´ eguelin, Betarte, Luna A Formal Specification of the MIDP 2.0 Security Model

  18. Motivation Specification Verification Refinement MIDP Security Model In MIDP 1.0, sandbox -like model In MIDP 2.0, model based on protection domains Protection Domain It’s an abstraction of the context of execution of a piece of code Restricts access to sensitive functions In MIDP 2.0, each application belongs to a suite and each suite is bound to a unique Protection Domain Zanella B´ eguelin, Betarte, Luna A Formal Specification of the MIDP 2.0 Security Model

  19. Motivation Specification Verification Refinement Protection Domains in Practice Policy Sig K A Sig K B Zanella B´ eguelin, Betarte, Luna A Formal Specification of the MIDP 2.0 Security Model

  20. Motivation Specification Verification Refinement Protection Domains in Practice Policy Zanella B´ eguelin, Betarte, Luna A Formal Specification of the MIDP 2.0 Security Model

  21. Motivation Specification Verification Refinement MIDP 2.0 Security Model Protected function − → Permission A Protection Domain determines: A set of permissions granted unconditionally A set of permissions that could be granted with explicit user authorization, together with a mode that specifies its validity blanket until the removal of the suite session for the current session oneshot for a single use oneshot ≤ m session ≤ m blanket . The specified mode is an upper bound Zanella B´ eguelin, Betarte, Luna A Formal Specification of the MIDP 2.0 Security Model

  22. Motivation Specification Verification Refinement Permissions Acquired by a Suite A suite declares at installation time the permissions it requires Zanella B´ eguelin, Betarte, Luna A Formal Specification of the MIDP 2.0 Security Model

  23. Motivation Specification Verification Refinement Permissions Acquired by a Suite A suite declares at installation time the permissions it requires Acquired = Requested ∩ (Unconditionally granted ∪ Granted by user authorization) Zanella B´ eguelin, Betarte, Luna A Formal Specification of the MIDP 2.0 Security Model

  24. Motivation Specification Verification Refinement New Problems Issues Does the security model enforce the security policy? Do implementations conform to the model? How do other operations interfere with the model? Zanella B´ eguelin, Betarte, Luna A Formal Specification of the MIDP 2.0 Security Model

  25. Motivation Specification Verification Refinement New Problems Issues Does the security model enforce the security policy? Do implementations conform to the model? How do other operations interfere with the model? What is exactly the security model? Zanella B´ eguelin, Betarte, Luna A Formal Specification of the MIDP 2.0 Security Model

  26. Motivation Specification Verification Refinement Outline Motivation 1 Specification 2 Verification 3 Refinement 4 Zanella B´ eguelin, Betarte, Luna A Formal Specification of the MIDP 2.0 Security Model

  27. Motivation Specification Verification Refinement Remarks Formalized in the Calculus of Inductive Constructions Developed with the Coq proof assistant Abstract higher-order specification Zanella B´ eguelin, Betarte, Luna A Formal Specification of the MIDP 2.0 Security Model

  28. Motivation Specification Verification Refinement The Calculus of Inductive Constructions CIC CIC is an extension of the simple-typed lambda calculus with: Polymorphic types [ ( λ x . x ) : A → A ] Higher-order types [ A → A : ∗ : � ] Dependent types [ ( λ a : A . f a ) : ( ∀ a : A . B a ) ] Implemented in Coq Type checker + Proof assistant Can encode higher-order predicate logic Inductive definitions types ↔ propositions Curry-Howard isomorphism terms ↔ proofs Zanella B´ eguelin, Betarte, Luna A Formal Specification of the MIDP 2.0 Security Model

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Widget security model based on MIDP and Web Application based on a security model with TLS/SSL

Widget security model based on MIDP and Web Application based on a security model with TLS/SSL

Widget security model based on MIDP and Web Application based on a security model with TLS/SSL and XMLDsig Claes Nilsson Technology Area Group Leader Web Browsing Marcus Liwell Technology Area Group Leader Security and DRM Rev 1

576 views • 12 slides
Formal Specification and Verification Formal specification (2) 6.12.2016 Viorica

Formal Specification and Verification Formal specification (2) 6.12.2016 Viorica

Formal Specification and Verification Formal specification (2) 6.12.2016 Viorica Sofronie-Stokkermans e-mail: sofronie@uni-koblenz.de 1 Until now Logic Formal specification (generalities) Algebraic specification Transition systems 2

798 views • 62 slides
Formal Specification and Verification Formal specification (2) 29.11.2016 Viorica

Formal Specification and Verification Formal specification (2) 29.11.2016 Viorica

Formal Specification and Verification Formal specification (2) 29.11.2016 Viorica Sofronie-Stokkermans e-mail: sofronie@uni-koblenz.de 1 Until now Logic Formal specification (generalities) Algebraic specification 2 Formal

627 views • 19 slides
Formal Specification and Verification Formal specification Temporal logic 12.06.2012

Formal Specification and Verification Formal specification Temporal logic 12.06.2012

Formal Specification and Verification Formal specification Temporal logic 12.06.2012 Viorica Sofronie-Stokkermans e-mail: sofronie@uni-koblenz.de 1 Formal specification Specification for program/system Specification for

443 views • 21 slides
Formal Specification Techniques Knowledge of typical approaches to formal software specification

Formal Specification Techniques Knowledge of typical approaches to formal software specification

Goals Understanding of the motivation of mathematical approaches to software specification Formal Specification Techniques Knowledge of typical approaches to formal software specification CAS 707 and verification McMaster University, Winter

106 views • 6 slides
Formal Specification and Testing of Model Transformations Manuel W im m er, Loli Burgueo, Lars

Formal Specification and Testing of Model Transformations Manuel W im m er, Loli Burgueo, Lars

Formal Specification and Testing of Model Transformations Manuel W im m er, Loli Burgueo, Lars Ham ann, Martin Gogolla, Antonio Vallecillo , Universidad de Mlaga/Univertt Bremen http://www.lcc.uma.es/~av Introduction Progress Bar MDE

1.15k views • 88 slides
Formal Verification, Model Checking Radek Pel anek Introduction Modeling Specification

Formal Verification, Model Checking Radek Pel anek Introduction Modeling Specification

Introduction Modeling Specification Algorithms Conclusions Formal Verification, Model Checking Radek Pel anek Introduction Modeling Specification Algorithms Conclusions Motivation Formal Methods: Motivation examples of what can go

986 views • 74 slides
Part III. The Declarative Specification of Formal Fragments A Computational Model of Natural

Part III. The Declarative Specification of Formal Fragments A Computational Model of Natural

Part III. The Declarative Specification of Formal Fragments A Computational Model of Natural Language Communication 196 11. DBS.1: Hearer-Mode 11.1 Automatic Word Form Recognition 11.1.1 Surface recognition and lexical lookup hearer surface

346 views • 17 slides
SAFE Formal Specification and Implementation of a Scalable Analysis Framework for ECMAscript

SAFE Formal Specification and Implementation of a Scalable Analysis Framework for ECMAscript

SAFE Formal Specification and Implementation of a Scalable Analysis Framework for ECMAscript PLRG@KAIST Hongki Lee , Sooncheol Won, Joonho Jin, Junhee Cho, and Sukyoung Ryu Contents Introduction Big Picture Formal Specification

631 views • 25 slides
Software specification in CASL - The Common Algebraic Specification Language Till Mossakowski,

Software specification in CASL - The Common Algebraic Specification Language Till Mossakowski,

Software specification in CASL - The Common Algebraic Specification Language Till Mossakowski, Lutz Schr oder October 2006 2 Overview Why formal specification? Waterfall Model Example: sorting CASL the Common Algebraic

542 views • 43 slides
Formal Specification and Verification of Avionics Software Claus Wonnemann June 7th, 2006 Claus

Formal Specification and Verification of Avionics Software Claus Wonnemann June 7th, 2006 Claus

Introduction Specification of the Java Flight Manager Runtime Assertion Checking and Verification Conclusions Formal Specification and Verification of Avionics Software Claus Wonnemann June 7th, 2006 Claus Wonnemann Formal Specification and

708 views • 54 slides
Formal Specification and Verification 8.11.2016 Viorica Sofronie-Stokkermans e-mail:

Formal Specification and Verification 8.11.2016 Viorica Sofronie-Stokkermans e-mail:

Formal Specification and Verification 8.11.2016 Viorica Sofronie-Stokkermans e-mail: sofronie@uni-koblenz.de 1 Mathematical foundations Formal logic: Syntax: a formal language (formula expressing facts) Semantics: to define the meaning

740 views • 54 slides
Formal Specification and Verification 23.04.2013 Viorica Sofronie-Stokkermans e-mail:

Formal Specification and Verification 23.04.2013 Viorica Sofronie-Stokkermans e-mail:

Formal Specification and Verification 23.04.2013 Viorica Sofronie-Stokkermans e-mail: sofronie@uni-koblenz.de 1 Mathematical foundations Formal logic: Syntax: a formal language (formula expressing facts) Semantics: to define the

811 views • 68 slides
Institute for Cyber Security A Formal Model for Isolation Management in Cloud

Institute for Cyber Security A Formal Model for Isolation Management in Cloud

Institute for Cyber Security A Formal Model for Isolation Management in Cloud Infrastructure-as-a-Service Khalid Zaman Bijon, Ram Krishnan and Ravi Sandhu Institute for Cyber Security University of Texas at San Antonio October 15-17, 2014 NSS

146 views • 13 slides
Formal Formal Specif Specification ication and Verific and Verification ation of Solid of

Formal Formal Specif Specification ication and Verific and Verification ation of Solid of

Presented at FMBC 2020 Formal Formal Specif Specification ication and Verific and Verification ation of Solid of Solidity ity Contracts Contracts with E with Events vents kos Hajdu 1 , Dejan Jovanovi 2 , Gabriela Ciocarlie 2 1

298 views • 14 slides
Formal security analysis of authentication in an asynchronous communication model Bsc thesis

Formal security analysis of authentication in an asynchronous communication model Bsc thesis

Formal security analysis of authentication in an asynchronous communication model Bsc thesis presentation Jacob Wahlgren & Sam Hedin June 18 KTH 1 Outline Introduction Background Secure Data Sharing Methods Results Owner event

1.71k views • 124 slides
Crossing Media for I m proved I nform ation Access the Reveal This exam ple Stelios Piperidis

Crossing Media for I m proved I nform ation Access the Reveal This exam ple Stelios Piperidis

Crossing Media for I m proved I nform ation Access the Reveal This exam ple Stelios Piperidis ILSP spip@ilsp.gr LangTech, 29 February 20 08 "The vision I have for the Web is about anything being potentially connected w ith anything

456 views • 22 slides
Tools for Preserving Your Personal and Intellectual Privacy Wendy Stephens Jacksonville State

Tools for Preserving Your Personal and Intellectual Privacy Wendy Stephens Jacksonville State

Tools for Preserving Your Personal and Intellectual Privacy Wendy Stephens Jacksonville State University Thursday, July 20, 1:15 2:15pm Eastern A project of the University of Michigan School of Information, U-M Library, and U-M School of

683 views • 39 slides
Reshaping Business Models within SME Law Firms William Robins Operations Director Keystone

Reshaping Business Models within SME Law Firms William Robins Operations Director Keystone

Reshaping Business Models within SME Law Firms William Robins Operations Director Keystone Law 18/05/2016 1 www.keystonelaw.co.uk How are we all doing? Business Good? You report you are feeling optimistic 18/05/2016 2

462 views • 30 slides
eQATor testing Java phones all day and all night long Anders Fornander &

eQATor testing Java phones all day and all night long Anders Fornander &

eQATor testing Java phones all day and all night long Anders Fornander & Nicolas Wettstein JUGS January 27, 2005 1 eQATor I Introduction II Demonstration III Architecture IV Project V Q & A 2

240 views • 23 slides
A component-based approach for Context-Aware Systems specification Brahim Djoudi , Chafia

A component-based approach for Context-Aware Systems specification Brahim Djoudi , Chafia

Constantine 2 University LIRE laboratory Team Software Engineering and Distributed Systems A component-based approach for Context-Aware Systems specification Brahim Djoudi , Chafia Bouanaka, Nadia Zeghib Plan Introduction Context-Aware

477 views • 35 slides
HUD HUD Standards for r Succes ccess Pi Pilot Ov Over erview w and Training Reso esources

HUD HUD Standards for r Succes ccess Pi Pilot Ov Over erview w and Training Reso esources

HUD HUD Standards for r Succes ccess Pi Pilot Ov Over erview w and Training Reso esources ces Virtual Conference January 31, 2017 Ob Obje jectives of Session 1. Review Standards for Success (SFS) Program a. Objectives b.

595 views • 33 slides
Data privacy from across the pond: what US companies need to know about the European General Data

Data privacy from across the pond: what US companies need to know about the European General Data

Data privacy from across the pond: what US companies need to know about the European General Data Protection Regulation. 15 February 2018 Jade Kowalski Jade Kowalski Joseph Fitzgerald Joseph Fitzgerald Senior Associate Senior Associate

422 views • 28 slides
8/13/2019 Unit 1 BASIC REAL ESTATE CONCEPTS by Michaele Ann Molloy for Dream Weaver School of

8/13/2019 Unit 1 BASIC REAL ESTATE CONCEPTS by Michaele Ann Molloy for Dream Weaver School of

8/13/2019 Unit 1 BASIC REAL ESTATE CONCEPTS by Michaele Ann Molloy for Dream Weaver School of Real Estate 1 8/13/2019 Why? Unit 1 Preview Terminology and Definitions Characteristic of Land Real Property vs Personal Property

312 views • 10 slides

More recommend