The Hell Forgery, Polymorphic Codes Shoot Again - Inria - Institut national de recherche en sciences et technologies du numérique Accéder directement au contenu
Communication Dans Un Congrès Année : 2016

The Hell Forgery, Polymorphic Codes Shoot Again

Résumé

We present in this paper a new approach to gain access to assets of a smart card. It is based on the concept of reference forgery and array extension. We characterize the meta data of the system using different level of expertize from human know-hows to formal methods. We are able to generate arbitrary but well formed references which allow us to execute self modifying Java program inside the card. This hostile program is able to dump the complete Non Volatile Memory (NVM) memory segment. Then we develop a graphical representation of the objects belonging to the system for gaining abstraction of the binary dump.

Domaines

Cryptographie et sécurité [cs.CR] Systèmes embarqués

Jean-Louis Lanet  : Connectez-vous pour contacter le contributeur

https://inria.hal.science/hal-01385202

Soumis le : vendredi 21 octobre 2016-08:16:20

Dernière modification le : mercredi 25 octobre 2023-15:32:03

Fichier non déposé

Dates et versions

hal-01385202 , version 1 (21-10-2016)

Identifiants

  • HAL Id : hal-01385202 , version 1

Citer

Abdelhak Mesbah, Leo Regnaud, Jean-Louis Lanet, Mohamed Mezghiche. The Hell Forgery, Polymorphic Codes Shoot Again. 15th Smart Card Research and Advanced Application Conference , Aurélien Francillon, Nov 2016, Cannes, France. ⟨hal-01385202⟩

Exporter

BibTeX XML-TEI Dublin Core DC Terms EndNote DataCite

Collections

UNILIM INSTITUT-TELECOM UNIV-RENNES1 CNRS INRIA INSA-RENNES IRISA CENTRALESUPELEC IRISA-D4 INRIA2 UR1-MATH-STIC UR1-UFR-ISTIC UNIV-RENNES UR1-MATH-NUM
298 Consultations
0 Téléchargements

Partager

Gmail Facebook X LinkedIn More