Share on Facebook Tweet on Twitter Share on LinkedIn Share by email
A Formal Specification of the MIDP 2.0 Security Model

Santiago Zanella-Béguelin, Gustavo Betarte, and Carlos Luna


This paper presents, to the best of our knowledge, the first formal specification of the application security model defined by the Mobile Information Device Profile 2.0 for Java 2 Micro Edition. The specification, which has been formalized in Coq, provides an abstract representation of the state of a device and the security-related events that allows to reason about the security properties of the platform where the model is deployed. We state and sketch the proof of some desirable properties of the security model. Although the abstract specification is not executable, we describe a refinement methodology that leads to an executable prototype.


Publication typeInproceedings
Published in4th International Workshop on Formal Aspects in Security and Trust, FAST 2006
SeriesLecture Notes in Computer Science
> Publications > A Formal Specification of the MIDP 2.0 Security Model