A Certified Access Controller for JME-MIDP 2.0 enabled Mobile Devices

Crespo, Juan Manuel - Betarte, Gustavo - Luna, Carlos

Resumen:

The Java Micro Edition platform (JME), a Java enabled technology, provides the Mobile Information Device Profile (MIDP) standard that facilitates applications development and specifies a security model for the controlled access to sensitive resources of the device. The model builds upon the notion of protection domain, which in turn can be grasped as a set of permissions. An alternative model has been proposed that extends MIDP's by introducing permissions with multiplicities and adding flexibility to the way in which permissions are granted by the user of the device and used by the applications running on it. This paper presents a framework, formalized using the proof-assistant Coq, suitable for defining and comparing the access control policies that can be enforced by (variants of) those security models and to prove desirable properties they should satisfy. The proofs of some of those properties are also stated and discussed in this work.


Detalles Bibliográficos
2008
Java Micro Edition
Interactive Mobile Devices
Mobile Information Device Profile
Universidad de la República
COLIBRI
http://hdl.handle.net/20.500.12008/3559
Acceso abierto
Licencia Creative Commons Atribución – No Comercial – Sin Derivadas (CC BY-NC-ND 4.0)