2014 | OriginalPaper | Chapter
SawjaCard: A Static Analysis Tool for Certifying Java Card Applications
Authors : Frédéric Besson, Thomas Jensen, Pierre Vittet
Published in: Static Analysis
Publisher: Springer International Publishing
Activate our intelligent search to find suitable subject content or patents.
Select sections of text to find matching patents with Artificial Intelligence. powered by
Select sections of text to find additional relevant content using AI-assisted search. powered by
This paper describes the design and implementation of a static analysis tool for certifying
Java Card
applications, according to security rules defined by the smart card industry.
Java Card
is a dialect of Java designed for programming multi-application smart cards and the tool, called
SawjaCard
, has been specialised for the particular
Java Card
programming patterns. The tool is built around a static analysis engine which uses a combination of numeric and heap analysis. It includes a model of the
Java Card
libraries and the
Java Card
firewall. The tool has been evaluated on a series of industrial applets and is shown to automate a substantial part of the validation process.