SlideShare una empresa de Scribd logo

Vanderhoof smartcard-roadmap

Hai Nguyen
Hai Nguyen
1 de 15
Descargar para leer sin conexión
Smart Card Alliance Smart Card Technology Roadmap for Secure ID Applications Randy Vanderhoof Executive Director Smart Card Alliance
Agenda • Primary standards & specifications: – ISO 7816, PCSC, X509 – Open Card platforms (Javacard & Multos) • Security standards and their challenges – FIPS 140, Common Criteria • Specifications for interoperability – Global Platform – GSA specification • Industry Specifications – GSM (presented in another EI201 Session) – EMV • References for use with RFPs NIST Workshop: July 9, 2003 Smart Card Alliance
Where do standards apply? ISO 7816 -Interface between the card & the terminal PC/SC -Common driver interface for all smart card readers connected under Windows X509 -Digital Signature format & associated certificates Open OS -In the smart card only, allows a common application development platform for in-card applications FIPS 140 -Tamper resistance of a cryptographic device Common Criteria -Threat evaluations and secure application protections GSC specification -Common way to find data files in cards & common application structures for US Government applications Global Platform -Card application management and issuance in the card as well as in the back-end EMV -Hardware specifications for smart cards and terminals -Multi application selection for smart cards -Credit & Debit: commands and related transaction flow NIST Workshop: July 9, 2003 Smart Card Alliance
Smart Cards for Logical Security • PC/SC allows applications to be independent of the smart card reader (Windows drivers structure for hardware) • Microsoft Crypto API allows applications to use crypto services of various crypto devices • X.509 standard format for digital certificates Still no standard mechanism to launch an application when a given smart card is inserted in reader PC NIST Workshop: July 9, 2003 Smart Card Alliance
New Yorker Magazine, July 5, 1993 New Yorker Magazine - 1993 THIS is the problem! NIST Workshop: July 9, 2003 Smart Card Alliance
Issues for IT Security • Moving beyond user name and password • Managing internal and remote IT access • Developing a systems view of physical and logical security • Servicing beyond the network edge NIST Workshop: July 9, 2003 Smart Card Alliance
Smart Cards for Physical Security • It is the “What We Own”, or “Token” of ID Systems • It is an intelligent, highly tamper resistant Token, allowing us to provide proof of who we are and the role we play • It is a Highly Secure, portable credential platform providing • On-card security functions & • Intelligent interactions with reader NIST Workshop: July 9, 2003 Smart Card Alliance
Smart Card Role in an ID System • A personal database – Store and safeguard information on an individual basis – Local, portable storage of an individual’s private information • A personal firewall – Intelligent guardian of cardholder data – verifying that requestors are authorized to access information – Cardholder control of release of information • A personal terminal – Validation of the authenticity and trustworthiness of card readers or terminals – Strong validation of cardholder as rightful owner of the ID card NIST Workshop: July 9, 2003 Smart Card Alliance
Personal ID Cards • Personal Identification Cards – Specific rights, privileges, and responsibilities – Driver’s license, membership card for an organization or club, credit card, border crossing document, badge for paid event, etc. • Secure Personal Identification Cards – Extension to Personal Identification Cards • Includes best security technologies available – smart cards and • Includes best security technologies available – smart cards and biometrics biometrics • Certifies identification and authentication of user and granted • Certifies identification and authentication of user and granted privileges privileges • Confirms authenticity of credential through use of security markings • Confirms authenticity of credential through use of security markings – Multiple applications on the same credential ID systems that require the highest degree of security are combining smart card and biometric technologies. NIST Workshop: July 9, 2003 Smart Card Alliance
Technology Availability Readers and Reader ICs • Multiple providers of off the shelve reader products: – General purpose – Public transportation – Access Control – Retail industry • Integrated ICs supporting: – ISO14443 – ISO15693 – ISO14443 and ISO15693 NIST Workshop: July 9, 2003 Smart Card Alliance
Contactless comparison chart 14443 15693 Proximity Features Standards ISO 14443 ISO 15693 None ISO 7810 ISO 7810 (de facto) Frequency 13.56 MHz 13.56 MHz 125 kHzFrequency Read range ~10 centimeters ~1 meter ~1 meter (~3-4 inches) (~3.3 feet) (~3.3 feet) Chip types supported Memory Memory Memory Wired logic Wired logic Microcontroller Encryption and authentication functions MIFARE, DES/3DES, AES, Supplier specific, Supplier specific RSA, ECC DES/3DES Memory capacity range 64 to 64K bytes 256 and 2K bytes 8 to 256 bytes Read/write ability Read/write Read/write Read only Data transfer rate (Kb/sec) Up to 106 (ISO) Up to 26.6 Up to 4 Up to 848 (available) Anti-collision Yes Yes Optional Card-to-reader authentication Challenge/Response Challenge/Response Password Hybrid card capability Yes Yes Yes Contact interface support Yes No No NIST Workshop: July 9, 2003 Smart Card Source: Smart Card Alliance – contactless whitepaper Alliance
Challenges Facing the Secure Identification Industry? • When is visual authentication not enough? • The maturity of machine-readable technology with more standards-based choices at lower costs • The recognized need that exists to bind the identity of the cardholder to the card – how do you do it? • How do you increase security without sacrificing speed and convenience? • Managing scalable ID solutions that need multiple technologies with security and privacy from point of issuance to the network edge ...demands intelligent, secure, portable, rewritable platform NIST Workshop: July 9, 2003 Smart Card Alliance
Enhanced Security Design Options • Graph Something You Have + Something You Know + Something You Are + + Something You Have + Something You Are Relative + Biometric Security Something You Have + Something You Know Level ID Card + Something You Know PIN, Password Solutions NIST Workshop: July 9, 2003 Smart Card Alliance
Smart Badge Convergence Facility Contact Technology 125 KHz Management Proximity Smartcards Departments IT 13.56MHz Contactless Human Smartcards Resources Physical Access Logical Access Applications Digital Transit Cash Courtesy of Assa Abloy NIST Workshop: July 9, 2003 Smart Card Alliance
Conclusion: What about Interoperability ? • There are different aspects to interoperability • Solutions available – Development in the cards have been simplified thanks to Java – Card edge interface and data formats are clarified with GSC-IS – Multi application selection is possible for cards and applications compatible with the Open Platform mechanism – Multi application card management with Global Platform • Issues still pending – Management of biometrics templates and storage options – Agreement on policy issues for cross-certification of credentials NIST Workshop: July 9, 2003 Smart Card Alliance

Recomendados

Electronic Access Control Security
Electronic Access Control SecurityElectronic Access Control Security
Electronic Access Control Security
Opposing Force S.r.l.
 
NFC & RFID on Android
NFC & RFID on AndroidNFC & RFID on Android
NFC & RFID on Android
todbotdotcom
 
Ultrabook Development Using Sensors - Intel AppLab Berlin
Ultrabook Development Using Sensors - Intel AppLab BerlinUltrabook Development Using Sensors - Intel AppLab Berlin
Ultrabook Development Using Sensors - Intel AppLab Berlin
Intel Developer Zone Community
 
Which new scenarios are enabled by Windows 10 for NFC, Bluetooth LE & Beacons?
Which new scenarios are enabled by Windows 10 for NFC, Bluetooth LE & Beacons?Which new scenarios are enabled by Windows 10 for NFC, Bluetooth LE & Beacons?
Which new scenarios are enabled by Windows 10 for NFC, Bluetooth LE & Beacons?
Andreas Jakl
 
Near field communication(nfc)
Near field communication(nfc)Near field communication(nfc)
Near field communication(nfc)
Bhaumik Gagwani
 
Contactless NFC Tags For Mobile Loyalty
Contactless NFC Tags For Mobile LoyaltyContactless NFC Tags For Mobile Loyalty
Contactless NFC Tags For Mobile Loyalty
Merchant360, Inc.
 
NXP MIFARE Webinar: Innovation Road Map: Present Improved- Future Inside
NXP MIFARE Webinar: Innovation Road Map: Present Improved- Future Inside NXP MIFARE Webinar: Innovation Road Map: Present Improved- Future Inside
NXP MIFARE Webinar: Innovation Road Map: Present Improved- Future Inside
NXP MIFARE Team
 
Near field communication
Near field communicationNear field communication
Near field communication
Paramvir Singh
 

Recomendados

Electronic Access Control Security
Electronic Access Control SecurityElectronic Access Control Security
Electronic Access Control Security
Opposing Force S.r.l.
 
NFC & RFID on Android
NFC & RFID on AndroidNFC & RFID on Android
NFC & RFID on Android
todbotdotcom
 
Ultrabook Development Using Sensors - Intel AppLab Berlin
Ultrabook Development Using Sensors - Intel AppLab BerlinUltrabook Development Using Sensors - Intel AppLab Berlin
Ultrabook Development Using Sensors - Intel AppLab Berlin
Intel Developer Zone Community
 
Which new scenarios are enabled by Windows 10 for NFC, Bluetooth LE & Beacons?
Which new scenarios are enabled by Windows 10 for NFC, Bluetooth LE & Beacons?Which new scenarios are enabled by Windows 10 for NFC, Bluetooth LE & Beacons?
Which new scenarios are enabled by Windows 10 for NFC, Bluetooth LE & Beacons?
Andreas Jakl
 
Near field communication(nfc)
Near field communication(nfc)Near field communication(nfc)
Near field communication(nfc)
Bhaumik Gagwani
 
Contactless NFC Tags For Mobile Loyalty
Contactless NFC Tags For Mobile LoyaltyContactless NFC Tags For Mobile Loyalty
Contactless NFC Tags For Mobile Loyalty
Merchant360, Inc.
 
NXP MIFARE Webinar: Innovation Road Map: Present Improved- Future Inside
NXP MIFARE Webinar: Innovation Road Map: Present Improved- Future Inside NXP MIFARE Webinar: Innovation Road Map: Present Improved- Future Inside
NXP MIFARE Webinar: Innovation Road Map: Present Improved- Future Inside
NXP MIFARE Team
 
Near field communication
Near field communicationNear field communication
Near field communication
Paramvir Singh
 
ReiterNokia
ReiterNokiaReiterNokia
ReiterNokia
TUESDAY Business Network
 
Rfid security workshop v0.9 -nahuel_grisolia
Rfid security workshop v0.9 -nahuel_grisoliaRfid security workshop v0.9 -nahuel_grisolia
Rfid security workshop v0.9 -nahuel_grisolia
Positive Hack Days
 
Nfc
NfcNfc
Nfc
ducquoc_vn
 
NFC on Android - Near Field Communication
NFC on Android - Near Field CommunicationNFC on Android - Near Field Communication
NFC on Android - Near Field Communication
Sven Haiges
 
Automating Your Life: A look at NFC
Automating Your Life: A look at NFC Automating Your Life: A look at NFC
Automating Your Life: A look at NFC
Mitchell Muenster
 
NFC attacks
NFC attacksNFC attacks
NFC attacks
Peter Swedin
 
Hacking Smartcards & RFID
Hacking Smartcards & RFIDHacking Smartcards & RFID
Hacking Smartcards & RFID
Devnology
 
Introduction to nfc_v1_1_en
Introduction to nfc_v1_1_enIntroduction to nfc_v1_1_en
Introduction to nfc_v1_1_en
open-src
 
NFC for the Internet of Things
NFC for the Internet of ThingsNFC for the Internet of Things
NFC for the Internet of Things
NFC Forum
 
Global tag portfolio_2015
Global tag portfolio_2015Global tag portfolio_2015
Global tag portfolio_2015
Global Tag Srl
 
Rfid and the Mobile phone quiz
Rfid and the Mobile phone quizRfid and the Mobile phone quiz
Rfid and the Mobile phone quiz
Theodor Tolstoy
 
NFC TECHNOLOGY
NFC TECHNOLOGYNFC TECHNOLOGY
NFC TECHNOLOGY
GOPINATH MAHAKUD
 
Talk-ID Engels (1)
Talk-ID Engels (1)Talk-ID Engels (1)
Talk-ID Engels (1)
Richard van der Vegt
 
Wireless Patents for Standards & Applications 1Q 2015
Wireless Patents for Standards & Applications 1Q 2015Wireless Patents for Standards & Applications 1Q 2015
Wireless Patents for Standards & Applications 1Q 2015
Alex G. Lee, Ph.D. Esq. CLP
 
Mobifyer
MobifyerMobifyer
Mobifyer
Merchant360, Inc.
 
Windows Phone 8 NFC Quickstart
Windows Phone 8 NFC QuickstartWindows Phone 8 NFC Quickstart
Windows Phone 8 NFC Quickstart
Andreas Jakl
 
Embedded Systems Security News 2011/06
Embedded Systems Security News 2011/06Embedded Systems Security News 2011/06
Embedded Systems Security News 2011/06
AurMiana
 
Rfid ppt
Rfid pptRfid ppt
Rfid ppt
Sikihnamnagamani
 
Merchant360 SP4G(tm) NFC Coverage Walls Counters and Floors
Merchant360 SP4G(tm) NFC Coverage Walls Counters and FloorsMerchant360 SP4G(tm) NFC Coverage Walls Counters and Floors
Merchant360 SP4G(tm) NFC Coverage Walls Counters and Floors
Merchant360, Inc.
 
The User Experience of Near Field Communication
The User Experience of Near Field CommunicationThe User Experience of Near Field Communication
The User Experience of Near Field Communication
Memi Beltrame
 
Lp 2010 operation-theory
Lp 2010 operation-theoryLp 2010 operation-theory
Lp 2010 operation-theory
Nguyen Duc Anh
 
Rfid簡報
Rfid簡報Rfid簡報
Rfid簡報
Bill Chung
 

Más contenido relacionado

La actualidad más candente

Rfid security workshop v0.9 -nahuel_grisolia
Rfid security workshop v0.9 -nahuel_grisoliaRfid security workshop v0.9 -nahuel_grisolia
Rfid security workshop v0.9 -nahuel_grisolia
Positive Hack Days
 
Rfid and the Mobile phone quiz
Rfid and the Mobile phone quizRfid and the Mobile phone quiz
Rfid and the Mobile phone quiz
Theodor Tolstoy
 
Embedded Systems Security News 2011/06
Embedded Systems Security News 2011/06Embedded Systems Security News 2011/06
Embedded Systems Security News 2011/06
AurMiana
 
The User Experience of Near Field Communication
The User Experience of Near Field CommunicationThe User Experience of Near Field Communication
The User Experience of Near Field Communication
Memi Beltrame
 

La actualidad más candente (20)

ReiterNokia
ReiterNokiaReiterNokia
ReiterNokia
 
Rfid security workshop v0.9 -nahuel_grisolia
Rfid security workshop v0.9 -nahuel_grisoliaRfid security workshop v0.9 -nahuel_grisolia
Rfid security workshop v0.9 -nahuel_grisolia
 
Nfc
NfcNfc
Nfc
 
NFC on Android - Near Field Communication
NFC on Android - Near Field CommunicationNFC on Android - Near Field Communication
NFC on Android - Near Field Communication
 
Automating Your Life: A look at NFC
Automating Your Life: A look at NFC Automating Your Life: A look at NFC
Automating Your Life: A look at NFC
 
NFC attacks
NFC attacksNFC attacks
NFC attacks
 
Hacking Smartcards & RFID
Hacking Smartcards & RFIDHacking Smartcards & RFID
Hacking Smartcards & RFID
 
Introduction to nfc_v1_1_en
Introduction to nfc_v1_1_enIntroduction to nfc_v1_1_en
Introduction to nfc_v1_1_en
 
NFC for the Internet of Things
NFC for the Internet of ThingsNFC for the Internet of Things
NFC for the Internet of Things
 
Global tag portfolio_2015
Global tag portfolio_2015Global tag portfolio_2015
Global tag portfolio_2015
 
Rfid and the Mobile phone quiz
Rfid and the Mobile phone quizRfid and the Mobile phone quiz
Rfid and the Mobile phone quiz
 
NFC TECHNOLOGY
NFC TECHNOLOGYNFC TECHNOLOGY
NFC TECHNOLOGY
 
Talk-ID Engels (1)
Talk-ID Engels (1)Talk-ID Engels (1)
Talk-ID Engels (1)
 
Wireless Patents for Standards & Applications 1Q 2015
Wireless Patents for Standards & Applications 1Q 2015Wireless Patents for Standards & Applications 1Q 2015
Wireless Patents for Standards & Applications 1Q 2015
 
Mobifyer
MobifyerMobifyer
Mobifyer
 
Windows Phone 8 NFC Quickstart
Windows Phone 8 NFC QuickstartWindows Phone 8 NFC Quickstart
Windows Phone 8 NFC Quickstart
 
Embedded Systems Security News 2011/06
Embedded Systems Security News 2011/06Embedded Systems Security News 2011/06
Embedded Systems Security News 2011/06
 
Rfid ppt
Rfid pptRfid ppt
Rfid ppt
 
Merchant360 SP4G(tm) NFC Coverage Walls Counters and Floors
Merchant360 SP4G(tm) NFC Coverage Walls Counters and FloorsMerchant360 SP4G(tm) NFC Coverage Walls Counters and Floors
Merchant360 SP4G(tm) NFC Coverage Walls Counters and Floors
 
The User Experience of Near Field Communication
The User Experience of Near Field CommunicationThe User Experience of Near Field Communication
The User Experience of Near Field Communication
 

Destacado

Lp 2010 operation-theory
Lp 2010 operation-theoryLp 2010 operation-theory
Lp 2010 operation-theory
Nguyen Duc Anh
 
Trf7960 and trf7970 a comparison
Trf7960 and trf7970 a comparisonTrf7960 and trf7970 a comparison
Trf7960 and trf7970 a comparison
Hà Thanh
 
NFC technical presentation
NFC technical presentationNFC technical presentation
NFC technical presentation
Akshat Rohatgi
 
Need NFC RFID-Tomorrow Is Today in This Constant State of Innovation
Need NFC RFID-Tomorrow Is Today in This Constant State of InnovationNeed NFC RFID-Tomorrow Is Today in This Constant State of Innovation
Need NFC RFID-Tomorrow Is Today in This Constant State of Innovation
Hamed M. Sanogo
 

Destacado (20)

Lp 2010 operation-theory
Lp 2010 operation-theoryLp 2010 operation-theory
Lp 2010 operation-theory
 
Rfid簡報
Rfid簡報Rfid簡報
Rfid簡報
 
Civintec introduction 2015
Civintec introduction 2015Civintec introduction 2015
Civintec introduction 2015
 
NFC(Near Field Communication)
NFC(Near Field Communication)NFC(Near Field Communication)
NFC(Near Field Communication)
 
Trf7960 and trf7970 a comparison
Trf7960 and trf7970 a comparisonTrf7960 and trf7970 a comparison
Trf7960 and trf7970 a comparison
 
Contactless (Proximity) Smartcards
Contactless (Proximity) SmartcardsContactless (Proximity) Smartcards
Contactless (Proximity) Smartcards
 
NFC Technology
NFC TechnologyNFC Technology
NFC Technology
 
NEAR FIELD COMMUNICATION
NEAR FIELD COMMUNICATIONNEAR FIELD COMMUNICATION
NEAR FIELD COMMUNICATION
 
NFC technical presentation
NFC technical presentationNFC technical presentation
NFC technical presentation
 
Leverage RFID with NFC for Better ROI - by Steve McRae
Leverage RFID with NFC for Better ROI - by Steve McRaeLeverage RFID with NFC for Better ROI - by Steve McRae
Leverage RFID with NFC for Better ROI - by Steve McRae
 
Overview chip
Overview chipOverview chip
Overview chip
 
NFC- Standards and Security
NFC- Standards and SecurityNFC- Standards and Security
NFC- Standards and Security
 
Introducción a la tecnología NFC
Introducción a la tecnología NFCIntroducción a la tecnología NFC
Introducción a la tecnología NFC
 
Nfc technology
Nfc technologyNfc technology
Nfc technology
 
RFID and NFC Providing the last yards for IoT
RFID and NFC Providing the last yards for IoTRFID and NFC Providing the last yards for IoT
RFID and NFC Providing the last yards for IoT
 
Ask Contactless Terminals
Ask Contactless TerminalsAsk Contactless Terminals
Ask Contactless Terminals
 
Need NFC RFID-Tomorrow Is Today in This Constant State of Innovation
Need NFC RFID-Tomorrow Is Today in This Constant State of InnovationNeed NFC RFID-Tomorrow Is Today in This Constant State of Innovation
Need NFC RFID-Tomorrow Is Today in This Constant State of Innovation
 
NFC Basic Concepts
NFC Basic ConceptsNFC Basic Concepts
NFC Basic Concepts
 
Track 4 session 5 - st dev con 2016 - simplifying the setup and use of iot ...
Track 4 session 5 - st dev con 2016 - simplifying the setup and use of iot ...Track 4 session 5 - st dev con 2016 - simplifying the setup and use of iot ...
Track 4 session 5 - st dev con 2016 - simplifying the setup and use of iot ...
 
Near Field Communication (NFC)
Near Field Communication (NFC)Near Field Communication (NFC)
Near Field Communication (NFC)
 

Similar a Vanderhoof smartcard-roadmap

Vanderhoof smartcard-roadmap
Vanderhoof smartcard-roadmapVanderhoof smartcard-roadmap
Vanderhoof smartcard-roadmap
Hai Nguyen
 
SlingSecure USB Eng
SlingSecure USB EngSlingSecure USB Eng
SlingSecure USB Eng
SlingSecure Mobile Encryption
 
Hid smartid product_catalog_en
Hid smartid product_catalog_enHid smartid product_catalog_en
Hid smartid product_catalog_en
sanzen enterprises
 
Biometrics Technology1
Biometrics Technology1Biometrics Technology1
Biometrics Technology1
Gateway Business Solutions
 
SmartCard Forum 2009 - New trends in smart-cards technology
SmartCard Forum 2009 - New trends in smart-cards technologySmartCard Forum 2009 - New trends in smart-cards technology
SmartCard Forum 2009 - New trends in smart-cards technology
OKsystem
 
Futurex Slides at ACI Exchange 2013, Boston
Futurex Slides at ACI Exchange 2013, BostonFuturex Slides at ACI Exchange 2013, Boston
Futurex Slides at ACI Exchange 2013, Boston
Greg Stone
 
MATRIX Biometrics Technology New
MATRIX Biometrics Technology NewMATRIX Biometrics Technology New
MATRIX Biometrics Technology New
Gateway Business Solutions
 

Similar a Vanderhoof smartcard-roadmap (20)

Vanderhoof smartcard-roadmap
Vanderhoof smartcard-roadmapVanderhoof smartcard-roadmap
Vanderhoof smartcard-roadmap
 
Card reader
Card readerCard reader
Card reader
 
SlingSecure USB Eng
SlingSecure USB EngSlingSecure USB Eng
SlingSecure USB Eng
 
Hid smartid product_catalog_en
Hid smartid product_catalog_enHid smartid product_catalog_en
Hid smartid product_catalog_en
 
AET63 product presentation by Advanced Card Systems Ltd.
AET63 product presentation by Advanced Card Systems Ltd.AET63 product presentation by Advanced Card Systems Ltd.
AET63 product presentation by Advanced Card Systems Ltd.
 
Smartcards and Authentication Tokens
Smartcards and Authentication TokensSmartcards and Authentication Tokens
Smartcards and Authentication Tokens
 
Biometrics Technology1
Biometrics Technology1Biometrics Technology1
Biometrics Technology1
 
Ynamono Hs Lecture
Ynamono Hs LectureYnamono Hs Lecture
Ynamono Hs Lecture
 
4gfxs
4gfxs4gfxs
4gfxs
 
SmartCard Forum 2009 - New trends in smart-cards technology
SmartCard Forum 2009 - New trends in smart-cards technologySmartCard Forum 2009 - New trends in smart-cards technology
SmartCard Forum 2009 - New trends in smart-cards technology
 
AET60 product presentation by Advanced Card Systems Ltd.
AET60 product presentation by Advanced Card Systems Ltd.AET60 product presentation by Advanced Card Systems Ltd.
AET60 product presentation by Advanced Card Systems Ltd.
 
Smart card
Smart cardSmart card
Smart card
 
Access controls
Access controlsAccess controls
Access controls
 
smartcard-120830090352-phpapp02.pdf
smartcard-120830090352-phpapp02.pdfsmartcard-120830090352-phpapp02.pdf
smartcard-120830090352-phpapp02.pdf
 
smartcard-090723101806-phpapp01.pdf
smartcard-090723101806-phpapp01.pdfsmartcard-090723101806-phpapp01.pdf
smartcard-090723101806-phpapp01.pdf
 
Smart id's
Smart id'sSmart id's
Smart id's
 
jCardSim – Java Card is simple!
jCardSim – Java Card is simple!jCardSim – Java Card is simple!
jCardSim – Java Card is simple!
 
L1 - DAS Family
L1 - DAS FamilyL1 - DAS Family
L1 - DAS Family
 
Futurex Slides at ACI Exchange 2013, Boston
Futurex Slides at ACI Exchange 2013, BostonFuturex Slides at ACI Exchange 2013, Boston
Futurex Slides at ACI Exchange 2013, Boston
 
MATRIX Biometrics Technology New
MATRIX Biometrics Technology NewMATRIX Biometrics Technology New
MATRIX Biometrics Technology New
 

Más de Hai Nguyen

Sp 29 two_factor_auth_guide
Sp 29 two_factor_auth_guideSp 29 two_factor_auth_guide
Sp 29 two_factor_auth_guide
Hai Nguyen
 
Session 7 e_raja_kailar
Session 7 e_raja_kailarSession 7 e_raja_kailar
Session 7 e_raja_kailar
Hai Nguyen
 
Securing corporate assets_with_2_fa
Securing corporate assets_with_2_faSecuring corporate assets_with_2_fa
Securing corporate assets_with_2_fa
Hai Nguyen
 
Scc soft token datasheet
Scc soft token datasheetScc soft token datasheet
Scc soft token datasheet
Hai Nguyen
 
Rsa two factorauthentication
Rsa two factorauthenticationRsa two factorauthentication
Rsa two factorauthentication
Hai Nguyen
 
Quest defender provides_secure__affordable_two-factor_authentication_for_okla...
Quest defender provides_secure__affordable_two-factor_authentication_for_okla...Quest defender provides_secure__affordable_two-factor_authentication_for_okla...
Quest defender provides_secure__affordable_two-factor_authentication_for_okla...
Hai Nguyen
 
Pg 2 fa_tech_brief
Pg 2 fa_tech_briefPg 2 fa_tech_brief
Pg 2 fa_tech_brief
Hai Nguyen
 
Ouch 201211 en
Ouch 201211 enOuch 201211 en
Ouch 201211 en
Hai Nguyen
 
N ye c-rfp-two-factor-authentication
N ye c-rfp-two-factor-authenticationN ye c-rfp-two-factor-authentication
N ye c-rfp-two-factor-authentication
Hai Nguyen
 
Multiple credentials-in-the-enterprise
Multiple credentials-in-the-enterpriseMultiple credentials-in-the-enterprise
Multiple credentials-in-the-enterprise
Hai Nguyen
 
Mobile authentication
Mobile authenticationMobile authentication
Mobile authentication
Hai Nguyen
 
Ijcsi 9-4-2-457-462
Ijcsi 9-4-2-457-462Ijcsi 9-4-2-457-462
Ijcsi 9-4-2-457-462
Hai Nguyen
 
Identity cues two factor data sheet
Identity cues two factor data sheetIdentity cues two factor data sheet
Identity cues two factor data sheet
Hai Nguyen
 
Hotpin datasheet
Hotpin datasheetHotpin datasheet
Hotpin datasheet
Hai Nguyen
 
Ds netsuite-two-factor-authentication
Ds netsuite-two-factor-authenticationDs netsuite-two-factor-authentication
Ds netsuite-two-factor-authentication
Hai Nguyen
 
Datasheet two factor-authenticationx
Datasheet two factor-authenticationxDatasheet two factor-authenticationx
Datasheet two factor-authenticationx
Hai Nguyen
 
Cryptomathic white paper 2fa for banking
Cryptomathic white paper 2fa for bankingCryptomathic white paper 2fa for banking
Cryptomathic white paper 2fa for banking
Hai Nguyen
 

Más de Hai Nguyen (20)

Sp 29 two_factor_auth_guide
Sp 29 two_factor_auth_guideSp 29 two_factor_auth_guide
Sp 29 two_factor_auth_guide
 
Sms based otp
Sms based otpSms based otp
Sms based otp
 
Session 7 e_raja_kailar
Session 7 e_raja_kailarSession 7 e_raja_kailar
Session 7 e_raja_kailar
 
Securing corporate assets_with_2_fa
Securing corporate assets_with_2_faSecuring corporate assets_with_2_fa
Securing corporate assets_with_2_fa
 
Scc soft token datasheet
Scc soft token datasheetScc soft token datasheet
Scc soft token datasheet
 
Rsa two factorauthentication
Rsa two factorauthenticationRsa two factorauthentication
Rsa two factorauthentication
 
Quest defender provides_secure__affordable_two-factor_authentication_for_okla...
Quest defender provides_secure__affordable_two-factor_authentication_for_okla...Quest defender provides_secure__affordable_two-factor_authentication_for_okla...
Quest defender provides_secure__affordable_two-factor_authentication_for_okla...
 
Pg 2 fa_tech_brief
Pg 2 fa_tech_briefPg 2 fa_tech_brief
Pg 2 fa_tech_brief
 
Ouch 201211 en
Ouch 201211 enOuch 201211 en
Ouch 201211 en
 
N ye c-rfp-two-factor-authentication
N ye c-rfp-two-factor-authenticationN ye c-rfp-two-factor-authentication
N ye c-rfp-two-factor-authentication
 
Multiple credentials-in-the-enterprise
Multiple credentials-in-the-enterpriseMultiple credentials-in-the-enterprise
Multiple credentials-in-the-enterprise
 
Mobile authentication
Mobile authenticationMobile authentication
Mobile authentication
 
Ijcsi 9-4-2-457-462
Ijcsi 9-4-2-457-462Ijcsi 9-4-2-457-462
Ijcsi 9-4-2-457-462
 
Identity cues two factor data sheet
Identity cues two factor data sheetIdentity cues two factor data sheet
Identity cues two factor data sheet
 
Hotpin datasheet
Hotpin datasheetHotpin datasheet
Hotpin datasheet
 
Gambling
GamblingGambling
Gambling
 
Ds netsuite-two-factor-authentication
Ds netsuite-two-factor-authenticationDs netsuite-two-factor-authentication
Ds netsuite-two-factor-authentication
 
Datasheet two factor-authenticationx
Datasheet two factor-authenticationxDatasheet two factor-authenticationx
Datasheet two factor-authenticationx
 
Csd6059
Csd6059Csd6059
Csd6059
 
Cryptomathic white paper 2fa for banking
Cryptomathic white paper 2fa for bankingCryptomathic white paper 2fa for banking
Cryptomathic white paper 2fa for banking
 

Vanderhoof smartcard-roadmap

  • 1. Smart Card Alliance Smart Card Technology Roadmap for Secure ID Applications Randy Vanderhoof Executive Director Smart Card Alliance
  • 2. Agenda • Primary standards & specifications: – ISO 7816, PCSC, X509 – Open Card platforms (Javacard & Multos) • Security standards and their challenges – FIPS 140, Common Criteria • Specifications for interoperability – Global Platform – GSA specification • Industry Specifications – GSM (presented in another EI201 Session) – EMV • References for use with RFPs NIST Workshop: July 9, 2003 Smart Card Alliance
  • 3. Where do standards apply? ISO 7816 -Interface between the card & the terminal PC/SC -Common driver interface for all smart card readers connected under Windows X509 -Digital Signature format & associated certificates Open OS -In the smart card only, allows a common application development platform for in-card applications FIPS 140 -Tamper resistance of a cryptographic device Common Criteria -Threat evaluations and secure application protections GSC specification -Common way to find data files in cards & common application structures for US Government applications Global Platform -Card application management and issuance in the card as well as in the back-end EMV -Hardware specifications for smart cards and terminals -Multi application selection for smart cards -Credit & Debit: commands and related transaction flow NIST Workshop: July 9, 2003 Smart Card Alliance
  • 4. Smart Cards for Logical Security • PC/SC allows applications to be independent of the smart card reader (Windows drivers structure for hardware) • Microsoft Crypto API allows applications to use crypto services of various crypto devices • X.509 standard format for digital certificates Still no standard mechanism to launch an application when a given smart card is inserted in reader PC NIST Workshop: July 9, 2003 Smart Card Alliance
  • 5. New Yorker Magazine, July 5, 1993 New Yorker Magazine - 1993 THIS is the problem! NIST Workshop: July 9, 2003 Smart Card Alliance
  • 6. Issues for IT Security • Moving beyond user name and password • Managing internal and remote IT access • Developing a systems view of physical and logical security • Servicing beyond the network edge NIST Workshop: July 9, 2003 Smart Card Alliance
  • 7. Smart Cards for Physical Security • It is the “What We Own”, or “Token” of ID Systems • It is an intelligent, highly tamper resistant Token, allowing us to provide proof of who we are and the role we play • It is a Highly Secure, portable credential platform providing • On-card security functions & • Intelligent interactions with reader NIST Workshop: July 9, 2003 Smart Card Alliance
  • 8. Smart Card Role in an ID System • A personal database – Store and safeguard information on an individual basis – Local, portable storage of an individual’s private information • A personal firewall – Intelligent guardian of cardholder data – verifying that requestors are authorized to access information – Cardholder control of release of information • A personal terminal – Validation of the authenticity and trustworthiness of card readers or terminals – Strong validation of cardholder as rightful owner of the ID card NIST Workshop: July 9, 2003 Smart Card Alliance
  • 9. Personal ID Cards • Personal Identification Cards – Specific rights, privileges, and responsibilities – Driver’s license, membership card for an organization or club, credit card, border crossing document, badge for paid event, etc. • Secure Personal Identification Cards – Extension to Personal Identification Cards • Includes best security technologies available – smart cards and • Includes best security technologies available – smart cards and biometrics biometrics • Certifies identification and authentication of user and granted • Certifies identification and authentication of user and granted privileges privileges • Confirms authenticity of credential through use of security markings • Confirms authenticity of credential through use of security markings – Multiple applications on the same credential ID systems that require the highest degree of security are combining smart card and biometric technologies. NIST Workshop: July 9, 2003 Smart Card Alliance
  • 10. Technology Availability Readers and Reader ICs • Multiple providers of off the shelve reader products: – General purpose – Public transportation – Access Control – Retail industry • Integrated ICs supporting: – ISO14443 – ISO15693 – ISO14443 and ISO15693 NIST Workshop: July 9, 2003 Smart Card Alliance
  • 11. Contactless comparison chart 14443 15693 Proximity Features Standards ISO 14443 ISO 15693 None ISO 7810 ISO 7810 (de facto) Frequency 13.56 MHz 13.56 MHz 125 kHzFrequency Read range ~10 centimeters ~1 meter ~1 meter (~3-4 inches) (~3.3 feet) (~3.3 feet) Chip types supported Memory Memory Memory Wired logic Wired logic Microcontroller Encryption and authentication functions MIFARE, DES/3DES, AES, Supplier specific, Supplier specific RSA, ECC DES/3DES Memory capacity range 64 to 64K bytes 256 and 2K bytes 8 to 256 bytes Read/write ability Read/write Read/write Read only Data transfer rate (Kb/sec) Up to 106 (ISO) Up to 26.6 Up to 4 Up to 848 (available) Anti-collision Yes Yes Optional Card-to-reader authentication Challenge/Response Challenge/Response Password Hybrid card capability Yes Yes Yes Contact interface support Yes No No NIST Workshop: July 9, 2003 Smart Card Source: Smart Card Alliance – contactless whitepaper Alliance
  • 12. Challenges Facing the Secure Identification Industry? • When is visual authentication not enough? • The maturity of machine-readable technology with more standards-based choices at lower costs • The recognized need that exists to bind the identity of the cardholder to the card – how do you do it? • How do you increase security without sacrificing speed and convenience? • Managing scalable ID solutions that need multiple technologies with security and privacy from point of issuance to the network edge ...demands intelligent, secure, portable, rewritable platform NIST Workshop: July 9, 2003 Smart Card Alliance
  • 13. Enhanced Security Design Options • Graph Something You Have + Something You Know + Something You Are + + Something You Have + Something You Are Relative + Biometric Security Something You Have + Something You Know Level ID Card + Something You Know PIN, Password Solutions NIST Workshop: July 9, 2003 Smart Card Alliance
  • 14. Smart Badge Convergence Facility Contact Technology 125 KHz Management Proximity Smartcards Departments IT 13.56MHz Contactless Human Smartcards Resources Physical Access Logical Access Applications Digital Transit Cash Courtesy of Assa Abloy NIST Workshop: July 9, 2003 Smart Card Alliance
  • 15. Conclusion: What about Interoperability ? • There are different aspects to interoperability • Solutions available – Development in the cards have been simplified thanks to Java – Card edge interface and data formats are clarified with GSC-IS – Multi application selection is possible for cards and applications compatible with the Open Platform mechanism – Multi application card management with Global Platform • Issues still pending – Management of biometrics templates and storage options – Agreement on policy issues for cross-certification of credentials NIST Workshop: July 9, 2003 Smart Card Alliance