18-05-2012, 12:55 PM
Smart Card Technology
[attachment=22345]
Classification
Memory vs. microprocessor
Memory cards
simply store data
read and write to a fixed address on the card
Straight Memory Cards
Protected Cards: configured to restrict access through a password
Stored Value Memory Cards: such as a telephone card, the chip has memory cells, one for each telephone unit. A memory cell is cleared each time a telephone unit is used.
Microprocessor cards
Miniature Computer with microprocessor chip, input/output port, OS, ROM, EEPROM, RAM
Add, delete, manipulate information in its memory
Built-in security features
multiple functions and/or different applications reside on the card
Classification
Contact vs. contactless
Contact smart card
are inserted in a smart card reader making physical contact with the reader
Contactless smart cards
smart cards that employ a radio frequency (RFID) between card and reader without physical insertion of the card
Combi card
combines the two features
The Chip Operating System COS
Predefined file structures: Binary files, Secret Key files, …
A set of dedicated commands: Read, Write, Update
Cryptographic capabilities: 3DES, RSA, ...
Platform
Small processors
8 or 16 bits
Very small memory
8k, 16k, 32k, 64k, 128K of ROM
Between 1 and 32 Kb of EEPROM
Between 256 bytes and 4Kb of RAM
Communication
through RS232 serial and USB ports, PCMCIA slots, floppy disk slots, parallel ports, infrared IRDA ports, …
Life Cycle
Fabrication phase
Pre-personalisation Phase
Personalisation Phase
Utilisation Phase
End-of-Life Phase
Examples
GPK 8000
MPCOS-EMV compatible with ISO7816-4
8Kb EEPROM
3DES, RSA/DSA (up to 1024 bits), SHA-1, MD5
GemSafeXpresso 32K
Java Card platform compatible with ISO7816 - 1/2/3/4
32K EEPROM
RSA (512 - 2048 bits), 3DES algorithms
SIM Back-up cards
Capacity: 254 phone numbers & names
Capacity: 30 text messages
Dedicated to personal data storage
PC/SC Smart card readers
What is PC/SC?
Standardizes communication compatible with the ISO-7816 between computer software and smart cards
Developed by smart card and computer manufacturers
Promoted by Microsoft
PC/SC
What is PC/SC
Facilitate Smart Card Integration into PC Environment
Smart Card Reader and Smart Card Interoperability at Different Levels
Application and Vendor Neutral
Platform Independent Specifications
[attachment=22345]
Classification
Memory vs. microprocessor
Memory cards
simply store data
read and write to a fixed address on the card
Straight Memory Cards
Protected Cards: configured to restrict access through a password
Stored Value Memory Cards: such as a telephone card, the chip has memory cells, one for each telephone unit. A memory cell is cleared each time a telephone unit is used.
Microprocessor cards
Miniature Computer with microprocessor chip, input/output port, OS, ROM, EEPROM, RAM
Add, delete, manipulate information in its memory
Built-in security features
multiple functions and/or different applications reside on the card
Classification
Contact vs. contactless
Contact smart card
are inserted in a smart card reader making physical contact with the reader
Contactless smart cards
smart cards that employ a radio frequency (RFID) between card and reader without physical insertion of the card
Combi card
combines the two features
The Chip Operating System COS
Predefined file structures: Binary files, Secret Key files, …
A set of dedicated commands: Read, Write, Update
Cryptographic capabilities: 3DES, RSA, ...
Platform
Small processors
8 or 16 bits
Very small memory
8k, 16k, 32k, 64k, 128K of ROM
Between 1 and 32 Kb of EEPROM
Between 256 bytes and 4Kb of RAM
Communication
through RS232 serial and USB ports, PCMCIA slots, floppy disk slots, parallel ports, infrared IRDA ports, …
Life Cycle
Fabrication phase
Pre-personalisation Phase
Personalisation Phase
Utilisation Phase
End-of-Life Phase
Examples
GPK 8000
MPCOS-EMV compatible with ISO7816-4
8Kb EEPROM
3DES, RSA/DSA (up to 1024 bits), SHA-1, MD5
GemSafeXpresso 32K
Java Card platform compatible with ISO7816 - 1/2/3/4
32K EEPROM
RSA (512 - 2048 bits), 3DES algorithms
SIM Back-up cards
Capacity: 254 phone numbers & names
Capacity: 30 text messages
Dedicated to personal data storage
PC/SC Smart card readers
What is PC/SC?
Standardizes communication compatible with the ISO-7816 between computer software and smart cards
Developed by smart card and computer manufacturers
Promoted by Microsoft
PC/SC
What is PC/SC
Facilitate Smart Card Integration into PC Environment
Smart Card Reader and Smart Card Interoperability at Different Levels
Application and Vendor Neutral
Platform Independent Specifications