共查询到18条相似文献,搜索用时 171 毫秒
1.
2.
在对Java卡平台异常类层次结构和CAP文件内容深入分析的基础上,结合智能卡运行环境的特点,采用编译后的异常处理表与运行期的Java栈结构相结合的方法,设计并实现了解释执行时Java卡虚拟机中的异常处理机制。实际测试表明系统运行正确。 相似文献
3.
4.
Java卡平台安全性研究与应用 总被引:2,自引:2,他引:2
介绍了Java卡的结构,从Java语言的安全性、Java卡平台安全性的提高和分离式的虚拟机结构3个方面详细论述了Java卡平台的安全性。通过一个Java卡平台金融支付系统的安全机制,着重介绍了基于Java卡平台的上层应用软件的安全性设计。 相似文献
5.
6.
孙立元 《计算机光盘软件与应用》2013,(5)
本文从对Java卡进行漏洞分析并尝试对其发起攻击的角度来讨论Java卡的安全性;首先介绍了Java卡的大致系统结构及其一些基本的安全机制原理和其基于Java语言为系统平台所具有的安全属性;阐述了如何收集Java卡上的应用信息和所支持的加密服务,分别讨论Java卡的对象共享机制、类型转换所可能引起的漏洞,描述了针对这些漏洞发起的伪造AID、数据泄漏、非法对象转换的攻击手段,以及通过硬件渠道监测Java卡运行模式和加入包络代码提高监测精确性的做法;最后总结了防止所述攻击可采用的相应做法。 相似文献
7.
JAVA卡平台安全性的设计与实现 总被引:4,自引:1,他引:3
Java卡是能运行Java语言的智能卡,在卡上能保存多个不同开发商所提供的应用程序(Applet)。由于Java卡通常保存着如电子钱包、密码、指纹等高度敏感的信息,所以需要为Java卡平台技术制定完备的安全保障机制。该文主要介绍了Java卡平台的安全技术原理,并通过在基于ARM7内核平台上的设计介绍了它的实现机制。 相似文献
8.
9.
校园一卡通应用系统安全方案 总被引:3,自引:0,他引:3
基于Java卡的校园一卡通应用系统对于学校的现代化管理工作具有十分重要的作用。文中介绍了Java卡及校园一卡通应用系统,并从多个角度探讨校园一卡通应用系统的安全机制,提出了一套较为完整的安全方案。该方案分层、分类地对系统进行了保护。既保护了应用系统的本身安全,保证系统的正常运行,又保证了系统中重要数据与信息的安全。为应用系统安全性分析与防护提供了范例。 相似文献
10.
基于Java卡的校园一卡通应用系统对于学校的现代化管理工作具有十分重要的作用.文中介绍了Java卡及校园一卡通应用系统,并从多个角度探讨校园一卡通应用系统的安全机制,提出了一套较为完整的安全方案.该方案分层、分类地对系统进行了保护.既保护了应用系统的本身安全,保证系统的正常运行,又保证了系统中重要数据与信息的安全.为应用系统安全性分析与防护提供了范例. 相似文献
11.
12.
13.
Java卡是一种基于Java语言的智能卡。因为智能卡的空间和处理器速度的约束,一个应用程序在Java卡上运行时面临的最大问题是存储空间的不足和对程序执行时间的严格限制。因此,对下载到卡中的字节码进行优化是十分必要的。本文提出了一种综合使用扩展指令集和分段压缩算法的Java卡字节码优化器的设计方案,通过对字节码文件的优化,可得到占用空间较少且没有降低执行速率的字节码文件。 相似文献
14.
Java卡字节码校验是构成Java卡安全体系结构的重要组成部分.而传统的Java卡字节码校验由于Java智能卡资源的限制,无法在卡内进行.本文通过对控制流程图和类型推导的分析,提出了基于控制流程树的Java卡卡外翻译过程和卡内校验器算法,详细描述了CFT迁移机理并对于基于CFT的Java卡内字节码校验算法和可行性进行了分析与实践. 相似文献
15.
Java card is a new system for programming smart cards,which is based on the Java language and Virtual Machine,Java card programs(applets)run in Java Card Runtime Environment (JCRE)including the java Card Virtual Machine(JCVM),the framework,the assoicated native methods and the API(Application Programming Interface),JCVM is implemented as two separate pieces: off-card VM(Virtual Machine)and on-card VM.The stack model and heap memory structure used by on-car VM and exception handling are introduced.Because there are limited resources wihin smart card environment,and garbage collection is not supported in JCVM,the preferred way to exception handling does not directly involve the use of throw,although the throw keyowrd is supported.Security is the most important feature of smart card.The Java Card applet security feature is also discussed. 相似文献
16.
《Computer Languages, Systems and Structures》2014,40(2):53-72
Smart cards are portable integrated devices that store and process data. Speed, security and portability properties enable smart cards to have a widespread usage in various fields including telecommunication, transportation and the credit card industry. However, the development of smart card applications is a difficult task due to hardware and software constraints. The necessity of the knowledge of both a very low-level communication protocol and a specific hardware causes smart card software development to be a big challenge for the developers. Written codes tend to be error-prone and hard to debug because of the limited memory resources. Hence, in this study, we introduce a model driven architecture which aims to facilitate smart card software development by both providing an easy design of smart card systems and automatic generation of the required smart card software from the system models. Differentiating from the previous work, the study in here contributes to the field by both providing various smart card metamodels in different abstraction layers and defines model-to-model transformations between the instances of these metamodels in order to support the realization of the same system on different smart card platforms. Applicability of the proposed methodology is shown for rapid and efficient application development in two major smart card frameworks: Java Card and ZeitControl Basic Card. Lessons learned during the industrial usage of the architecture are also reported in the paper. Finally, we discuss how the components of the architecture can be integrated in order to provide a domain-specific language for smart card software. 相似文献
17.
The KeY tool 总被引:5,自引:2,他引:3
Wolfgang Ahrendt Thomas Baar Bernhard Beckert Richard Bubel Martin Giese Reiner Hähnle Wolfram Menzel Wojciech Mostowski Andreas Roth Steffen Schlager Peter H. Schmitt 《Software and Systems Modeling》2005,4(1):32-54
KeY is a tool that provides facilities for formal specification and verification of programs within a commercial platform for UML based software development. Using the KeY tool, formal methods and object-oriented development techniques are applied in an integrated manner. Formal specification is performed using the Object Constraint Language (OCL), which is part of the UML standard. KeY provides support for the authoring and formal analysis of OCL constraints. The target language of KeY based development is Java Card DL, a proper subset of Java for smart card applications and embedded systems. KeY uses a dynamic logic for Java Card DL to express proof obligations, and provides a state-of-the-art theorem prover for interactive and automated verification. Apart from its integration into UML based software development, a characteristic feature of KeY is that formal specification and verification can be introduced incrementally. 相似文献