Formal Proof of Smart Card Applets Correctness

  • Jean-Louis Lanet
  • Antoine Requet
Part of the Lecture Notes in Computer Science book series (LNCS, volume 1820)


The new Gemplus smart card is based on the Java technology, embedding a virtual machine. The security policy uses mechanisms that are based on Java properties. This language provides segregation between applets. But due to the smart card constraints a byte code verifier can not be embedded. Moreover, in order to maximise the number of applets the byte code must be optimised. The security properties must be guaranteed despite of these optimisations. For this purpose, we propose an original manner to prove the equivalence between the interpreter of the JVM and our Java Card interpreter. It is based on the refinement and proof process of the B formal method.


Java byte code security optimisation formal specification 


Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.


  1. [Abr-96]
    Abrial, J.R.: The B Book. Assigning Programs to Meanings. Cambridge University Press, Cambridge (1996)zbMATHCrossRefGoogle Scholar
  2. [Coh-97]
    Cohen, Defensive Java Virtual Machine,
  3. [Fre-98]
    Freud, S.N., Mitchell, J.C.: A type System for Object Initializatio In the Java Byte Code Language,
  4. [Gol-97]
    Golberg, A.: A Specification of Java Loading and Bytecode Verification Kestrel Institute (December 1997),
  5. [Har-98]
    Hartel, P., Butler, M., Levy, M.: The operational semantics of a Java Secure ProcessorGoogle Scholar
  6. [Qia-97]
    Qian A formal specification of Java Virtual Machine Instruction. Technical Report (abstract), Universitat Bremen (1997),
  7. [Sta-98]
    Stata, R., Abadi, M.: A Type System for Byte Code Subroutines. In: Proc. 25th ACM Symposium on Principles of Programming Language (January 1998)Google Scholar
  8. [Yel-96]
    Yellin, F., Lindholm, T.: The Java Virtual Machine Specification. Addison Wesley, Reading (1996)Google Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 2000

Authors and Affiliations

  • Jean-Louis Lanet
    • 1
  • Antoine Requet
    • 1
  1. 1.Gemplus Research GroupGémenos CedexFrance

Personalised recommendations