A Formal Specification of the MIDP 2.0 Security Model

Santiago Zanella-B├ęguelin, Gustavo Betarte, and Carlos Luna

Abstract

This paper presents, to the best of our knowledge, the first formal specification of the application security model defined by the Mobile Information Device Profile 2.0 for Java 2 Micro Edition. The specification, which has been formalized in Coq, provides an abstract representation of the state of a device and the security-related events that allows to reason about the security properties of the platform where the model is deployed. We state and sketch the proof of some desirable properties of the security model. Although the abstract specification is not executable, we describe a refinement methodology that leads to an executable prototype.

Details

Publication typeInproceedings
Published in4th International Workshop on Formal Aspects in Security and Trust, FAST 2006
URLhttp://dx.doi.org/10.1007/978-3-540-75227-1_15
Pages220-234
Volume4691
SeriesLecture Notes in Computer Science
ISBN978-3-540-75226-4
PublisherSpringer
> Publications > A Formal Specification of the MIDP 2.0 Security Model