International Workshop on Formal Aspects in Security and Trust

FAST 2006: Formal Aspects in Security and Trust pp 220-234

A Formal Specification of the MIDP 2.0 Security Model

  • Santiago Zanella Béguelin
  • Gustavo Betarte
  • Carlos Luna
Conference paper

DOI: 10.1007/978-3-540-75227-1_15

Volume 4691 of the book series Lecture Notes in Computer Science (LNCS)
Cite this paper as:
Zanella Béguelin S., Betarte G., Luna C. (2007) A Formal Specification of the MIDP 2.0 Security Model. In: Dimitrakos T., Martinelli F., Ryan P.Y.A., Schneider S. (eds) Formal Aspects in Security and Trust. FAST 2006. Lecture Notes in Computer Science, vol 4691. Springer, Berlin, Heidelberg

Abstract

This paper presents, to the best of our knowledge, the first formal specification of the application security model defined by the Mobile Information Device Profile 2.0 for Java 2 Micro Edition. The specification, which has been formalized in Coq, provides an abstract representation of the state of a device and the security-related events that allows to reason about the security properties of the platform where the model is deployed. We state and sketch the proof of some desirable properties of the security model. Although the abstract specification is not executable, we describe a refinement methodology that leads to an executable prototype.

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Copyright information

© Springer-Verlag Berlin Heidelberg 2007

Authors and Affiliations

  • Santiago Zanella Béguelin
    • 1
  • Gustavo Betarte
    • 2
  • Carlos Luna
    • 2
  1. 1.INRIA Sophia Antipolis, 06902 Sophia Antipolis CedexFrance
  2. 2.InCo, Facultad de Ingeniería, Universidad de la República, MontevideoUruguay