OpenCard and PC / SC - Two New Industry Initiatives for Smart Cards
نویسندگان
چکیده
With OpenCard and PC/SC, we see two new industry initiatives in the chip card world of today, which are currently developing into defacto standards and might eventually evolve to formal international standards. This document tries to give an overview of both initiatives and to explain their relationship and positioning to each other. About the Author Frank Seliger’s current responsibility is software architect in IBM’s Global Smart Card Solutions (GSCS) unit. IBM GSCS is an active member of both, the OpenCard and the PC/SC initiative. Frank Seliger is working on the architecture of the OpenCard Framework and has contributed to the PC/SC specification. Introduction “The nice thing about standards is that you have so many to chose from” Andrew Tanenbaum The smart card industry is currently in a transition from the gold rush atmosphere of a new technology towards a mature technology with more established products and processes. Increasingly we see industry initiatives for standardized protocols and solutions replacing the diversity and proliferation of isolated solutions. This trend makes it less of an adventure and thus more attractive to invest into solutions that use and exploit smart cards. A strong force for standardization and interoperability arises from the belief, that almost all new smart card solutions will have several applications on one card and several possible card types carrying one kind of application. This is commonly called "multi-application card" [Cart97]. The physical level and the lower layer protocol-levels have been governed by the formal ISO 7816 standard for several years now [ISO-97]. This standard leaves enough room for variation and interpretation that components from different manufacturers are often not compatible with one another although they conform to the ISO 7816 standard. The higher layers of programming, which an application programmer using a smart card is preferably dealing with, are barely regulated by ISO 7816. Besides ISO 7816 there are several specifications that emerged from specific application domains. Examples are EN 726 from the telecommunication domain [EN726], EMV’96 3.0 from the finance domain [EMV-96], EU/G7 WG7 from the health care domain [G7-97], just to mention a few. OpenCard and PC/SC, which we will look at more closely in the following, are both not business domain specific. The two initiatives have a different scope and focus. OpenCard as a specification is concerned with an object oriented framework located in the computer to which the smart card is attached. The reference implementation has been developed using the Java programming language and execution system and lends itself to be used for application development in Java. For regulation of the smart card itself, OpenCard relies on ISO 7816. Therefore, OpenCard can be used together with any smart card. PC/SC as a specification is focussing on the Personal Computer and the card terminal
منابع مشابه
BSC: A Novel Scheme for Providing Security using Biometric Smart Card
Technology advances day by day and the new things are being developed. There are many new technologies being introduced and developed in any discipline. Data Security plays a vital role and Biometric security systems is one of the new trends to be developed, which has its advantages for controlling access, protecting sensitive data, tracking on-line systems, etc.,. Biometric technologies such a...
متن کاملAuthentication Mechanisms for Physical Access Control
The Smart Card Alliance is a not-for-profit, multi-industry association working to stimulate the understanding, adoption, use and widespread application of smart card technology. Through specific projects such as education programs, market research, advocacy, industry relations and open forums, the Alliance keeps its members connected to industry leaders and innovative thought. The Alliance is ...
متن کاملSmart card abstract pdf
smart card abstract pdf Smart cards are used in information technologies as portable integrated.Abstract: While mobile handheld devices provide productivity benefits, they also pose. Paper describes two novel types of smart card with unconventional form factors. smart card abstract ppt Pdf.ABSTRACT Over the past few years, smart cards have achieved a growing acceptance as a powerful tool for se...
متن کاملSC 2: Secure Communication over Smart Cards - How to Secure Off-Card Matching in Security-by-Contract for Open Multi-application Smart Cards
The Security-by-Contract (S×C) framework has recently been proposed to support software evolution in open multi-application smart cards. The key idea lies in the notion of contract, a specification of the security behavior of an application that must be compliant with the security policy of the card hosting the application. In this paper we address a key issue to realize the S×C idea, namely th...
متن کاملThe difficulty of standardising Smart Card Security Evaluation∗
There is a need for assessing the security of smart cards by an independent third party, specially if multi-application smart cards become reality. Intuitively, the methods to obtain this could be derived from the computer industry where security evaluation already is commonplace, but because of the special properties of smart cards, this seems very difficult. The article discusses the problems...
متن کامل