A User Centric Security Model for Tamper-Resistant Devices

C.8 Application Binding Protocol - Distributed
148 ClientAppDHData . l e n g t h − ( short ) PTLVDataOffset ) ) ;
149 this . dhKeyConGen( this . ClientAppDHData , this . PTLVDataOffset ,
150 ProtocolHandler .GEN_KEYCONTRIBUTION) ;
151 ServerAppDHChanllengerArray = JCSystem . makeTransientByteArray ( ( short ) (
152 ( short ) this . ClassDH . dhModulus . l e n g t h + this . PTLVDataOffset ) ,
153 JCSystem .MEMORY_TYPE_TRANSIENT_DESELECT) ;
154 ServerAppRandomNumberArray =
JCSystem . makeTransientByteArray ( ( short ) 22 ,
155 JCSystem .MEMORY_TYPE_TRANSIENT_DESELECT) ;
156 ServerAppCookieArray = JCSystem . makeTransientByteArray ( ( short ) 22 ,
157 JCSystem .MEMORY_TYPE_TRANSIENT_DESELECT) ;
158 ClientAppRandomNumberArray =
JCSystem . makeTransientByteArray ( ( short ) 22 ,
159 JCSystem .MEMORY_TYPE_TRANSIENT_DESELECT) ;
160 U t i l . arrayCopyNonAtomic ( this . ClientAppRandomNumberTag , ( short )
161 i n i t i a l P o i n t e r ,
this . ClientAppRandomNumberArray ,
162 ( short ) i n i t i a l P o i n t e r , ( short )
163 this . ClientAppRandomNumberTag . l e n g t h ) ;
164 this . shortToBytes ( this . ClientAppRandomNumberArray , ( short ) 4 , ( short ) (
165 ( short ) this . ClientAppRandomNumberArray . l e n g t h −
166 ( short ) PTLVDataOffset ) ) ;
167 try {
168 this . C l i e n t A p p U s e r C e r t i f i c a t e = JCSystem . makeTransientByteArray (
169 ( short ) 86 , JCSystem .MEMORY_TYPE_TRANSIENT_DESELECT) ;
170 i n i t i a l P o i n t e r = U t i l . arrayCopyNonAtomic
171 ( this . ClientAppUserCertificateTag , ( short ) 0 ,
172 this . C l i e n t A p p U s e r C e r t i f i c a t e , ( short ) 0 ,
( short )
173 this . ClientAppUserCertificateTag . l e n g t h ) ;
174 this . shortToBytes ( this . C l i e n t A p p U s e r C e r t i f i c a t e , ( short ) 4 , ( short )
175 ( this . C l i e n t A p p U s e r C e r t i f i c a t e . l e n g t h −
( short ) 7) ) ;
176 i n i t i a l P o i n t e r = U t i l . arrayCopyNonAtomic ( this . ExponentTag ,
177 ( short ) 0 , this . C l i e n t A p p U s e r C e r t i f i c a t e , ( short ) ( i n i t i a l P o i n t e r +
178 ( short ) 3) , ( short ) this . ExponentTag . l e n g t h ) ;
179 RSAPublicKey myPublic = ( RSAPublicKey )
180 this . phUserKeyPair . g e t P u b l i c ( ) ;
181 short kLen = myPublic . getExponent ( this . C l i e n t A p p U s e r C e r t i f i c a t e ,
182 ( short ) ( i n i t i a l P o i n t e r + ( short ) 2) ) ;
183 this . shortToBytes ( this . C l i e n t A p p U s e r C e r t i f i c a t e , i n i t i a l P o i n t e r ,
kLen )
184 ;
185 i n i t i a l P o i n t e r += ( short ) ( kLen + ( short ) 2) ;
186 this . C l i e n t A p p U s e r C e r t i f i c a t e [6]++;
187 i n i t i a l P o i n t e r = U t i l . arrayCopyNonAtomic ( this . ModulusTag ,
188 ( short ) 0 , this . C l i e n t A p p U s e r C e r t i f i c a t e , ( short ) ( i n i t i a l P o i n t e r ) ,
189 ( short ) this . ModulusTag . l e n g t h ) ;
190 kLen = myPublic . getModulus ( this . C l i e n t A p p U s e r C e r t i f i c a t e , ( short )
191 ( i n i t i a l P o i n t e r + ( short ) 2) ) ;
381