Skip to Main content Skip to Navigation
Conference papers

Embedded Eavesdropping on Java Card

Abstract : In this article we present the first Combined Attack on a Java Card targeting the APDU buffer itself, thus threatening both the security of the platform and of the hosted applications as well as the privacy of the cardholder. We show that such an attack, which combines malicious application and fault injection, is achievable in practice on the latest release of the Java Card specifications by presenting several case studies taking advantage for instance of the well-known GlobalPlatform and (U)SIM Application ToolKit.
Complete list of metadata

Cited literature [21 references]  Display  Hide  Download
Contributor : Guillaume Barbu Connect in order to contact the contributor
Submitted on : Saturday, June 9, 2012 - 10:54:16 AM
Last modification on : Friday, July 31, 2020 - 10:44:05 AM
Long-term archiving on: : Monday, September 10, 2012 - 2:40:08 AM


Files produced by the author(s)


Distributed under a Creative Commons Attribution 4.0 International License



Guillaume Barbu, Christophe Giraud, Vincent Guerin. Embedded Eavesdropping on Java Card. 27th Information Security and Privacy Conference (SEC), Jun 2012, Heraklion, Greece. pp.37-48, ⟨10.1007/978-3-642-30436-1_4⟩. ⟨hal-00706186⟩



Record views


Files downloads