Formal verification
of the JavaCard platform

Ph. D. Thesis
Guillaume Dufay

Université de Nice Sophia Antipolis
INRIA Sophia Antipolis


Abstract

In this thesis, we present a formalization, realized within the Coq proof assistant, of the JavaCard platform. This programming environment derived from Java is intended to smart cards and to their security requirements. More precisely, we describe the formalization of the JavaCard virtual machine and of a substantial part of its runtime environment. Then, we explain how to obtain, from this virtual machine dynamically verifying type safety, a bytecode verifier (BCV) and a virtual machine more effective for execution but as safe. We bring for the BCV a generic framework, expressed with modules, applying the most recent techniques from this domain and simplifying proofs needed to insure soundness of the built BCV. Finally, we show how the methodology applied for type safety can be generalized and describe tools realized to automate this task.

Thesis

Available as PDF (French, 1.2 Mb).
@phdthesis{ Dufay-PhD,
  author =       {Guillaume Dufay},
  title =        {V{\'e}rification formelle de la plate-forme JavaCard},
  month =        dec,
  year =         2003,
  type =         {Th{\`e}se de Doctorat},
  school =       {Universit{\'e} de Nice Sophia-Antipolis},
}

Defense

Thesis defended on Friday, December 5, 2003, in front of the following jury:

Mrs
Laurence Pierre
I3S, Université de Nice
President
Mr
Thomas Jensen
IRISA / CNRS
Reviewers
Mr
Erik Poll
University of Nijmegen, Netherlands

Mr
Chris Hankin
Imperial College, United-Kingdom
Members
Mrs
Christine Paulin
Université Paris Sud

Mr
Gilles Barthe
INRIA Sophia-Antipolis
Ph. D. Advisor


Slides from the presentation available as PDF (French, 0.4 Mb).