In this article we present the first Combined Attack on a Java Card targeting the APDU buffer itself, thus threatening both the security of the platform and of the hosted applications as well as the privacy of the cardholder. We show that such an attack, which combines malicious application and fault injection, is achievable in practice on the latest release of the Java Card specifications by presenting several case studies taking advantage for instance of the well-known GlobalPlatform and (U)SIM Application ToolKit. © 2012 IFIP International Federation for Information Processing.
CITATION STYLE
Barbu, G., Giraud, C., & Guerin, V. (2012). Embedded eavesdropping on Java card. In IFIP Advances in Information and Communication Technology (Vol. 376 AICT, pp. 37–48). https://doi.org/10.1007/978-3-642-30436-1_4
Mendeley helps you to discover research relevant for your work.