New security issues raised by open cards
نویسندگان
چکیده
The methods, languages and tools for developing a smart card system share some characteristics with those of the embedded domain. Until recently, smart card programs were written in hand coded native assembly language. All programs (drivers, operating system, libraries, applications) were developed as a monolithic piece of code burned in the smart card ROM. Therefore, not only are traditional card systems difficult to develop (low-level programming language, very reduced-feature microcontroller, specific code for every microprocessor) but they also cannot support any evolution of their applications since all the application code is burned forever with the runtime engine in the ROM.
منابع مشابه
Java Card or How to Cope with the New Security Issues Raised by Open Cards?
In this paper, we aim to discuss various threats raised by Java Cards at various levels of the system. First, we address the Java Card platform security itself, from the chip security features to the Java Card virtual machine. Next, we expose how to deal with application security which is a standard problem for smart card manufacturers but a quite new one for third party Java developers beginni...
متن کاملNew security problems raised by open multiapplication smart cards
Till recently it was impossible to have more than one single application running on a smart card. Multiapplication cards, and especially Java Cards, now make it possible to have several applications sharing the same physical piece of plastic. This raises new security problems by creating additional ways to attack a card. These problems are the topic of this paper. The attacks will be described ...
متن کاملOn the Need of Physical Security for Small Embedded Devices: a Case Study with COMP128-1 Implementations in SIM Cards (long version)
Ensuring the physical security of small embedded devices is challenging. Such devices have to be produced under strong cost constraints, and generally operate with limited power and energy budget. However, they may also be deployed in applications where physical access is indeed possible for adversaries. In this paper, we consider the case of SIM cards to discuss these issues, and report on suc...
متن کاملOn the Need of Physical Security for Small Embedded Devices: A Case Study with COMP128-1 Implementations in SIM Cards
Ensuring the physical security of small embedded devices is challenging. Such devices have to be produced under strong cost constraints, and generally operate with limited power and energy budget. However, they may also be deployed in applications where physical access is indeed possible for adversaries. In this paper, we consider the case of SIM cards to discuss these issues, and report on suc...
متن کاملSecurity Issues with Contactless Bank Cards
Contactless bank cards have been issued steadily to banking customers over the past four years and this trend has continued to grow rapidly more recently. We want to highlight a list of security issues as well as privacy threats to be concerned with when using such contactless bank cards. Further advances in smartphone technology applications can lead to new threats in relation to contactless b...
متن کاملI-23: Freezing Oocytes: New or Old Ethical Issues?
Background: This paper considers whether the development of oocyte freezing raises any new or distinctive ethical issues. It will examine the ethical issues raised by this technique: the ’social’ use of egg freezing and how that might be defined; the use of egg freezing for cancer patients; and limitations and benefits of the technique. Materials and Methods: A consideration of the literature a...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید
ثبت ناماگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید
ورودعنوان ژورنال:
- Inf. Sec. Techn. Report
دوره 4 شماره
صفحات -
تاریخ انتشار 1999