Beruflich Dokumente
Kultur Dokumente
By
John Xavier
( Y2M016 )
S4 MCA
March 2004
CERTIFICATE
Place
Date
1
ACKNOWLEDGEMENT
Mrs. Priya Chandran, Assistant Professor, my guide for this seminar, who
helped me in preparing for this seminar.
Miss Nisha K.K, for all the guidance I have received.
All my friends whose wholehearted support helped me at all stages of the
preparation of this seminar
2
ABSTRACT
Today’s smart cards are re-usable, hold large quantities of data, speed
transaction times, identify the cardholder, and even provide loyalty benefits. And this is
only the beginning of the age of smart cards.
The public demands that smart cards, like any new product, bring obvious
benefit to the existing process. Regardless of the benefits to the proprietor, (accuracy,
cost, savings, etc.) successful smart card programs must provide benefits to the consumer
greater than the consumer-perceived effort in adapting the smart card behavior. The more
challenging it is to understand and use the card, the greater the benefit must be.
3
TABLE OF CONTENTS
7. SUMMARY…………………………………………………16
8. REFERENCES……………………………………………..17
4
1. INTRODUCTION AND SHORT HISTORY
Smart cards and hardware tokens provide both greater mobility and
enhanced security by allowing users to carry their digital certificates with them. A digital
certificate is like a driver's license for the Internet. Unlike passwords, which could be
different on every site that you visit, the same certificate can be used everywhere that
identification is required. And certificates allow users to establish confidential
communications, identify themselves to other people and web sites, and detect message
tampering.
5
2. SMART CARD TYPES
Today there are three categories of smart cards, all of which are evolving
rapidly into new markets and applications:
Memory cards represent the bulk of the 600 million smart cards sold last
year, primarily for pre-paid, disposable-card applications like pre-paid phone cards.
Memory cards are popular as high-security alternatives to magnetic stripe cards.
These cards are used for a variety application, especially those that have
cryptography built in, which requires manipulation of large numbers. Thus, chip cards
have been the main platform for cards that hold a secure digital identity.
6
2.3 OPTICAL MEMORY CARDS
Optical memory cards look like a card with a piece of a CD glued on top -
which is basically what they are. Optical memory cards can store up to 4 MB of data. But
once written, the data cannot be changed or removed. Thus, this type of card is ideal for
record keeping - for example medical files, driving records, or travel histories. Today,
these cards have no processor in them (although this is coming in the near future). While
the cards are comparable in price to chip cards, the card readers use non-standard
protocols and are expensive.
MF
DF DF EF EF
DF EF EF EF EF
7
A central application for smart cards defined by the ISO/IEC 7816-4
standard is a file system. The file system is actually applied to the nonvolatile memory on
the smart card; generally EEPROM. The file system defined is a relatively
straightforward hierarchical structure comprising three basic elements:
The MF component is the root of the file hierarchy; there is only one MF
on a smart card. An MF may contain, as elements, a DF, or even many DFs, and it may
contain zero to many EFs. The DF component is essentially a container for EF
components; a DF may contain zero to many EFs. An EF component may contain only
records.
8
READ / SEEK read from a file / search in a file
WRITE / UPDATE write to a file
ERASE set bytes to a predefined pattern
APPEND append to a file
INCREASE / DECREASE increase / decrease a counter
INVALIDATE apply reversible lock
REHABILITATE remove reversible lock
LOCK apply irreversible lock
The Java Card specifications enable Java technology to run on smart cards
and other devices with limited memory. The Java Card API allows applications written
for one Java Card-enabled smart card platform, to run on any other Java Card-enabled
platform.
There are several unique benefits of the Java Card technology, such as
• Platform Independent
Java Card applets that comply with the Java Card API specification will
run on cards developed using the JCAE - allowing developers to use the same Java
Card applet to run on different vendors' cards.
• Multi-Application Capable
9
Multiple applications can run on a single card. In the Java programming
language, the inherent design around small, downloadable code elements makes it
easy to securely run multiple applications on a single card.
• Post-Issuance of Applications
The installation of applications, after the card has been issued, provides
card issuers with the ability to dynamically respond to their customer's changing
needs. For example, if a customer decides to change the frequent flyer program
associated with the card, the card issuer can make this change, without having to issue
a new card.
• Flexible
The Java Card API is compatible with formal international standards, such
as, ISO7816, and industry-specific standards, such as, Europay/Master Card/Visa
(EMV).
10
4.1 JAVA CARD VS CONVENTIONAL CARD
As we can see from this diagram, in a Java Card along with Card OS there is Java
Interpreter and Java Card API’s .Because of this irrespective of the OS the applications
can be handled
2. Hardware independence
3. Multiple applications
4. Security
11
5. Compatibility with existing smart card standards
12
3. Java Card Runtime Environment (JCRE)
1. ROM for program code of VM, API, and pre- installed applets
2. EEPROM for persistent data, for objects and their fields (i.e. heap) and code of
downloaded applets
13
3. RAM for transient data, for stack and specially allocated scratchpad arrays
Writing to EEPROM is slower & consumes more power than writing to RAM, and
EEPROM lifetime limited to certain number of writes.
14
As we see here the compiled class files are combined together to form a
CAP (Combined Applet file). This CAP file is finally transferred to smart card for its
implementation.
15
Communication with smartcard via byte array buffer APDU, following
ISO7816.Terminal sends card a command APDU and smart card sends a response APDU
in response
16
7 SUMMARY
Smart cards have evolved in the past two decades from plastic
cards with simple contact-based memory chips to the ultimate flexibility of contactless
microprocessors in a wide array of smart objects. But technological advances alone will
not ensure the long-term success of smart cards. From the consumer perspective, the
benefits of adopting this new technology must greatly outweigh the effort required to
alter long-standing habits.
17
8. REFERENCES
• http://www.smartchip.com
• http://www.cs.berkley.edu/smartchip
• http://www.ibm.com/cs/smartcard
• http://developer.sun.com/technology/smartcard
• http://cs.wisc.edu/technology/smartcard
18