Beruflich Dokumente
Kultur Dokumente
Outline
IWhat are Smart Cards? IHow do we make them? IHow do they work? IHow can you program them? IWhat can you do with them?
Outline
IWhat are Smart Cards? IHow do we make them? IHow do they work? IHow can you program them? IWhat can you do with them?
Manufacturing: Cutting
Manufacturing: Gluing
Manufacturing: Bonding
Manufacturing: Encapsulation
10
11
Electrical Initialisation
29/01/2001 Bull Patents 12
Manufacturing: Personalisation
Outline
IWhat are Smart Cards? IHow do we make them? IHow do they work? IHow can you program them? IWhat can you do with them?
14
Card Families
Memory
Microprocessor
29/01/2001 Bull Patents 15
Memory Cards
I Bitmap, synchronous access
N R/W
N R/Erase only
16
17
18
I Security features
N Crypto coprocessor (PK, DES,) N Physical sensors (V, freq,) N Physical protections (shielding,)
19
RAM
20
Microprocessor Vcc Reset Clock Ground Vpp I/O CPU EEPROM / ROM FLASH RAM
Address Bus
Microcontact
Microchip
Micromodule
29/01/2001 Bull Patents 21
Communications
I One communication channel: serial line I Layered transmission protocol
N Application: Application Protocol Data Unit N Transport: T=0, T=1, T=14
22
IFD
23
ADPU Syntax
I APDU Command
CLA INS P1 P2 Lc Data Le
Class
Parameters
Instruction
Data Length
I APDU Response
Data SW
Response Data
29/01/2001 Bull Patents 24
Status Word
Example
CLA A0
INS B0
P1 xx
P2 xx
Lc 0
Data Le Le
25
Required Infrastructure
I Personalisation Center I Issuing Center I Reader I Middleware (CDSA) I Back-end System
http://www.gemplus.com/usb
29/01/2001 Bull Patents 26
Software
PKCS #11
Token X Token Y Token Z CSP A
CAPI
CSP B CSP C
PC/SC
Hardware
RS232 Reader
USB GemSAFE
PCMCIA
27
Outline
IWhat are Smart Cards? IHow do we make them? IHow do they work? IHow can you program them? IWhat can you do with them?
28
I Cons:
N N N N Development in C and target assembly language Use emulators Mask lead time (~2 month) Bug fixes
29
I Pros:
N Off the shelf products N Cheaper
I Cons:
N Not extensible N Bug fixes
30
N Microsoft
I Standard API
N Crypto N GSM (SMS, Pro active commands)
31
32
Outline
IWhat are Smart Cards? IHow do we make them? IHow do they work? IHow can you program them? IWhat can you do with them?
33
34
[Blah Blah]
[@^#~r&]
I Portability I Ease of use I Onboard key generation
35
Main applications
I Public phone cards (pre-paid), I Cellular phone GSM cards, I Banking cards, I Health cards.
36
New applications
I Electronic purse, I Transport, I Security of information system, I Identity , I Loyalty , Loyalty I Games, I Physical access control.
37
I Invasive Attacks
N Probe Stations N Focused Ion Beam
38
39
Resources
I On Card development: N Java card : http://www.javacard.org Java Card Technology for Smart Cards, Zhiqun Chen, Sun Java Series, ISBN: 0-201-70329-7 N Windows for SC : http://www.microsoft.com/smartcard/ N Gemplus Developer web site: http://www.gemplus.fr/developers/index.htm Developer conference: http://www.key3studios.com/gemplusworld/
June 20, 21, Paris.
I Middleware: N PCSC-Lite : http://www.linuxnet.com/ N OCF (java) : http://ww.opencard.org/ N CDSA : http://www.opengroup.org/security/l2-cdsa.htm N PKCS : http://www.rsasecurity.com/rsalabs/pkcs/index.html I Questions: N Jean-Luc.Giraud@gemplus.com
29/01/2001 Bull Patents 40
Conclusion
41