Beruflich Dokumente
Kultur Dokumente
Page 1 of 13
Table of Contents
Glossary
A3 and A8
Two cryptographic algorithms used in GSM cellular telephony and typically implemented
in GSM SIM smart cards.
ABS (acrylonitrile butadiene styrene)
A common plastic material used for the manufacture of smart cards.
AC (access condition)
An attribute in a file header that allows or denies execution of certain commands based
on certain security conditions such as authentication of the entity attempting to execute
the command.
AID (application identifier)
A unique number assigned to smart card applications.
algorithm
A set of detailed instructions for performing a mathematical operation.
alt.technology.smartcards
file://C:\WINDOWS\Desktop\Smart%20Card%20Developer's%20Kit\Smart%20Car... 4/1/2004
Page 2 of 13
authenticate
To establish the identity of the origination or originator of a transaction or other dataprocessing request.
authorize
To grant privileges typically to access data, usually based on successful authentication.
batch card
A smart card that carries a key that enables its holder to unlock a shipment or batch of
other smart cards. A batch card carries a transport key. See also mother card.
biometrics
The use of a persons physical characteristics such as fingerprints, hand geometry, voice
or signature characteristics, eye patterns, and so on, for authentication.
black book
A catalog of information used to subvert smart card security systems.
blinding
Taking provisions in a smart cards operation to defeat voltage and timing attacks.
Blinding, for example, would ensure that all multiplications take the same amount of time
independent of the values of the multiplier and the multiplicand.
Bright, Roy
The French publicist who coined the term smart card.
byte string
A sequence of bytes.
C-SET (Chip-Secured Electronic Transaction)
The French version of SET, which incorporates a smart card in its specification.
CA (certification authority)
An organization or enterprise that issues digital certificates, primarily those attesting to an
individuals identity.
CAD (card accepting device)
A smart card reader.
capture
To not return a card to the cardholder if an anomalous condition is encountered before a
transaction is complete. A capture reader takes the smart card completely inside its
physical security perimeter so that it cannot be extracted by the user before the
transaction is completed.
Card Europe
A smart card industry association. See www.gold.net/users/ ct96.
cardholder
The person carrying and using a smart card. A cardholder does not necessarily own the
card or have any rights other than holding and using it.
CARDIS
An international smart card conference, Smart Card Research and Advanced
Applications, held roughly every 18 months, that features academic papers on smart card
research.
CardTech/Securetech
A North American smart card convention held twice a year.
Carte Bancaire
The smart card issued by Groupement des Cartes Bancaires, a French bankcard
association.
Cartes
An annual smart card convention held in Paris.
Castrucci, Paul
The American inventor who received U.S. Patent 3,702,464 on a smart card in 1972.
file://C:\WINDOWS\Desktop\Smart%20Card%20Developer's%20Kit\Smart%20Car... 4/1/2004
Page 3 of 13
Page 4 of 13
A theorem about the unique factorization of integers that is used in some cryptographic
algorithms.
cryptogram
An encrypted block of text or random data; used in smart card security protocols to
demonstrate possession of a secret key without revealing the key itself.
cryptographic coprocessor
Special integrated circuits for quickly doing calculations, particularly modular arithmetic
and large integer calculations, associated with cryptographic operations and algorithms.
These circuits are added to a standard processor core and therefore are called
coprocessors.
cyclic file
A type of file on a smart card that contains records such that the first record is returned
when a read next command is issued on the last record; thus, the records form a ring
and cycle from one to the next.
Danmont
A smart card operating system developed in Denmark and used in the VisaCash card.
See www.iccard.dk.
daughter card
One of a batch or shipment of cards that is unlocked with a mother card.
DEA (data encryption algorithm)
Synonym for DES.
DES (data encryption standard)
A secret key cryptographic algorithm defined and promoted by the U.S. government.
Dethloff, Jrgen
The German co-inventor of the smart card in 1968. See also Grttrupp, Helmut.
DF (dedicated file)
A smart card directory file that holds other files.
digital certificate
A digital message that contains the public key of an individual together with a guarantee
from a certificate authority that the public key belongs to the individual.
digital signature
A digital technique that authenticates the users transaction. A digital signature can, for
example, be the encryption of a hash of the transaction with the individuals private key.
diversified key
A smart card key that is computed from a smart cards serial number and a master key.
Diversified key techniques let every card in a large set of cards be accessed with a
unique key without the necessity of maintaining a record of which key is on which card.
Both the master key and the calculation program are kept in a highly secure
environment.
DSA (digital signature algorithm)
A cryptographic algorithm approved by the U.S. government for use in creating digital
signatures.
DSS (digital signature standard)
The U.S. standard that defines DSA and its use.
E-cash card
A stored-value smart card that contains money in digital form in one or more national
currencies such as kroner, francs, yen, marks, or dollars. When you spend money from
the card, the host application decrements a currency value and when you add more
money to the card, the host application increments a currency value. Dont try this at
home.
EEPROM (electrically erasable programmable read-only memory)
file://C:\WINDOWS\Desktop\Smart%20Card%20Developer's%20Kit\Smart%20Car... 4/1/2004
Page 5 of 13
Memory in a smart card that holds its contents when power is removed, that is, when the
card is removed from the card reader. Unlike with ROM, new values can be written to
EEPROM by the smart card CPU. EEPROM is used to store smart card values that are
set during personalization, such as account numbers or values that can change, such as
the amount of value stored on the card.
EF (elementary file)
An elementary file is part of the smart card file system that contains application data. See
also DF (dedicated file), MF (master file).
EFT (electronic funds transfer)
A funds transfer that is sent electronically, either by telecommunication or written on
magnetic media such as tape, cassette, or disk.
electronic wallet
Similar to an e-purse, with added functions such as credit and debit account access
capability. See also EP or E-purse.
emulator
A computer program plus special hardware that enables a program developer to run a
smart card program on the actual smart card chip but still be able to control and analyze
the execution of the program. An emulator, for example, typically allows the developer to
single-step the smart card processor and examine the smart card processors registers
and memory.
EMV (Europay, MasterCard, and Visa)
An alliance of bankcard associations that generated a smart card standard for payment
(credit and debit) smart cards, popularly called EMV96.
EN 726
A standard for smart cards and terminals for telecommunication use. The standard is the
technical basis for smart cards in Europe.
EN 742
A standard for the contacts for cards and devices used in Europe. New editions specify
the format used for the GSM subscriber identity module (SIM).
EP or E-purse (electronic purse)
A smart card that stores small amounts of currency, usually less than $1,000. Some
electronic purses can be reloaded; some cannot and are discarded when empty.
ESCAT (European Smart Card Application and Technology)
A smart card convention held annually at the beginning of September.
ETSI (European Telecommunication Standards Institute)
A European standards body.
FIPS 140-1
A U.S. federal standard titled Security Requirements for Cryptographic Modules that
concerns physical security of smart cards when used as cryptographic devices. For more
information, go to http://csrc.ncsl. nist.gov/fips/fips140-1.txt.
FLASH
A type of nonvolatile memory that can be written much faster than EEPROM memory.
Although usually written in all capital letters, FLASH is not an acronym, but rather refers
to fact that the memory can be bulk erased (that is, electronically flashed as PROM
memory of yore was flashed with UV light).
FRAM (ferroelectric memory)
A type of nonvolatile memory based on electric field orientation with nearly an infinite
write capability as opposed to normal EEPROM memory, which can only be written
approximately 10,000 times.
FSCUG (federal smart card users group)
A U.S. government smart card users group which promulgates standards and
file://C:\WINDOWS\Desktop\Smart%20Card%20Developer's%20Kit\Smart%20Car... 4/1/2004
Page 6 of 13
Page 7 of 13
The process during which the basic data that is common to all chip cards in a
manufacturing batch is loaded into the chip.
INS
The second field of an ISO 7816-4 smart card command, which contains the instruction
to be executed by the smart card.
intelligent memory card
A memory card that contains some additional featurestypically security features
which limit access to the memory.
inverse convention
A communication convention wherein signal-positive is to be interpreted as 0 and signalzero is to be interpreted as 1; this is the inverse of the usual translation of these states
into binary digits.
ISO (International Standards Organization)
The penultimate technical standards body based in Geneva, Switzerland. With
representation on its working committees from almost all countries, the ISO defines
technical standards for worldwide interoperability of hardware and software. For more
information, go to www.iso.org.
ISO/IEC 4909
The ISO standard for magnetic card format for electronic banking data. Some smart
cards have magnetic strips on them and others support magnetic stripe communication
protocols.
ISO/IEC 7810
The ISO standard for the physical characteristics of an identification card.
ISO/IEC 7811
The ISO standard for identification card recording techniques.
ISO/IEC 7812
The ISO standard encoding for identifying issuers of financial smart cards.
ISO/IEC 7813
The ISO standard that defines the specifics of financial transaction identification cards.
ISO/IEC 7816
The basic set of international standards covering smart cards. There are currently six
parts to the ISO 7816 standard:
Part 1Defines the physical characteristics of the card.
Part 2Defines the dimensions and location of contacts on the card. It also
prescribes the meaning of each contact.
Part 3Defines the electronic signals and transmission protocols required as
specified in Part 2.
Part 4Defines the commands to read, write, and update data.
Part 5Defines application identifiers (AIDs).
Part 6Defines data encoding rules for applications.
ISO/IEC 8583
The ISO standard for financial transaction messages.
ISO/IEC 9992
The ISO standard that describes the method of communication between card and reader
for financial transaction cards.
ISO/IEC 10181-3
The ISO standard for access control.
ISO/IEC 10202
The ISO standard for the architecture of the systems that utilize financial transaction
cards.
ISO/IEC 10373
file://C:\WINDOWS\Desktop\Smart%20Card%20Developer's%20Kit\Smart%20Car... 4/1/2004
Page 8 of 13
file://C:\WINDOWS\Desktop\Smart%20Card%20Developer's%20Kit\Smart%20Car... 4/1/2004
Page 9 of 13
chip and contains the contacts or pads that a smart card reader connects to in order to
activate and communicate with the chip.
MONDEX
A smart card operating system developed by NatWest in the UK and also an e-cash
smart card that supports direct transfer of value from one card to another. For more
information, go to www.mondex.com.
Montgomery multiplication
An efficient way to do binary multiplication based on shifting and adding. Montgomery
multiplication is particularly useful in multiplying the arbitrarily large integers used in
some cryptographic algorithms on the 8-bit microcontroller in a smart card.
Morno, Roland
The French journalist who received a patent on smart cards in 1974.
mother card
A smart card holding a transport key and used to unlock all the cards in a batch or
shipment of cards. See also batch card, daughter card.
MULTOS
The multiapplication smart card operating system on the MONDEX card and licensable
from MAOSCO to be the foundation for any multiapplication smart card. For more
information, go to www.multos.com.
NACCU (National Association of Campus Card Users)
A North American smart card industry group. For more information, go to
www.naccu.org.
NIST (National Institute for Standards and Technology)
An American standards body particularly for the use of information-processing
technology by the Federal government. For more information, go to www.nist.gov.
NVM (nonvolatile memory)
A generic term for the memory in a smart card that can be written but still holds its
contents after power has been removed; PROM, EPROM, EEPROM, FLASH, and FRAM
are examples of NVM.
offline
The state in which a smart card is not connected to a computer network and must rely on
the information stored in its own file system; for example, to approve or deny a
transaction.
online
The state in which a smart card is connected to a computer network and can be
instructed to, for example, accept or deny a transaction based on information it sends to
computers on the network.
optical card
A memory card that can be written once but read many times and can hold between 1
MB and 40 MB of data. Reading and writing use laser optical technology.
page size
The smallest number of bytes in EEPROM memory that can be written with one write
operation. Page sizes in smart cards vary from 1 to 32 bytes.
path
The location of a file with respect to the root directory.
PC/SC (personal computer/smart card)
A group of personal computer and smart card companies, founded to work on open
specifications to integrate smart cards with personal computers. For more information, go
to www.smartcardsys.com.
personalization
The process during which individual data are loaded into the smart card chip. Typically
file://C:\WINDOWS\Desktop\Smart%20Card%20Developer's%20Kit\Smart%20Car... 4/1/2004
Page 10 of 13
performed together with the printing or embossing of personal data (name, ID number,
picture, and so on) and an account number onto the face of the card.
phone card
A card that can be used for the payment of telephone charges, typically in a pay phone.
PIN (personal identification number)
Typically a four- or five-digit number used by the operating system on the smart card to
authenticate the cardholder.
PKA (public key algorithm)
A cryptographic algorithm that uses a pair of keys, a public key and a private key, that
are different from one another. The public key is published and available to anyone
wishing to send an encrypted communication to the holder of the private key. See also
SKA (secret key algorithm).
PKI (public key infrastructure)
A system of storing and distributing public keys together with their current status, typically
at scale (that is, millions to billions of keys).
POS (point of sale)
A type of terminal found, for example, at grocery store checkout stations.
private key
A cryptographic key known only to the owner. Or, the secret component of an
asymmetric cryptographic key. See also PKA (public key algorithm).
processor card
A smart card that contains a microprocessor or microcontroller that can execute a
program stored in the cards memory.
processor core
See core.
Proton
A smart card operating system developed by Banksys in Belgium. Used for travel and
entertainment by American Express, Hilton Hotels, and American Airlines in the United
States and for e-cash in Sweden. For more information, go to www.proton.be.
public key
The publicly available and distributed component of an asymmetric cryptographic key.
purse file
A type of file in a smart cards file system that is used to implement electronic purses.
PVC (polyvinyl chloride)
Plastic material used for the body of some smart cards.
RAM (random access memory)
Memory used for temporary storage of data by the CPU in a smart card. RAM is volatile;
its contents are lost when power is removed from the smart card. See also NVM
(nonvolatile memory).
Regulation E
A U.S. Federal regulation designed to protect users and issuers using electronic financial
transfers from fraudulent transactions. It requires users to receive a receipt of financial
transactions, puts restrictions on issuance of accessible devices, establishes the
conditions of this type of service, and puts limits on consumer liability.
relative path
The location of a file relative to the current file.
retention time
The length of time a smart card will hold data in its nonvolatile memorytypically, 10
years.
RF/DC (radio frequency/direct communication)
A method of communication without physical contact using radio frequency transmission.
file://C:\WINDOWS\Desktop\Smart%20Card%20Developer's%20Kit\Smart%20Car... 4/1/2004
Page 11 of 13
file://C:\WINDOWS\Desktop\Smart%20Card%20Developer's%20Kit\Smart%20Car... 4/1/2004
Page 12 of 13
In an asynchronous communication protocol, the start bit signals the beginning of a new
message and alerts the receiver to start collecting the bits of the message. The start bit
typically serves only this heads-up function and is not part of the message itself.
SVC (stored value card)
A smart card that stores nonbearer values such as e-cash. Some stored value cards can
be reloaded with more value and some cannot.
swallow
To pull the smart card completely inside the reader so that the cardholder cant remove
the card from the reader during a transaction.
symmetric algorithms
A cryptographic algorithm or protocol in which the same key is held by both parties and is
used for both encryption and decryption. DES is a symmetric algorithm.
symmetric key
A cryptographic key used in a symmetric cryptographic algorithm. It is called symmetric
because the same key is used to decrypt a message as was used to encrypt the
message. See also SKA (secret key algorithm).
synchronous protocol
A communication protocol that is premised on the existence of a common clock or
synchronized clocks between the sender and the receiver of the data.
T=0
A communication protocol between a smart card and a smart card reader thatt ransfers
information one byte at a time; a byte-oriented smart card communication protocol.
T=1
A communication protocol between a smart card and a smart card reader that transfers
information in a block or blocks of multiple bytes; a block-oriented smart card
communication protocol.
tamper detection
Capabilities of a smart card such as low voltage or slow clock detection circuits that
enable the card to detect an attempted, unauthorized access to data it contains or an
attempt to alter the calculations it performs.
tamper evident
Physical aspects of a smart card that, when altered, will not return to their unaltered state
and thus will show that the card has been tampered with.
tamper resistant
Properties of a smart cardboth in hardware and softwarethat make it difficult to
perform unauthorized alterations of the data stored in the smart card or to make the
smart card perform unauthorized computations.
tamper response
Actions such as zeroization taken by a smart card when tampering is detected.
TE (terminal equipment)
Another name for a smart card reader.
tear
To remove a smart card from the smart card reader in the middle of a transaction; may
leave the data on the smart card in an inconsistent or incorrect state.
TESA-7
A cryptographic algorithm used in GSM telephony.
timing attack
An attack on a smart cards security system that is based on precise measurement of
how long it takes the microprocessor to perform certain functions. For example, it takes
longer to multiply by one than by zero.
TLV (tag length value)
file://C:\WINDOWS\Desktop\Smart%20Card%20Developer's%20Kit\Smart%20Car... 4/1/2004
Page 13 of 13
A way of formatting arbitrary data for transmission between a smart card and a host
application.
TPDU (Transmission Protocol Data Unit)
A block of data sent from the smart card to the host application.
transaction
A business or payment event for the exchange of value for goods or services.
transaction time
The amount of time between the start and finish of a transaction.
transparent file
A type of file organization. The EEPROM file contains a byte string. Data is accessed
using the offset length relative to the first byte within the byte string.
transportation key or transport key
A key that prevents data being written into a smart card NVM when it is being transported
from the chip manufacturer to the card manufacturer or from the card manufacturer to the
card issuer.
Unicode
A method for encoding characters from many alphabets in 2 bytes or 16 bits. For
example, 03BE16 is the lowercase Greek letter epsilon (). See also ASCII.
value checker
A battery-operated smart card reader for checking the current value held in a stored
value card.
VCC
The contact or pad on a smart card module through which voltage is supplied to power
the smart card processor; also the voltage itself, typically 5 volts.
Visa Cash card
A stored-value smart card produced by Visa that transfers U.S. cash.
voltage attack
An attack on a smart cards security system that is based on making very precise
measurements of how much voltage the smart card draws. For example, some smart
card chips draw more voltage when they are multiplying by one than when they are
multiplying by zero.
VPP
The contact or pad on a smart card module through which voltage is supplied to program
or to erase the nonvolatile memory of the smart card; also, the voltage itself, typically 5
volts.
wired logic card
See intelligent memory card.
write/erase time
The amount of time it takes to write or erase a page of nonvolatile memory in a smart
card. Typically on the order of 5 milliseconds for EEPROM memory.
zeroization
Setting the nonvolatile memory of a smart card to all null values (zero), wiping out all
data stored on the smart card; typically done in response to tamper detection.
Table of Contents
file://C:\WINDOWS\Desktop\Smart%20Card%20Developer's%20Kit\Smart%20Car... 4/1/2004