smart cards carrying certificates around
play

Smart Cards Carrying certificates around How do you use your - PDF document

May 22, 2023 •259 likes •316 views

4/25/08 Smart Cards Carrying certificates around How do you use your [digital] identity? Install your certificate in browser On-computer keychain file Need there be more? 1 4/25/08 Smart cards Smart card Portable device

  1. 4/25/08 Smart Cards Carrying certificates around How do you use your [digital] identity? – Install your certificate in browser – On-computer keychain file Need there be more? 1

  2. 4/25/08 Smart cards • Smart card – Portable device • credit card, , key fob, button with IC on it • Communication – Contact-based – Contactless • Near Field Communication (NFC) • Communication within a few inches of reader • May draw power from reader’s EMF signal • 106-424 kbps – Hybrid: contact and contactless Smart cards • Capabilities – Memory cards • Magnetic stripe: stores 125 bytes • Smart cards typically store 32-64 KB • Optional security for data access – Microcontroller cards • OS + programs + cryptographic hardware + memory 2

  3. 4/25/08 Smart card advantages • Security – on-board encryption, hashing, signing – data can be securely transferred – Store biometric data & verify against user – key store • store public keys (your certificates) • do not divulge private keys • perform digital signatures on card • Convenience – more data can be carried on the card • Personalization – e.g. GSM phone card Smart card applications • Stored-value cards (electronic purses) – Developed for small-value transactions – Mid 1990s in Europe and Asia • GSM phone SIM card • Credit/Debit – Stored account numbers, one-time numbers – EMV System (Europay, MasterCard, VISA) • Passports – Encoded biometric information, account numbers • Toll collection & telephone cards – Account number (EZ-Pass) or stored value (mass transit) • Cryptographic smart cards – Authentication: pin-protected signing with private key 3

  4. 4/25/08 Example: Passport • Contactless communication • Stores – Descriptive data – Digitized facial image – Fingerprints, iris scan, etc. optional – Certificate of document signer & personal public key • Basic Access Control (BAC) – Negotiate session key using passport #, date of birth, expiration date – This data is read optically – Generates 3DESS “document basic access keys” • Fixed for life – German proposal to use Diffie-Hellman key negotiation Example: Octopus • Stored value card - contactless – Provision for automatic replenishment – Asynchronous transaction recording to banks – Two-way authentication based on public keys • All communications is encrypted • Widely used in Hong Kong & Shenzen – Buses, stores, supermarkets, fast food, parking – Logs $10.8 million per day on more than 50,000 readers • Available in: – Cards, fobs, watches, toys 4

Recommend

Distributed Systems On-computer keychain file Need there be more? Smart Cards, Biometrics,

Distributed Systems On-computer keychain file Need there be more? Smart Cards, Biometrics,

Carrying certificates around How do you use your [digital] identity? Install your certificate in browser Distributed Systems On-computer keychain file Need there be more? Smart Cards, Biometrics, & CAPTCHA Paul Krzyzanowski

215 views • 5 slides
SMART CARDS IN LINUX AND WHY YOU SHOULD CARE Jakub Jelen Red Hat jjelen@redhat.com PRIVATE

SMART CARDS IN LINUX AND WHY YOU SHOULD CARE Jakub Jelen Red Hat jjelen@redhat.com PRIVATE

SMART CARDS IN LINUX AND WHY YOU SHOULD CARE Jakub Jelen Red Hat jjelen@redhat.com PRIVATE KEYS, CERTIFICATES: WHAT ARE THEY USED FOR? PRIVATE KEYS, CERTIFICATES: WHAT ARE THEY USED FOR? Email signatures & encryption SSH authentication

708 views • 34 slides
ISG Seminar Agenda for Lecture 3 rd November 2011 Evolution of smart cards/RFIDs From Smart

ISG Seminar Agenda for Lecture 3 rd November 2011 Evolution of smart cards/RFIDs From Smart

ISG Seminar Agenda for Lecture 3 rd November 2011 Evolution of smart cards/RFIDs From Smart Cards to NFC Smart Phone Attacks/countermeasures Security Near Field Communication (NFC) Keith Mayes NFC Security Elements

550 views • 8 slides
Assertion-Carrying Certificates Waqar Aqeel, Zachary Hanif, James Larisch, Olamide Omolola,

Assertion-Carrying Certificates Waqar Aqeel, Zachary Hanif, James Larisch, Olamide Omolola,

Assertion-Carrying Certificates Waqar Aqeel, Zachary Hanif, James Larisch, Olamide Omolola, Taejoong Chung, Dave Levin, Bruce Maggs, Alan Mislove, Bryan Parno, Christo Wilson The Public Key Infrastructure is how users know with whom they

157 views • 14 slides
INOSSEM i nsti tut de recherche Guillaume Bouffard (SSD) Vulnerability Analysis on Smart Cards

INOSSEM i nsti tut de recherche Guillaume Bouffard (SSD) Vulnerability Analysis on Smart Cards

Introduction Fault Tree Analysis An API to Mitigate the Undesirable Events Conclusion Vulnerability Analysis on Smart Cards using Fault Tree Guillaume Bouffard Bhagyalekshmy N Thampi Jean-Louis Lanet Smart Secure Devices (SSD) Team

705 views • 39 slides
Fault enabled viruses against smart cards 1 2 1 Samiya

Fault enabled viruses against smart cards 1 2 1 Samiya

Fault enabled viruses against smart cards 1 2 1 Samiya HAMADOUCHE , Jean-Louis LANET , Mohamed MEZGHICHE 1 LIMOSE Laboratory, University

898 views • 36 slides
Smart Cards Smart Cards a(s) a(s) Safety Critical Systems Safety Critical Systems Gemplus

Smart Cards Smart Cards a(s) a(s) Safety Critical Systems Safety Critical Systems Gemplus

Smart Cards Smart Cards a(s) a(s) Safety Critical Systems Safety Critical Systems Gemplus Labs Gemplus Labs Pierre.Paradinas Paradinas@ @gemplus gemplus.com .com Pierre. Agenda Agenda Smart Card Technologies Smart Card

358 views • 31 slides
Gaming & Smart Cards Smart Cards Empower Your Vision Gaming Industry Challenges Gaming

Gaming & Smart Cards Smart Cards Empower Your Vision Gaming Industry Challenges Gaming

Gaming & Gaming & Smart Cards Smart Cards Empower Your Vision Gaming Industry Challenges Gaming Industry Challenges Customer Experience Customer Experience Security and Privacy Security and Privacy Integration

544 views • 27 slides
National ID Cards National Smart Card Office (NSCO)

National ID Cards National Smart Card Office (NSCO)

National ID Cards National Smart Card Office (NSCO) www.sabteahval.ir/houshmand/ National Organization for Civil Tell: 60902701-2 Fax: 66736526 Registration(NOCR) Agenda 1. Traditional ID

370 views • 23 slides
The Ins and Outs of Programming Cryptography in Smart Cards . . . and announcing the launch of

The Ins and Outs of Programming Cryptography in Smart Cards . . . and announcing the launch of

The Ins and Outs of Programming Cryptography in Smart Cards . . . and announcing the launch of OpenCard Pascal Paillier CryptoExperts Real World Crypto 2015 Jan 2015 Real World Crypto 2015 Jan 2015 What are Smart Cards? Real World

968 views • 51 slides
Reverse engineering smart cards Christian M. Ams uss linuxwochen@christian.amsuess.com

Reverse engineering smart cards Christian M. Ams uss linuxwochen@christian.amsuess.com

Reverse engineering smart cards Christian M. Ams uss linuxwochen@christian.amsuess.com http://christian.amsuess.com/ 2010-05-06 Overview objective understand smart card communication based on sniffable communication hardware standard card

468 views • 20 slides
www.worldofinsights.co How to use the cards REFLECT CARDS Use as an ice-breaker to create

www.worldofinsights.co How to use the cards REFLECT CARDS Use as an ice-breaker to create

www.worldofinsights.co How to use the cards REFLECT CARDS Use as an ice-breaker to create dialogue on learning. RETHINK CARDS Use as a brainstorming tool to spark new ideas. ACT CARDS Use to transform insights into action. Licence to Dare

434 views • 24 slides
Factoring RSA keys from certified smart cards: Coppersmith in the wild Daniel J. Bernstein,

Factoring RSA keys from certified smart cards: Coppersmith in the wild Daniel J. Bernstein,

Factoring RSA keys from certified smart cards: Coppersmith in the wild Daniel J. Bernstein, Yun-An Chang, Chen-Mou Cheng, Li-Ping Chou, Nadia Heninger, Tanja Lange, Nicko van Someren September 16, 2013 Problems with non-randomness 2012

810 views • 32 slides
Factoring RSA keys from certified smart cards: Coppersmith in the wild Daniel J. Bernstein,

Factoring RSA keys from certified smart cards: Coppersmith in the wild Daniel J. Bernstein,

Factoring RSA keys from certified smart cards: Coppersmith in the wild Daniel J. Bernstein, Yun-An Chang, Chen-Mou Cheng, Li-Ping Chou, Nadia Heninger, Tanja Lange, Nicko van Someren 5 December 2013 Problems with non-randomness 2012

545 views • 50 slides
Model-Based Security M. Ochoa Verification and Testing for F. Bouquet Smart-Cards J. Bottela

Model-Based Security M. Ochoa Verification and Testing for F. Bouquet Smart-Cards J. Bottela

Model-Based Security M. Ochoa Verification and Testing for F. Bouquet Smart-Cards J. Bottela E.Fourneret J.Jurjens P. Yousefi ARES 2011 OUTLINE Introduction Background UMLsec Model-based Testing Security in smart-card

356 views • 17 slides
Gemplus electronic purse JavaCard applet that runs on JavaCard smart cards. Specifying and

Gemplus electronic purse JavaCard applet that runs on JavaCard smart cards. Specifying and

Gemplus electronic purse JavaCard applet that runs on JavaCard smart cards. Specifying and Verifying an Debit and credit operations on a global example: balance. Secured communication and a decimal representation in Java

339 views • 5 slides
10-16-2018 CARRYING CAPACITY Carrying capacity is defined as the number of individuals who

10-16-2018 CARRYING CAPACITY Carrying capacity is defined as the number of individuals who

Jekyll Island Carrying Capacity & Infrastructure Assessment 10-16-2018 CARRYING CAPACITY Carrying capacity is defined as the number of individuals who can be supported within a given area without degrading the natural, social,

698 views • 23 slides
Combining Trusted Computing and Smart Cards for Trustworthy VPN Access Bachelor Thesis - Final

Combining Trusted Computing and Smart Cards for Trustworthy VPN Access Bachelor Thesis - Final

Combining Trusted Computing and Smart Cards for Trustworthy VPN Access Bachelor Thesis - Final Presentation Michael Dorner Chair for Network Architectures and Services Department of Computer Science Technical University of Munich 24.04.2013

763 views • 37 slides
Side-Channel Analysis (SCA) A comparative approach on smart cards, embedded systems, and high

Side-Channel Analysis (SCA) A comparative approach on smart cards, embedded systems, and high

Side-Channel Analysis (SCA) A comparative approach on smart cards, embedded systems, and high security solutions Rohde & Schwarz SIT GmbH Stuttgart/Germany Dr. Torsten Schtze Workshop on Applied Cryptography Lightweight

595 views • 15 slides
Hardware-based Cryptography Smart cards, YubiKeys & more Karol Babioch Security Engineer

Hardware-based Cryptography Smart cards, YubiKeys & more Karol Babioch Security Engineer

Hardware-based Cryptography Smart cards, YubiKeys & more Karol Babioch Security Engineer kbabioch@suse.de Rationale - Computers running general purpose software can be compromised hacked Offline-access, etc. -

619 views • 26 slides
How to integrate Smart Cards in Standard Software without writing specific code ? Pierre Paradinas

How to integrate Smart Cards in Standard Software without writing specific code ? Pierre Paradinas

How to integrate Smart Cards in Standard Software without writing specific code ? Pierre Paradinas 1 & 3 and Jean-Jacques Vandewalle 1 & 2 (1) RD2P (2) UNIVERSITE LAVAL (3) GEMPLUS Recherche et Dveloppement Facult des Sciences

549 views • 17 slides
Password Authenticated Key Agreement for Contactless Smart Cards Dennis Kgler 1 , Heike Neumann

Password Authenticated Key Agreement for Contactless Smart Cards Dennis Kgler 1 , Heike Neumann

Password Authenticated Key Agreement for Contactless Smart Cards Dennis Kgler 1 , Heike Neumann 2 , Sebastian Stappert 2 , Markus Ullmann 1 , Matthias Vgeler 2 1 Bundesamt fr Sicherheit in der Informationstechnik 2 NXP Semiconductors Outline

174 views • 16 slides
Distributed Systems Smart Cards, Biometrics, & CAPTCHA Paul Krzyzanowski pxk@cs.rutgers.edu

Distributed Systems Smart Cards, Biometrics, & CAPTCHA Paul Krzyzanowski pxk@cs.rutgers.edu

Distributed Systems Smart Cards, Biometrics, & CAPTCHA Paul Krzyzanowski pxk@cs.rutgers.edu Except as otherwise noted, the content of this presentation is licensed under the Creative Commons Attribution 2.5 License. Page 1 Page 1

869 views • 29 slides
Security-by-Contract for Applications Evolution in Multi-Application Smart Cards Nicola

Security-by-Contract for Applications Evolution in Multi-Application Smart Cards Nicola

DTU Informatics Department of Informatics and Mathematical Modelling Security-by-Contract for Applications Evolution in Multi-Application Smart Cards Nicola Dragoni ndra@imm.dtu.dk http://www2.imm.dtu.dk/~ndra Embedded Systems Engineering

475 views • 35 slides

More recommend