Supplemental cryptographic hardware for smart cards

Smart Cards are often touted as "secure" portable storage devices. A complete, high-level design metodology has been proposed for embedded information systems based on smart card devices. However, this metodology takes as granted that informations stored on the card will be really securely stored, and access control will be correctly maintained. Unfortunately, standards and specifications, created by hardware and software vendors for both the card hardware and the micro operating system which runs it have been repeatedly proven not as secure as they are commonly supposed to be.

The International Conference on Electrical Engineering

Smart card is a miniature computer with very limited hardware and software resources. Like any computer, an operating system is needed to manage the card hardware and software resources. Several smart card operating systems of different types were developed for this purpose. The basic functions of these operating systems are: handling the card input/out process, managing the file system, managing communication with card users/ application programs and data exchange with the cryptographic algorithms embedded in the card, if any. The user/application is allowed to interact with cryptographic algorithms with their default parameters and with no possibility of cryptographic parameters customization. This paper aims to make the smart card smarter by presenting a new type of smart card operating system that covers a new area of commands. The new set of cryptographic commands enables the applications/developer to deeply access the cryptographic primitives and customize their building blocks at run time. In order to test the new command set and demonstrate its features, the new operating system has been developed in embedded C language and implemented on an open platform card. Smart Card, Operating System, Cryptographic Primitives. Today, smart cards are widely used in our daily life. Their technology is being used in many fields like: credit cards, passports, health cards, ID cards, driving licenses, SIM cards for mobile phones, etc. Smart cards are originally known as integrated circuit cards (IC cards). The reason for naming IC cards with smart cards is that the card functions are not limited to those functions defined only at build time. The set of card functions could be extended in run time according to the system they work in and also according to user requirements. Smart cards with processor chip need an operating system known as Card Operating System (COS). The basic functions of COS are: managing the card resources, and enabling instructions execution and communication with the outer world. A variety of card operating systems have been developed. * Egyptian Armed Forces.

IFIP International Federation for Information Processing, 2004

The Intelligent Adjunct (IA) model‚ proposed by Balacheff et al in [1]‚ is a novel paradigm for smart card applications‚ in which off-card resources are provided for smart cards to run application logics. This paper presents the Card-Centric Framework as an evolution of the conceptual IA model to provide a more rigorous solution for smart cards to access off-card I/O resources. It consists of a system model and a communication protocol. With the Card-Centric Framework‚ smart cards can run any applications that involve user interactions. A system prototype constructed with the current smart card technologies showed only reasonable performance. To cater for performance issues‚ another demo system that made use of enhanced smart card technologies was implemented. It not only shows a significant improvement in performance‚ but also proves the feasibility of the framework in the future.

1996

2001

A transacted memory that is implemented using EEPROM technology offers persistence, undoability and auditing. The transacted memory system is formally specified in Z, and refined in two steps to a prototype C implementation / SPIN model. Conclusions are offered both on the transacted memory system itself and on the development process involving multiple notations and tools.

IEEE Security & Privacy Magazine, 2000

The operating system of a smart card is a safety critical system. Distributed in millions, smart cards with their small 8-bit CPU support applications where transferred values are only protected by the strength of a cryptographic protocol. This strength goes no further than the implementation of the software in the card and terminal allows. Because of its complexity, to guarantee absolute reliability of the smart card software is prohibitively expensive. Obtaining a high level of confidence in the implementation of a smart card application is essential for their widespread acceptance. A highly structured design of the smart card operating system gives the designer control over the complexity of the system.

14th International Workshop on Database and Expert Systems Applications, 2003. Proceedings., 2003

This paper presents an open protocol for interoperability across multi-vendor programmable smart cards. It allows exposition of on-card storage and cryptographic services to host applications in a unified, card-independent way. Its design, inspired by the standardization of on-card Java language and cryptographic API, has been kept as generic and modular as possible. The protocol security model has been designed with the aim of allowing multiple applications to use the services exposed by a same card, with either a cooperative or a no-interference approach, depending on application requirements.

IEEE Transactions on Consumer Electronics, 2004

Smartcard is originally designed as a passive authentication device. Retaining this passive role will limit its potential and it will eventually be superceded by other technologies. Therefore, it is a must for smartcard to take the active role in the near future. In light of this, this paper presents a novel Card-Centric Framework, in which the Smartcard becomes the Master whereas the card-connected terminal only a slave. The system prototype based on current smartcard technologies shows reasonable results, whereas another demo system that makes use of enhanced smartcard technologies provides a significant improvement in user perception and proves the feasibility of the framework in the future. Anticipating technology advancement so that all the performance requirements are met, applications will benefit from the framework in portability, data integrity, and chances for hardware-software customization.