voting using java card smart cards a case study
play

Voting using Java Card smart cards (a case study) Martijn Oostdijk - PowerPoint PPT Presentation

Nov 20, 2023 •637 likes •804 views

Voting using Java Card smart cards (a case study) Martijn Oostdijk (joint work with C-B. Breunesse & B. Jacobs) University of Nijmegen Outline 1. Context 2. Toys & Setup 3. Voting 4. Implementation 5. Demo 6. Results &

  1. Voting using Java Card smart cards (a case study) Martijn Oostdijk (joint work with C-B. Breunesse & B. Jacobs) University of Nijmegen

  2. Outline 1. Context 2. Toys & Setup 3. Voting 4. Implementation 5. Demo 6. Results & Conclusions

  3. Context • Loop Group: Traditionally, interest in program correctness, semantics, logic • Semantics of Java in PVS theorem prover implemented in Loop Tool • VerifiCard: Application of Loop Tool to smart card application • Case study driven research • Problem: No experience with smart card applications • Security is interesting

  4. Toys Schlumberger Palmera (10x) Gemplus GemXPresso IS (2x) Java iButton (+ adapters) (20x) Gemplus GCR410 (2x)

  5. Setup Linux machine with Sun’s Java SDK and additional APIs, smart card terminal attached to serial port: APDUs Applet Host Application OCF API Java Card API JavaComm API RXTX

  6. Why voting? Electronic voting is an interesting case study because: • Many aspects of security involved: − Confidentiality − Authentication − Integrity − Non-non-repudiation • Distributed application over the Internet • Untrusted clients: Smart cards as TCB

  7. Voting 1 Applet Host Application Internet Server virus pubS privS pubA id v vote privA thread m s GUI id ‘‘Secure’’ feedback channel Personal vote list Voter

  8. Personal vote list Stemnummers voor id pvda 227 vvd 72 cda 242 d66 16 groenlinks 235 sp 96 christenunie 83 sgp 46

  9. Voting 2 • Applet A sends id to host application H • H sends vote v to A • A returns RSA/SHA signature s of v (using priv A ) • H generates a new session key des, encrypts it with pub S , and sends it to S • H sends ( id , . . . , v, s ) encrypted with des to S • S checks the signature

  10. Voting 3 1. A → H : id 2. H → A : v 3. A → H : { ∂ ( v ) } priv A =: s 4. H → S : { des } pub S 5. H → S : { id , . . . , � v � s } des =: m 6. S → H : ack / deny

  11. Implementation • Loading the applet onto the card: Visa OP • Generating the keys pub A and priv A • Initialization: INS_SET_ID , INS_SET_PRIVATE_EXP , INS_SET_MODULUS • Voting: INS_GET_ID , INS_SIGN • Terminal uses threads to keep GUI responsive

  12. Implementation: process method ... case INS_SET_MODULUS: if (modulus!=null) ISOException.throwIt(ISO7816.SW_CONDITIONS_NOT_SATISFIED); else { modulus = new byte[lc]; readBuffer(apdu,modulus); } break; case INS_SIGN: if (modulus==null || private_exp==null) ISOException.throwIt(ISO7816.SW_CONDITIONS_NOT_SATISFIED); else sign(apdu); break; ...

  13. Implementation: sign method MessageDigest digester; Cipher encrypter; ... byte[] buffer = apdu.getBuffer(); short lc = (short)(buffer[ISO7816.OFFSET_LC] & 0x00FF); if (lc!=BLOCK_SIZE) ISOException.throwIt(ISO7816.SW_WRONG_LENGTH); readBuffer(apdu,plaintext); digester.doFinal(plaintext,(short)0,BLOCK_SIZE,hashtext,(short)0); Util.arrayCopy(hashtext,(short)0, paddedhashtext,(short)(BLOCK_SIZE-hashtext.length), (short)hashtext.length); encrypter.doFinal(paddedhashtext, (short)0,BLOCK_SIZE,ciphertext,(short)0); writeBuffer(ciphertext,apdu); ...

  14. Problems/Results • Crypto export restrictions: Sun’s JCE doesn’t come with RSA • Differences JC 2.0 and 2.1: iButtons use crypto processor directly • Threaded terminal: Correct? Not part of TCB • Patent pending for personal vote lists

  15. Conclusions • Even though it’s Java, it’s still very low level • Applet is small enough to be formally specified • Security verification requires higher level reasoning? • Future work: Visa OP, GSM, other case studies...

Recommend

Smart( Java )Card ... What & Why What - smart card Tiny PC without Human Interface

Smart( Java )Card ... What & Why What - smart card Tiny PC without Human Interface

Smart( Java )Card ... What & Why What - smart card Tiny PC without Human Interface capabilities CPU : 16b/32b RISC @ handful of MhZ Math co-processor: RSA/DES/AES/ECC RAM : X KB HDD : XX..XXX KB (EEPROM) NET :

568 views • 36 slides
Smart Cards Carrying certificates around How do you use your [digital] identity? Install your

Smart Cards Carrying certificates around How do you use your [digital] identity? Install your

4/25/08 Smart Cards Carrying certificates around How do you use your [digital] identity? Install your certificate in browser On-computer keychain file Need there be more? 1 4/25/08 Smart cards Smart card Portable device

316 views • 4 slides
Electronic Treasury Enterprise Card GSA Smart Card Handbook Panel Discussion Smart Cards in

Electronic Treasury Enterprise Card GSA Smart Card Handbook Panel Discussion Smart Cards in

Electronic Treasury Enterprise Card GSA Smart Card Handbook Panel Discussion Smart Cards in Government 2004 March 10, 2004 What is the Electronic Treasury Enterprise Card (E-TREC)? E-TREC is the result of the Treasury Departments

507 views • 9 slides
National ID Cards National Smart Card Office (NSCO)

National ID Cards National Smart Card Office (NSCO)

National ID Cards National Smart Card Office (NSCO) www.sabteahval.ir/houshmand/ National Organization for Civil Tell: 60902701-2 Fax: 66736526 Registration(NOCR) Agenda 1. Traditional ID

370 views • 23 slides
MAXIMUM CARDS MAXIMUM CARDS What is a Maximum Card ? The Maximum Card is the one which contains a

MAXIMUM CARDS MAXIMUM CARDS What is a Maximum Card ? The Maximum Card is the one which contains a

MAXIMUM CARDS MAXIMUM CARDS What is a Maximum Card ? The Maximum Card is the one which contains a Picture Postcard, a Postage Stamp affixed on the picture side of the card and a Cancellation on it and should confirm maximum possible concordance

385 views • 23 slides
Reverse engineering smart cards Christian M. Ams uss linuxwochen@christian.amsuess.com

Reverse engineering smart cards Christian M. Ams uss linuxwochen@christian.amsuess.com

Reverse engineering smart cards Christian M. Ams uss linuxwochen@christian.amsuess.com http://christian.amsuess.com/ 2010-05-06 Overview objective understand smart card communication based on sniffable communication hardware standard card

468 views • 20 slides
Browser based approach for Smart Card Connectivity My Smart Card My Smart Card Kapil Sachdeva

Browser based approach for Smart Card Connectivity My Smart Card My Smart Card Kapil Sachdeva

Browser based approach for Smart Card Connectivity My Smart Card My Smart Card Kapil Sachdeva expiration: 09/10 Karen Lu Ksheerabdhi Krishna Challenges Installing crypto providers Breaks mobility Breaks ubiquity of web

425 views • 8 slides
Smart Cards Smart Cards a(s) a(s) Safety Critical Systems Safety Critical Systems Gemplus

Smart Cards Smart Cards a(s) a(s) Safety Critical Systems Safety Critical Systems Gemplus

Smart Cards Smart Cards a(s) a(s) Safety Critical Systems Safety Critical Systems Gemplus Labs Gemplus Labs Pierre.Paradinas Paradinas@ @gemplus gemplus.com .com Pierre. Agenda Agenda Smart Card Technologies Smart Card

358 views • 31 slides
2017 Report Card Annual Report Cards The 2017 Report Card is our 6 th Report Card! 2 Sustainable

2017 Report Card Annual Report Cards The 2017 Report Card is our 6 th Report Card! 2 Sustainable

2017 Report Card Annual Report Cards The 2017 Report Card is our 6 th Report Card! 2 Sustainable Peterborough 2017 Overview 7 3 154 Working Staff Partners Groups Members Climate Change Action Plan updated baseline inventory for 2012-

507 views • 35 slides
Memory Consumption Analysis of Java Smart Cards G ERARDO S CHNEIDER University of Oslo - Norway

Memory Consumption Analysis of Java Smart Cards G ERARDO S CHNEIDER University of Oslo - Norway

Memory Consumption Analysis of Java Smart Cards G ERARDO S CHNEIDER University of Oslo - Norway Joint work with P ABLO G IAMBIAGI (SICS, Sweden) Previous collaboration with D AVID C ACHERA , T HOMAS J ENSEN AND D AVID P ICHARDIE (IRISA/INRIA,

1.13k views • 53 slides
Memory Usage Estimation for Java Smart Cards G ERARDO S CHNEIDER IRISA/INRIA - R ENNES , F RANCE

Memory Usage Estimation for Java Smart Cards G ERARDO S CHNEIDER IRISA/INRIA - R ENNES , F RANCE

Memory Usage Estimation for Java Smart Cards G ERARDO S CHNEIDER IRISA/INRIA - R ENNES , F RANCE CASTLES: Conception dAnalyses Statiques et de Tests pour le Logiciel Embarqu e S ecuris e NWPT04 - Uppsala, 06 October 2004 Memory

828 views • 43 slides
Voting Network: A Case Study of Digg 1 Y I N G W U Z H U S E A T T L E U N I V E R S I T Y E M

Voting Network: A Case Study of Digg 1 Y I N G W U Z H U S E A T T L E U N I V E R S I T Y E M

Measurement and Analysis of an Online Content Voting Network: A Case Study of Digg 1 Y I N G W U Z H U S E A T T L E U N I V E R S I T Y E M A I L : Z H U Y @ S E A T T L E U . E D U WWW2010 What are online content voting networks? 2

603 views • 32 slides
SGS Technology PLC Smart Board Case Study. Smart boards the SGS way. We are Technology

SGS Technology PLC Smart Board Case Study. Smart boards the SGS way. We are Technology

SGS Technology PLC Smart Board Case Study. Smart boards the SGS way. We are Technology Visionaries. We cannot be stopped. Thursday, March 10, 2011 The Backstory Smart Boards. The initial purchase of 9 Smart boards was implemented under the

545 views • 29 slides
Smart Card to Mitigate Logical Attacks Tiana Razafindralambo, Guillaume Bouffard, Bhagyalekshmy N

Smart Card to Mitigate Logical Attacks Tiana Razafindralambo, Guillaume Bouffard, Bhagyalekshmy N

A Dynamic Syntax Interpretation for Java based Smart Card to Mitigate Logical Attacks Tiana Razafindralambo, Guillaume Bouffard, Bhagyalekshmy N Thampi , and Jean-Louis Lanet Smart Secure Devices (SSD) Team, XLIM/ Universit de Limoges, France

466 views • 17 slides
Model-Based Security M. Ochoa Verification and Testing for F. Bouquet Smart-Cards J. Bottela

Model-Based Security M. Ochoa Verification and Testing for F. Bouquet Smart-Cards J. Bottela

Model-Based Security M. Ochoa Verification and Testing for F. Bouquet Smart-Cards J. Bottela E.Fourneret J.Jurjens P. Yousefi ARES 2011 OUTLINE Introduction Background UMLsec Model-based Testing Security in smart-card

356 views • 17 slides
Java Card Applet Firewall Java Card Applet Firewall Exploration and Exploitation Exploration and

Java Card Applet Firewall Java Card Applet Firewall Exploration and Exploitation Exploration and

Java Card Applet Firewall Java Card Applet Firewall Exploration and Exploitation Exploration and Exploitation Wojciech Mostowski and Erik Poll Digital Security Radboud University Nijmegen The Netherlands http://www.cs.ru.nl/~{woj,erikpoll}/

818 views • 42 slides
Gemplus electronic purse JavaCard applet that runs on JavaCard smart cards. Specifying and

Gemplus electronic purse JavaCard applet that runs on JavaCard smart cards. Specifying and

Gemplus electronic purse JavaCard applet that runs on JavaCard smart cards. Specifying and Verifying an Debit and credit operations on a global example: balance. Secured communication and a decimal representation in Java

339 views • 5 slides
A Study on Smart Card Security A Study on Smart Card Security Evaluation Criteria for Evaluation

A Study on Smart Card Security A Study on Smart Card Security Evaluation Criteria for Evaluation

[ICCSA 2004] 2004] [ICCSA A Study on Smart Card Security A Study on Smart Card Security Evaluation Criteria for Evaluation Criteria for Side Channel Attacks Side Channel Attacks Presented at the workshop ICCSA ICCSA 200 2004 4, ,

404 views • 26 slides
ISG Seminar Agenda for Lecture 3 rd November 2011 Evolution of smart cards/RFIDs From Smart

ISG Seminar Agenda for Lecture 3 rd November 2011 Evolution of smart cards/RFIDs From Smart

ISG Seminar Agenda for Lecture 3 rd November 2011 Evolution of smart cards/RFIDs From Smart Cards to NFC Smart Phone Attacks/countermeasures Security Near Field Communication (NFC) Keith Mayes NFC Security Elements

550 views • 8 slides
The United Nations Voting Dataset Exploratory Data Analysis: Case Study UN Voting Dataset Roll

The United Nations Voting Dataset Exploratory Data Analysis: Case Study UN Voting Dataset Roll

EXPLORATORY DATA ANALYSIS: CASE STUDY The United Nations Voting Dataset Exploratory Data Analysis: Case Study UN Voting Dataset Roll call ID Session (year) Vote Country code rcid session vote ccode Each row is a country- 46 2 1 2

461 views • 26 slides
s rsrt Case study: payment card security

s rsrt Case study: payment card security

s rsrt Case study: payment card security Tyler Moore Two-sided market structure Cardholder Merchant Issuing bank Acquiring bank In the beginning There was no protection for

549 views • 11 slides
2 Transportation Card Access Card Credit Card Any potential security

2 Transportation Card Access Card Credit Card Any potential security

2 Transportation Card Access Card Credit Card Any potential security risk with these cards? Any potential security risk with these cards? 3 Thievery Loss Why cant these

442 views • 32 slides
No card, No problem. Sign up for an eCard Get access to online newspapers, eBooks,

No card, No problem. Sign up for an eCard Get access to online newspapers, eBooks,

No card, No problem. Sign up for an eCard Get access to online newspapers, eBooks, databases Instant Digital Card from Overdrive Expiration dates of existing cards were extended until 2021. Student Success Cards eBooks /

304 views • 11 slides
of Sri Trang Agro-Industry Public Company Limited 28 th April 2016 1 The Voting Cards Example

of Sri Trang Agro-Industry Public Company Limited 28 th April 2016 1 The Voting Cards Example

SRI TRANG AGRO-INDUSTRY PUBLIC COMPANY LIMITED The 2016 Annual General Meeting of Shareholders of Sri Trang Agro-Industry Public Company Limited 28 th April 2016 1 The Voting Cards Example 2 The Voting Cards Example 3 Voting Procedures

748 views • 43 slides

More recommend