smart card operating systems overview and trends
play

Smart Card Operating Systems Overview and Trends - PDF document

Feb 28, 2023 •377 likes •598 views

Smart Card Operating Systems Overview and Trends Pierre.Paradinas@gemplus.com Gemplus Labs Smart card A piece of plastic with a chip that contains: CPU, memories and programs SC is your personal information system, your

  1. Smart Card Operating Systems Overview and Trends Pierre.Paradinas@gemplus.com Gemplus Labs Smart card… � A piece of plastic… � with a chip that contains: CPU, memories and programs… � SC is your personal information system, your wallet, your e-key, your cell phone subscriber identification (GSM)… 9-Apr-01 1

  2. Agenda � Smart card industry and application � Smart card embeds computing power � Smart card OS & Software � Issue in SC software � Q/A 9-Apr-01 Smart card industry and application � First SC were produced 2O years ago � After a French industry, it becomes a more European industry (80% of the market share) � Large worldwide business with revenues of 2,2 billion $: � GSM � Payment/e-purse (Blue Card, EMV,…) � E-security (logical access, Pay-TV,…) 9-Apr-01 2

  3. SC industry and application (Cont’d) � From analysts: � 2000 � 628 Mu are shipped [chip cards = 1 700 Mu] ( Gartner Inc) � 2006 � 2 300 Mu [chip cards = 4 100Mu] ( Datamonitor) � New applications will appear: � WAP, UMTS, 3G-Network,… � Deployment of payment card (Visa, Amex,…) � M-commerce � Access control based on SC: part of Wins and Solaris distribution 9-Apr-01 SC industry and application (Cont’d) � Our industry is based on : � Plastic and secure printing � Silicon and packaging � Software and application � Software is part of our expertise but its role is more and more crucial 9-Apr-01 3

  4. SC Application Architecture 9-Apr-01 Durable smart card benefits � Card software is part of � Personal repository of the application data & services � Processing and data will � The “supervisor” of your be shared along the chain services � Security will be shared by � Provides and controls a each part of the chain personalized view of the system 9-Apr-01 4

  5. The platform: single chip Vcc GND RST Vpp < 6,45mm CLK I/O RFU RFU I/O RAM < 4,17mm E²PROM CPU ROM 9-Apr-01 The platform: performances � 8 Bit microprocessor (8051 or 6805) � 3,57 Mhz (w or w/o multiplier) � Cryptographic coprocessor: e n for PK on large number (1024 bits) � Security features � address line scrambled, physical sensors, others... � Only one communication line (half duplex) � Small & specific memories � RAM < 0,5 K � ROM < 64 K (OS & Programs) � Non Volatile Memory (EEPROM or Flash) < 32/64 K � Write latency = 2-10ms and memory stress issue 9-Apr-01 5

  6. Platform constraints � No internal clock and power supply � But � Tamper responsive � Size of the chip: the card is in your pocket � Chip cost is directly related to the size � Consumption � Handset, small SC reader,… � Heat of the CPU � Some cards are contactless 9-Apr-01 New platforms � 32 bit arrives � More memory: � Ram: 1 to 4 (8) � Rom: ~ 128K � NVM: ~ 64k (128k) � Always co-processor 9-Apr-01 6

  7. Card Software: Agenda � First software generation � Open OS � Java Card � Research issues in SC-OS � Security, Portability, Sharing, … � Integration in IT 9-Apr-01 First generation software � Applications are developed by the card provider in a secure environment with assembler or C � Drawbacks: Responses Commands � costly � poor flexibility � time to market Application Operating System Chip 9-Apr-01 7

  8. From proprietary to Open OS Application Download Data Responses/ Commands Instructions Application 1 Open API Secure Virtual Machine Operating System Chip 9-Apr-01 Open Card… � Applications developed by: � the customer � any application provider � Dynamically downloaded through a network � The card life cycle is changed… 9-Apr-01 8

  9. Smart Card Lifetime (1/2) � Manufacturing � Application masked in the ROM � OS libraries and command dispatcher, � Application routines. � Card serial number and issuer references � Initialization � Writing in EEPROM application data � Secret key and object attributes (r,w,rw,...) � Personalization � Writing in EEPROM card holder data � Graphical (picture, logo, hologram…) 9-Apr-01 Smart Card Lifetime (2/2) � Usage � Process APDU command from a reader � Send back a response APDU or an error APDU � For open card only: application downloading � End � Deactivation (unauthorized action), memory overhead, loss, theft, … 9-Apr-01 9

  10. Candidate Platforms � Multos (from Mastercard) � W4SC (Microsoft) � Java Card 2.1 (Sun) 9-Apr-01 Introduction to the Java card � The Java Card � The JCVM architecture � The security procedures 9-Apr-01 10

  11. What is a Java Card ? � The Java Card � a smart card dedicated to Java applications � a platform with highly limited resources � a dedicated Java language � a multi-application device � a specific Java Card Virtual Machine (JCVM) architecture. 9-Apr-01 A subset of Java � A single thread virtual machine � Unsupported features � Dynamic class loading � String and Thread classes � Double, float, char types � Multiple dimension arrays � Java.lang.System class � Garbage collection � Security manager � The Applet Firewall � Programming limitations 9-Apr-01 11

  12. Java Card Environment Code source Java Code source Java Class File Java Class File Java Java Java Bytecode verifier Bytecode verifier Compiler Compiler and Converter and Converter *.java *.java *.class *.class Dynamic Dynamic Security Security On Card On Card Java Java Card Card Files Files Firew all Firew all Off Card Off Card Linker Linker Loader Loader First static First static *.cap *.cap security tests security tests Other embedded Other embedded Static checks and resolutions Static checks and resolutions 9-Apr-01 Java Card Security Chain Virtual Machine Applet Verifier .java .class .cap Sign/Enc Loader Applet Applet Applet OP CM Loader Linker JC API Java Card JVM OS Chip 9-Apr-01 12

  13. Java Card Security Chain Virtual Machine Verifier Sign/Enc Loader Applet Security Applet Applet Applet OP CM Loader Policy Linker Trusted JC API Java Card Computing JVM Based OS Chip 9-Apr-01 With Java Card � Smart Card enters in Open world � API’s is public, new comers for SC applications � Smart Cards use « standard language » � We have to break others frontier… � Security is not only support by the card itself � Others features are required � It’s why we invest in OS for SC 9-Apr-01 13

  14. Research issues in SC-OS � How to secure the code down loading � Portability � Extensibility � Object sharing 9-Apr-01 Two security levels � Applications are no more developed under card issuer control � Platform security � Traditional means � Use of formal methods = > Models of the platform security modules � Application security � There is a need for a global security policy � Flow control (data and/or code sharing) � Resources consumption (memory, CPU, method calls...) = > Static & dynamic analysis of applet configurations (part of the CMS) 9-Apr-01 14

  15. How to secure code down loading Code Safety Techniques Address-based Language-Based Techniques Techniques MMU SFI Capabilities Types 9-Apr-01 Portability Off Card Appli Appli Appli Applications A B C Converter Compiler Component Loader/Linker JavaCard MEL ODBC Open OS JCVM Multos CQL In Card Smart Card Chip ARM AVR 6805 9-Apr-01 15

  16. Extensibility � No dynamic class loading � Changing applications requirements various and growing E.g: the Java Card dilemma Light- Light Light- JC JC JC JC JC JC JC Java+ JC JC Java+ Java+ Optimize the most Optimize the most Increase functionality Increase functionality crucial parts crucial parts 9-Apr-01 Objects Sharing � For example: a purse and a loyalty applet can share methods and/or objects, A share w ith B a method A share w ith B a method B share w ith C a method B share w ith C a method Purse Applet Purse Applet Loyalty Applet Loyalty Applet Hostile Applet Hostile Applet Log Log Buffer Buffer Buffer Buffer Log.getTransaction Log. getTransaction Buffer. Buffer.reSell reSell Applet Provider A Applet Provider A Applet Provider B Applet Provider B Applet Provider C Applet Provider C Open OS Open OS 9-Apr-01 16

  17. FACADE-OS (G. Grimaud) Java-BC Compiled Code Adapter Optimizer Off Card Java ⇒ FACADE Camille Card FACADE Prouver Loader Code Loader In Card Open OS Camille Chip 9-Apr-01 FACADE-OS (G. Grimaud) Compiled Java-BC Code Camille Optimizer Off Card Java ⇒ FACADE Adapter Card FACADE Prouver Loader Code Loader In Card Open OS Camille Chip 9-Apr-01 17

  18. Facade figures � Based on AVR (8 bits RISC, RAM 1536 Octets, ROM 32 Ko and Flash 64 Ko) Classes Type Inference Code Generation Total CardKernel 2670 CardByte 540 900 1460 CardShort 70 46 116 CardBool 70 62 132 CardBxxx 300 800 1100 I/O, MM,… 3900 Total 3690 9074 17748 9-Apr-01 Integration/Interoperability � J-J Vandewalle defines a Corba Object Adaptor in his PhD (1997) � In the new Java Card version RMI mechanism will be integrated � SC have to deal with high level objects or services 9-Apr-01 18

  19. Trends…. � Communication model (TCP/IP,…) � Card as a Web Server ! � Multi-tasking � Payment and Telecom services at the same time � Security model with criteria on the availability of resources � Sharing and managing of resources (CPU, I/O, memories) 9-Apr-01 Q/A http://www.gemplus.com Pierre.Paradinas@gemplus.com 19

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Browser based approach for Smart Card Connectivity My Smart Card My Smart Card Kapil Sachdeva

Browser based approach for Smart Card Connectivity My Smart Card My Smart Card Kapil Sachdeva

Browser based approach for Smart Card Connectivity My Smart Card My Smart Card Kapil Sachdeva expiration: 09/10 Karen Lu Ksheerabdhi Krishna Challenges Installing crypto providers Breaks mobility Breaks ubiquity of web

425 views • 8 slides
Smart( Java )Card ... What &amp; Why What - smart card Tiny PC without Human Interface

Smart( Java )Card ... What &amp; Why What - smart card Tiny PC without Human Interface

Smart( Java )Card ... What &amp; Why What - smart card Tiny PC without Human Interface capabilities CPU : 16b/32b RISC @ handful of MhZ Math co-processor: RSA/DES/AES/ECC RAM : X KB HDD : XX..XXX KB (EEPROM) NET :

568 views • 36 slides
CSE 3320 Operating Systems Computer and Operating Systems Overview Jia Rao Department of

CSE 3320 Operating Systems Computer and Operating Systems Overview Jia Rao Department of

CSE 3320 Operating Systems Computer and Operating Systems Overview Jia Rao Department of Computer Science and Engineering http://ranger.uta.edu/~jrao Overview Recap of last class o What is an operating system ? o Functionalities of

530 views • 24 slides
Exploiting type systems and static analyses for smart card security Xavier Leroy INRIA

Exploiting type systems and static analyses for smart card security Xavier Leroy INRIA

Exploiting type systems and static analyses for smart card security Xavier Leroy INRIA Rocquencourt &amp; Trusted Logic 1 Outline 1. What makes strongly typed programs more secure? 2. Enforcing strong typing (bytecode verification). 3.

828 views • 45 slides
Operating Systems Secondary Storage Lecture 12 Michael OBoyle 1 Overview Disk trends

Operating Systems Secondary Storage Lecture 12 Michael OBoyle 1 Overview Disk trends

Operating Systems Secondary Storage Lecture 12 Michael OBoyle 1 Overview Disk trends Memory Hierarchy Performance Scheduling SSDs Read Write Performance Cost 2 Secondary storage Secondary

568 views • 32 slides
Operating Systems Secondary Storage Lecture 14 Michael OBoyle 1 Overview Disk trends

Operating Systems Secondary Storage Lecture 14 Michael OBoyle 1 Overview Disk trends

Operating Systems Secondary Storage Lecture 14 Michael OBoyle 1 Overview Disk trends Memory Hierarchy Performance Scheduling SSDs Read Write Performance Cost 2 Secondary storage Secondary

443 views • 32 slides
Performance in Operating Systems and Middleware Frank Feinbube Operating Systems and Middleware

Performance in Operating Systems and Middleware Frank Feinbube Operating Systems and Middleware

Performance in Operating Systems and Middleware Frank Feinbube Operating Systems and Middleware Performance To the limit of computation! What is possible, what is not? Law-abiding hardware and operating system trends (Moore, Dennard,

287 views • 9 slides
Electronic Treasury Enterprise Card GSA Smart Card Handbook Panel Discussion Smart Cards in

Electronic Treasury Enterprise Card GSA Smart Card Handbook Panel Discussion Smart Cards in

Electronic Treasury Enterprise Card GSA Smart Card Handbook Panel Discussion Smart Cards in Government 2004 March 10, 2004 What is the Electronic Treasury Enterprise Card (E-TREC)? E-TREC is the result of the Treasury Departments

507 views • 9 slides
Roadmap for Section 1.2. History of Operating Systems Tasks of an Operating System OS as

Roadmap for Section 1.2. History of Operating Systems Tasks of an Operating System OS as

Unit OS1: Overview of Operating Systems 1.2. The Evolution of Operating Systems Windows Operating System Internals - by David A. Solomon and Mark E. Russinovich with Andreas Polze Roadmap for Section 1.2. History of Operating Systems Tasks of

556 views • 12 slides
Smart Cards Smart Cards a(s) a(s) Safety Critical Systems Safety Critical Systems Gemplus

Smart Cards Smart Cards a(s) a(s) Safety Critical Systems Safety Critical Systems Gemplus

Smart Cards Smart Cards a(s) a(s) Safety Critical Systems Safety Critical Systems Gemplus Labs Gemplus Labs Pierre.Paradinas Paradinas@ @gemplus gemplus.com .com Pierre. Agenda Agenda Smart Card Technologies Smart Card

358 views • 31 slides
CS5460: Operating Systems Lecture 1: Course Overview (Chapter 1) CS 5460: Operating Systems

CS5460: Operating Systems Lecture 1: Course Overview (Chapter 1) CS 5460: Operating Systems

CS5460: Operating Systems Lecture 1: Course Overview (Chapter 1) CS 5460: Operating Systems Lecture 1 What is an Operating System? Interface between user and hardware Exports simpler virtual machine interface Hides ugly

368 views • 22 slides
Payment Account Reference (PAR) Overview Chandra Srivastava Smart Card Alliance Payments Summit

Payment Account Reference (PAR) Overview Chandra Srivastava Smart Card Alliance Payments Summit

Payment Account Reference (PAR) Overview Chandra Srivastava Smart Card Alliance Payments Summit April, 6 2016 Tokenization was created as a standard for the ever-expanding payments ecosystem Digital commerce is growing rapidly, with new

117 views • 11 slides
Reverse engineering smart cards Christian M. Ams uss linuxwochen@christian.amsuess.com

Reverse engineering smart cards Christian M. Ams uss linuxwochen@christian.amsuess.com

Reverse engineering smart cards Christian M. Ams uss linuxwochen@christian.amsuess.com http://christian.amsuess.com/ 2010-05-06 Overview objective understand smart card communication based on sniffable communication hardware standard card

468 views • 20 slides
A smart card based solution for user- centric identity management Jan Vossaert Researcher at

A smart card based solution for user- centric identity management Jan Vossaert Researcher at

A smart card based solution for user- centric identity management Jan Vossaert Researcher at KaHo Sint-Lieven Affiliated Researcher at KULeuven 1 Overview Introduction Approach Overview of the architecture Protocols

460 views • 21 slides
BCD Smart Power Roadmap Trends and Challenges Giuseppe Croce NEREID WORKSHOP Smart Energy

BCD Smart Power Roadmap Trends and Challenges Giuseppe Croce NEREID WORKSHOP Smart Energy

BCD Smart Power Roadmap Trends and Challenges Giuseppe Croce NEREID WORKSHOP Smart Energy Bertinoro, October 20 th Outline 2 Introduction Major Trends in Smart Power ASICs An insight on (some) differentiating enablers

341 views • 19 slides
1 The OS and User Applications The OS and User Applications Overview of OS Services Overview of

1 The OS and User Applications The OS and User Applications Overview of OS Services Overview of

Operating Systems: The Big Picture Operating Systems: The Big Picture The operating system (OS) is the interface between user applications and the hardware. CPS 210: Operating Systems CPS 210: Operating Systems User Applications virtual

274 views • 4 slides
KDDI CORPORATION Financial Results for the 1st Quarter of the Fiscal Year Ending March 2011 July

KDDI CORPORATION Financial Results for the 1st Quarter of the Fiscal Year Ending March 2011 July

Ubiquitous Solution Company KDDI CORPORATION Financial Results for the 1st Quarter of the Fiscal Year Ending March 2011 July 23, 2010 The figures included in the following brief, including the business performance target and the target for the

599 views • 23 slides
DATAMATICS GLOBAL SERVICES LIMITED Q4 &amp; FY18 Results Update MAY 31, 2018 COMPANY OVERVIEW

DATAMATICS GLOBAL SERVICES LIMITED Q4 &amp; FY18 Results Update MAY 31, 2018 COMPANY OVERVIEW

DATAMATICS GLOBAL SERVICES LIMITED Q4 &amp; FY18 Results Update MAY 31, 2018 COMPANY OVERVIEW FINANCIAL OVERVIEW DISCUSSION SUMMARY AWARDS &amp; CERTIFICATIONS COMPANY OVERVIEW COMPANY OVERVIEW OUR BRIEF PROFILE We build

253 views • 21 slides
WISTP 07 A comparative analysis of common threats, vulnerabilities, attacks and

WISTP 07 A comparative analysis of common threats, vulnerabilities, attacks and

WISTP 07 A comparative analysis of common threats, vulnerabilities, attacks and countermeasures within smart card and wireless sensor network node technologies. Kevin Eagles, Konstantinos Markantonakis and Keith Mayes Smart Card Centre,

337 views • 22 slides
TravelSpirit and the Open Internet of Mobility Open internet of mobility Call SmartCard

TravelSpirit and the Open Internet of Mobility Open internet of mobility Call SmartCard

TravelSpirit and the Open Internet of Mobility Open internet of mobility Call SmartCard Contactless App Data Payment MaaS Journey Platform Operator Planner aggregator facilitator Service planner Open data feeds Platform

339 views • 7 slides
Revised document 4.1 On underwater noise Important improvements Title of the document changed to

Revised document 4.1 On underwater noise Important improvements Title of the document changed to

Revised document 4.1 On underwater noise Important improvements Title of the document changed to - HELCOM Guidelines for establishing environmental targets for underwater noise - A short introduction added to clarify the use of the document

194 views • 6 slides
Quantum Noise as an Entanglement Meter Leonid Levitov MIT and KITP UCSB Landau memorial

Quantum Noise as an Entanglement Meter Leonid Levitov MIT and KITP UCSB Landau memorial

Quantum Noise as an Entanglement Meter Leonid Levitov MIT and KITP UCSB Landau memorial conference Chernogolovka, 06/22/2008 Part I: Quantum Noise as an Entanglement Meter with Israel Klich (2008); arXiv: 0804.1377 Part II: Coherent

698 views • 40 slides
Events Noise Control Health &amp; Community Wellbeing Team Concerts tattoos INDOOR Marquees

Events Noise Control Health &amp; Community Wellbeing Team Concerts tattoos INDOOR Marquees

Events Noise Control Health &amp; Community Wellbeing Team Concerts tattoos INDOOR Marquees OUTDOOR LEGISLATION Clean Neighbourhoods and Environment Act (NI) 2011 Section 63: statutory nuisances (i) noise emitted from premises so as

545 views • 15 slides
Lynnwood Link Extension Project Update Sound Transit Board Meeting 1/24/19 Lynnwood Link

Lynnwood Link Extension Project Update Sound Transit Board Meeting 1/24/19 Lynnwood Link

Lynnwood Link Extension Project Update Sound Transit Board Meeting 1/24/19 Lynnwood Link Extension Project Update Project Status Early Work Activities Community Outreach During Construction 2 Baseline Schedule 2010-14 2015

582 views • 21 slides

More recommend