Towards a Full Formal Specification of the JavaCard API
This paper reports on ongoing work to develop a formal specification of the JavaCard API using the specification language JML. It discusses the specification of the JCSystem class, which deals with the JavaCard firewall, (atomic) transactions and transient objects. The JCSystem class seems to be the hardest class in the API to specify, and it is closely connected with some of the peculiarities of JavaCard as opposed to Java.
KeywordsVirtual Machine Model Variable Smart Card Application Program Interface Active Context
Unable to display preview. Download preview PDF.
- 2.J. van den Berg, B. Jacobs, and E. Poll. Formal Specification and Verification of JavaCard’s Application Identifier Class. In I. Attali and T. Jensen, editors, Proceeding of the first JavaCard Workshop (JCW’2000), LNCS. Springer Verlag, 2001. To appear.Google Scholar
- 3.P. H. Hartel, M. J. Butler, E. de Jong, and M. Longley. Transacted memory for smart cards. In 10th Formal Methods for Increasing Software Productivity (FME), LNCS. Springer Verlag, 2001.Google Scholar
- 4.P. H. Hartel and L. A. V. Moreau. Formalizing the safety of Java, the Java virtual machine and Java Card. ACM Computing Surveys, 2001. to appear.Google Scholar
- 5.The Java Card 2.1.1 Application Programming Interface (API). Sun Microsystems, 2000.Google Scholar
- 6.The Java Card 2.1.1 Runtime Environment (JCRE) Specification. Sun Microsystems, 2000.Google Scholar
- 7.The Java Card 2.1.1 Virtual Machine (JCVM) Specification. Sun Microsystems, 2000.Google Scholar
- 8.G. T. Leavens, A. L. Baker, and C. Ruby. JML: A notation for detailed design. In H. Kilov and B. Rumpe, editors, Behavioral Specifications of Business and Systems, pages 175–188. Kluwer, 1999.Google Scholar
- 9.G. T. Leavens, A. L. Baker, and C. Ruby. Preliminary design of JML: A behavioral interface specification language for Java. Techn. Rep. 98-06, Dep. of Comp. Sci., Iowa State Univ. (http://www.cs.iastate.edu/~leavens/JML.html), 1999.
- 10.B. Meyer. Object-Oriented Software Construction. Prentice Hall, 2 nd rev. edition, 1997.Google Scholar
- 11.Stéphanie Motré. Formal model and implementation of the Java Card dynamic security policy. Technical Report SM-99-09, Gemplus Research Lab, 1999. Presented at AFADL’2000.Google Scholar
- 12.Marcus Oestreicher. Transactions in Java Card. In 15th Annual Computer Security Applications Conference (ACSAC’99), pages 291–298. IEEE, 1999.Google Scholar
- 13.E. Poll, J. van den Berg, and B. Jacobs. Specification of the JavaCard API in JML. In J. Domingo-Ferrer, D. Chan, and A. Watson, editors, Fourth Smart Card Research and Advanced Application Conference (CARDIS’2000), pages 135–154. Kluwer Acad. Publ., 2000.Google Scholar
- 14.E. Poll, J. van den Berg, and B. Jacobs. Formal Specification of the JavaCard API in JML: The APDU class. Computer Networks, 2001. To appear.Google Scholar
- 15.Denis Sabatier and Pierre Lartigue. The use of the B formal method for the design and the validation of the transaction mechanism for smart card applications. Formal Method in System Design, 17(3):145–272, 2000. Special issue on FM’99.Google Scholar