We present a generic formal security model for operating systems of multiapplicative smart cards. The model formalizes the main security aspects of secrecy, integrity, secure communication between applications and secure downloading of new applications. The model satisfies a security policy consisting of authentication and intransitive noninterference. The model extends the classical security models of Bell/LaPadula and Biba, but avoids the need for trusted processes, which are not subject to the security policy by incorporating such processes directly in the model itself. The correctness of the security policy has been formally proven with the VSE II system.
CITATION STYLE
Schellhorn, G., Reif, W., Schairer, A., Karger, P., Austel, V., & Toll, D. (2000). Verification of a formal security model for multiapplicative smart cards. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 1895, pp. 17–36). Springer Verlag. https://doi.org/10.1007/10722599_2
Mendeley helps you to discover research relevant for your work.