The SIM Turns 20. Dr. Klaus Vedder. Chairman ETSI TC SCP. 3rd ETSI Security WS Sophia Antipolis, France January 2008
|
|
- Erin Preston
- 5 years ago
- Views:
Transcription
1 The SIM Turns 20 Dr. Klaus Vedder Chairman ETSI TC SCP Footer text (edit in View : Header and Footer) 3rd ETSI Security WS Sophia Antipolis, France January 2008
2 World Class Standards ETSI TC SCP, the Smart Card Committee 20 Years of Dedication and Real-life Experience Founded in March 2000 as the successor of SMG9, the people which specified the most successful smart card application ever with over 3 billion subscribers using one or more of the 10 billion SIMs, USIMs and R-UIMs delivered to the market The Mission Create a series of specifications for a smart card platform, based on real-life (outside) requirements, on which other bodies can base their system specific applications to achieve compatibility between all applications resident on the smart card 3 rd ETSI Security WS 2
3 World Class Standards The SIM "A SIM is the physically secured module which contains the IMSI, an authentication algorithm, the authentication key and other (security related) information and functions. The basic function of the SIM is to authenticate the subscriber identity in order to prevent misuse of the MS (Mobile Station) and the network." From the report of SIMEG#1, The Hague, January 1988 Plug-in SIM carrier Telemig, Brazil, rd ETSI Security WS 3
4 The SIM in 1988 World Class Standards The ID-1 card used by Deutsche Telekom in their analogue network Option 1: "IC card" Option 2: "Fixed" Option 3: "Removable" Software SIM fully incorporated into the handset OS Rejected due to security concerns and less flexibility x x x x x vs 24 pin DIL x with 8 pins connected 3 rd ETSI Security WS 4
5 World Class Standards The SIM - A Removable Security Module The SIM: Providing the security issuer specific authentication algorithm issuer specific algorithm for cipher key generation security management specified by issuer The SIM: Providing universal plastic roaming keeping your identity when changing terminal or technology The SIM: Freeing the mobile of the burden of the subscription terminal does not contain any subscription data creating a global terminal market bigger choice for the customer through more competition The SIM became the driver of smart card technology 3 rd ETSI Security WS 5
6 Some (Early) Firsts World Class Standards The SIM - leading to a new generation of micro-controllers The world's first low voltage smart card specs (3V in 95; 1.8 Volt in 99) Memory requirements for smart cards were driven solely by GSM The Proactive SIM or the SIM leaving the role of the slave 1991, the first proposal: the SIM should refuse to work if the counter in the SIM for the Advice of Charge charges had an overflow Data Download Downloading data into the SIM and managing data fields in the SIM were already practised by the PCN operators in the early 90s Both features were merged in April 1996 to the SIM Application Toolkit the world's first global platform for secure Value Added Services GSM 11.11, 11.14, The world's first global (and most successful) smart card specification 3 rd ETSI Security WS 6
7 Smart Card Chip Evolution World Class Standards Bit CPU 7 kb ROM 3 kb EEPROM 128 Byte RAM Bit CPU 500 kb ROM 512kB EEPROM 16kB RAM or 400 kb Flash memory In addition: 1GB Flash 1996 CPU, RAM, ROM, EEPROM, Crypto-unit on a single piece of silicon Crypto-unit for digital signatures, ciphering and other security functions Structure ~1990: 1,5 µm; today: 0,15 µm; metallised surface Sensors for Low Voltage, Frequency, Passivation Layer, Light,.. Evaluation of HW and SW against Common Criteria (CC) 3 rd ETSI Security WS 7
8 The Chip Today World Class Standards Infineon Technologies SLE66CX322P with Active Shield against state of the art physical attacks: Top view (left) and underlying circuits (right) 3 rd ETSI Security WS 8
9 Module and Contacts World Class Standards VCC RST CLK AUX1 GND VPP I/O AUX2 Today s layout VCC RST CLK USB GND SWP I/O USB Standardised new layout 3 rd ETSI Security WS 9
10 World Class Standards SIM Security - a Function of Hardware and Software Calculating the secret key from hundreds of power consumption measurings using statistical methods (DPA attacks) Correlation on output S-box with usage of the right key Straightforward implementation Implementation with countermeasures 3 rd ETSI Security WS 10
11 SIM Broken? 1998: Comp (A3/A8) successfully attacked World Class Standards black box attack against the GSM-MoU example algorithm does not utilise any hardware or software property of the SIM attack against just one card, not against the system itself chosen plaintext-ciphertext attack approximately very specific challenges were then required to calculate the secret, subscription specific key Ki PIN has to be known or PIN-check disabled authentication counter with "automatic silencing" of the SIM is no longer a valid countermeasure only to challenges to calculate Ki needed now The answer is: NO The SIM has successfully stood the test of time 3 rd ETSI Security WS 11
12 World Class Standards Evolution of Functionality and Security Multimedia DRM & Smart Card Webserver C0mplexity of Security GSM Authentication SIM Application Toolkit Security Trustsector for NFC Interactive Mobile TV Java Card and 3G Security ISIM and further IP Security Authentication Personalisation Service platform Flexibility & Security Multiapplication High speed protocol 3 rd ETSI Security WS 12
13 World Class Standards Mobile TV - Additional Services Concept During the mobile TV service the subscriber can request additional services such as more information, ringtones or MP3 Security Music files are directly downloaded to the (Multi-Megabyte) (U)SIM Linked right objects will also be sent to the subscriber and used by the DRM client Conditional Access applet on (U)SIM to access Pay-TV content DRM client on (U)SIM to securely store rights for pictures, videos, sounds, OTA key exchange during mobile TV session OTA 3 rd ETSI Security WS 13
14 From the SIM to the UICC World Class Standards From a standardised application offering secure value added services to a true multi-application security platform providing both the service provider and the user with a wealth of opportunities 3 rd ETSI Security WS 14
15 World Class Standards The SIM - a Mono-application Smart Card SIM according to GSM Additional applications based on SIM Application Toolkit WIM as exception (own command set and triggered by WAP browser) Banking Location Browser SIM Application Toolkit (SAT) SIM-WIM SIM 3 rd ETSI Security WS 15
16 World Class Standards Harmonisation of IC Card Work - The New Role of SMG9 In March 2000 the ETSI Project Smart Card Platform (EP SCP) succeeds ETSI SMG9 to provide the smart card platform for all telecommunication systems Setting the pace of Global Wireless Communications. 3 rd ETSI Security WS 16
17 World Class Standards The UICC - the Multi-application Platform The UICC consists of (all) application independent functions and features clear separation of lower layers and applications up to 20 logical channels to run applications in parallel Specified by TC SCP USIM SIM (U)SAT Phonebook UICC Public Transport Ticketing Electr. Purse ID Fire walls between applications provided by smart card (USIM) supplier 3 rd ETSI Security WS 17
18 The Core Specification World Class Standards TS Physical and logical characteristics of the card / terminal interface the core specification which provides a multi-application platform with logical channels for smart cards - based on this platform a smart card application can be defined for any system specifies the lower layers of a smart card including the electrical and mechanical interface, the logical structure, the basic commands and the intrinsic security system Test specification published as TS ETSI SCP has published over thirty specifications Card Application Toolkit Administrative commands Java API Secure messaging Measurement of Electromagnetic Emission of SIM Cards 3 rd ETSI Security WS 18
19 World Class Standards Some of Last Years Achievements A total of 9 new specifications was approved USB Specification TS Smart cards; UICC-Terminal interface; Characteristics of the USB interface Single Wire Protocol (SWP) Specification TS Smart cards; UICC-CLF interface; Physical and data link layer characteristics Other new specifications concern USSM: UICC Security Service Module (TS a Smartcard Web Server (TS ) Internet Protocol Connectivity (TS ) test specification for the Java TM API (TS ) TEIs (lots of) 3 rd ETSI Security WS 19
20 High Speed World Class Standards The need for a high speed interface protocol Current UICC-Terminal interface protocol (T=0) based on IS 7816 is not appropriate for graphical user interface and bulk data USB the new high speed interface SCP Plenary selected in November 2006 after a long discussion USB to be the basis for the new high speed protocol other candidates: MMC and an advanced synchronous protocol the specification itself was approved in Bonn in May 2007 nominal speed of 12 megabit per second use of existing contact layout (C4 and C8) This will transform the SIM into a real Internet device and allow the efficient use of high capacity SIMs In the MB and GB range 3 rd ETSI Security WS 20
21 The Contactless USIM World Class Standards Mobile Phones High penetration Personal device Contactless Cards Ease-of-use, convenient Large and growing infrastructure perfect match The Single Wire Protocol (SWP) is the standardised I/F between (U)SIM and NFC controller Contactless applications on USIM (or mobile) Mobile Phone CPU Contactless applications on USIM, SE or mobile Mobile Phone CPU NFC chip for contactless transmission Secure Element (SE) 3 rd ETSI Security WS 21
22 A New Contactless World World Class Standards The contactless interface for the (U)SIM will create a wealth of new opportunities Mobile phone works like a contactless card for payment, ticketing, access control,. Mobile phone works as a card reader for the (U)SIM Management of Applications Secure environment on the (U)SIM dedicated to different service providers such as banks, public transport companies,. Encapsulated storage area (Trustsector ) on the (U)SIM for secure execution of applications OTA administration such as activation/de-activation or personalisation of the individual Trustsectors via a Trusted Third Party (TTP) TTP can act as a trusted estate agent and a broker for the memory of the (U)SIM card provided by the operator - (U)SIM becomes a piece of real estate 3 rd ETSI Security WS 22
23 The Gigabyte SIM Web Server and GB SIM World Class Standards First SIMs with 1GB additional memory now used in trials Branding of the device - when inserted the operator branding will be downloaded to the handset and used Storage of Operator specific MMI for the handset, parameter settings Secure DRM, pre-loaded multi-media content SIM Web Server Web Server application on (U)SIM utilises execution environment of mobile services Easy to use GUI for services Web look and feel of information loaded on the (U)SIM From SIM Toolkit to SIM Web Server : from MS DOS TM to Windows TM (U)SIM is the secure interface to the Internet for the MS A use case: Web Pages with FAQ to save calls to the Operator hotline 3 rd ETSI Security WS 23
24 World Class Standards SCP: Current and Future Work Host Controller Interface (HCI) the software for the SWP currently two solutions ready for approval: a multi host version and a point to point solution M2M machine to machine is going to be a major topic this year includes meter readings and telematics Definition of Requirements for the new Release 8 and lots and lots of other things 3 rd ETSI Security WS 24
25 World Class Standards ETSI SCP website Next SCP Requirement WG / Plenary Meeting This week here at ETSI 3 rd ETSI Security WS 25
26 World Class Standards Dr. Klaus Vedder Head of Telecommunications Giesecke & Devrient GmbH Prinzregentenstr Munich Germany 3 rd ETSI Security WS 26
27 The Vision World Class Standards To turn today's mobile phone into a multipurpose terminal, personal security device, and lifestyle tool by exploiting the High Speed Protocol and the contactless communication channel of the UICC. 3 rd ETSI Security WS 27
2 nd ETSI Security Workshop: Future Security. Smart Cards. Dr. Klaus Vedder. Chairman ETSI TC SCP Group Senior VP, Giesecke & Devrient
2 nd ETSI Security Workshop: Future Security Smart Cards Dr. Klaus Vedder Chairman ETSI TC SCP Group Senior VP, Giesecke & Devrient ETSI TC SCP, the Smart Card Committee 19 Years of Dedication and Real-life
More informationSIM Evolution. Klaus Vedder. Presented by: 10 July 2018 ETSI th Sigos Conference
SIM Evolution Presented by: Klaus Vedder For: 20 th Sigos Conference 10 July 2018 ETSI 2018 The Subscriber Identity Module in 1988 "A SIM is the physically secured module which contains the IMSI, an authentication
More informationThe UICC. Recent Work of SCP and Related Security Aspects. Dr. Klaus Vedder Chairman ETSI TC SCP
The UICC Recent Work of SCP and Related Security Aspects Dr. Klaus Vedder Chairman ETSI TC SCP Footer text (edit in View : Header and Footer) 5 th ETSI Security WS Sophia Antipolis, France 20-22 January
More informationThe UICC. Recent Work of ETSI TC Smart Card Platform. Dr. Klaus Vedder Chairman ETSI TC SCP
Dr. Klaus Vedder Chairman ETSI TC SCP The UICC Recent Work of ETSI TC Smart Card Platform 8th ETSI Security Workshop, Sophia Antipolis, France, 16-17 January 2012 ETSI 2012. All rights reserved SIMs, USIMs,
More informationGSM Association (GSMA) Mobile Ticketing Initiative
GSM Association (GSMA) Mobile Ticketing Initiative Sue Monahan Director - GSMA NA Clif Campbell Lead Member of Technical Staff AT&T April 2010 Content GSM World Today GSMA Overview GSMA M-Ticketing Initiative
More informationETSI TS V7.1.0 ( )
TS 102 266 V7.1.0 (2006-01) Technical Specification Smart Cards; USSM: UICC Security Service Module; Stage 1 2 TS 102 266 V7.1.0 (2006-01) Reference RTS/SCP-R0002r1 Keywords smart card, security 650 Route
More informationSMART CARDS. Miguel Monteiro FEUP / DEI
SMART CARDS Miguel Monteiro apm@fe.up.pt FEUP / DEI WHAT IS A SMART CARD Distinguishable characteristics Can participate in automated electronic transactions Used primarily to add security Not easily forged
More informationSmart Card Operating Systems Overview and Trends
Smart Card Operating Systems Overview and Trends Pierre.Paradinas@gemplus.com Gemplus Labs Smart card A piece of plastic with a chip that contains: CPU, memories and programs SC is your personal information
More informationMicrocontrollers. Claude Dardanne Executive Vice President, General Manager, Microcontrollers, Memory & Secure MCU Group.
Microcontrollers Claude Dardanne Executive Vice President, General Manager, Microcontrollers, Memory & Secure MCU Group Francois Guibert Executive Vice President, President, Greater China and South Asia
More informationDr. Char-Shin Miou Chunghwa Telecom. Co. April 7, 2011
Mobile Security Application Current Status Overview in Taiwan Dr. Char-Shin Miou Chunghwa Telecom. Co. April 7, 2011 Content Problems and Current Status Approach for the Mobile Security Application Mobile
More informationDate: 13 June Location: Sophia Antipolis. Integrating the SIM. Dr. Adrian Escott. Qualcomm Technologies, Inc.
Date: 13 June 2018 @qualcomm Location: Sophia Antipolis Integrating the SIM Dr. Adrian Escott Qualcomm Technologies, Inc. Agenda 1 2 3 4 5 6 Path to isim isim Size benefit Hardware Architecture Certification
More informationDie Zukunft des M-Payment The future of m-payment NFC. Andreas Johne. Düsseldorf, 25. Januar 2008
Die Zukunft des M-Payment Düsseldorf, 25. Januar 2008 Andreas Johne Agenda Brief company presentation M-payment with Near Field Communication Success stories with Page 2 Giesecke & Devrient From Printing
More informationThe Future of Smart Cards: Bigger, Faster and More Secure
The Future of Smart Cards: Bigger, Faster and More Secure Joerg Borchert, Vice President, Secure Mobile Solutions July 16, 2003 Page 1 N e v e r s t o p t h i n k i n g. Infineon Technologies: Overview
More informationSecure Internet Connectivity with the Internet Smart Card
Secure Internet Connectivity with the Internet Smart Card 3 rd ETSI Security Workshop Dr. Walter HINZ ETSI 2007. All rights reserved 3rd ETSI Security Workshop - Sophia-Antipolis, 15-16 January 2008 Agenda
More informationHitachi Releases Smart Card Microcontroller AE45X series Equipped with Contact/Contactless Dual Interface in a Single Chip
Hitachi Releases Smart Card Microcontroller AE45X series Equipped with Contact/Contactless Dual Interface in a Single Chip Suitable for multi-purpose multi-application smart cards in the fields such as
More informationSecure Over-The-Air Services in NFC Ecosystems
Secure Over-The-Air Services in NFC Ecosystems Sirpa Nordlund Venyon Hagenberg March 20th, 2007 Contents of the presentation 1. Building up NFC ecosystem 2. Trusted third party and value proposition 3.
More informationSIM Smart Card Overview
SIM Smart Card Overview Smart Card Introduction 2 Java Card Java Card Based SIM Development Environment Service Examples 3 Smart Cards? A smart card is a plastic card that contains an embedded integrated
More informationWLANSIM a wireless IP networked UICC ETSI Workshop 4-5 june 2008, Sophia Antipolis Steinar Brede. Research Manager Telenor R&I
A couple of M2M activities: WLANSIM a wireless IP networked UICC ETSI Workshop 4-5 june 2008, Sophia Antipolis Steinar Brede. Research Manager 1 GSM - SMS SIM card developments GSM BIP (High speed) Proffnett
More informationSmart cards are made of plastic, usually polyvinyl chloride. The card may embed a hologram to prevent counterfeiting. Smart cards provide strong
Smart Cards By: Definition Smart cards, chip card, or integrated circuit card (ICC) are card with embedded integrated circuits that contain a computer chip capable of carrying out a cryptographic protocol.
More informationTelenor SIM specification General Purpose Telematics (GPT) Profile no: 001
Page 1 (12) Telenor SIM specification General Purpose Telematics (GPT) Profile no: 001 Page 2 (12) Contents 1. Template revisions... 3 2. Customer revisions... 3 3. General... 3 4. Terminology... 3 5.
More informationGemalto: a leader in Digital security. L. Manteau, Gemalto Industrial relations
Gemalto: a leader in Digital security L. Manteau, Gemalto Industrial relations ETSI workshop: Standards & Interoperability Sophia-Antipolis, Oct 23-24, 2006 Gemalto s presence worldwide Gemalto was launched
More informationDesign and Implementation of a Mobile Transactions Client System: Secure UICC Mobile Wallet
Design and Implementation of a Mobile Transactions Client System: Secure UICC Mobile Wallet Hao Zhao, Sead Muftic School of Information and Communication Technologies (ICT) Royal Institute of Technology
More informationSmartcards. ISO 7816 & smartcard operating systems. Erik Poll Digital Security Radboud University Nijmegen
Smartcards ISO 7816 & smartcard operating systems Erik Poll Digital Security Radboud University Nijmegen 1 Standard for contact smartcards ISO7816 7816-1 Physical characteristics 7816-2 Dimension & size
More informationContents. Preface. Acknowledgments. xxiii. List of Acronyms i xxv
Preface xv Acknowledgments. xxiii List of Acronyms i xxv 1 Executive Summary 1 1.1 Towards NFC Era 2 1.1.1 Ubiquitous Computing 2 1.1.2 Mobile Phones 3 1.1.3 Technological Motivation of NFC 4 1.1.4 Wireless
More informationVineet Kumar Sharma ( ) Ankit Agrawal ( )
- A new approach to hardware security analysis - Copy Protection in Modern Microcontrollers Vineet Kumar Sharma (200601093) Ankit Agrawal (200601003) Presentation Flow Why a need of Secure of Microcontrollers?
More informationSecure Elements 101. Sree Swaminathan Director Product Development, First Data
Secure Elements 101 Sree Swaminathan Director Product Development, First Data Secure Elements Secure Element is a tamper resistant Smart Card chip that facilitates the secure storage and transaction of
More informationSTMicroelectronics Payment Solutions. December 6 th 2012
STMicroelectronics Payment Solutions December 6 th 2012 GP Microcontrollers General Purpose 8-bit and 32-bit MCUs Automotive 8-bit MCUs Microcontrollers in MMS Group 2 Memories Serial EEPROM RF memories
More informationOpen Mobile API The enabler of Mobile ID solutions. Alexander Summerer, Giesecke & Devrient 30th Oct. 2014
The enabler of solutions Alexander Summerer, Giesecke & Devrient 30th Oct. 2014 SIMalliance Allows usage of Secure Elements in Mobile Devices Designed for Open Handset OS platforms Common API for Apps
More informationPreface. Structure of the Book
When the first edition of this book was published back in 2008, the scope was anything to do with smart cards and security tokens in the widest sense. The aim was in fact to provide a complete story, looking
More informationEnabler Release Definition for Smartcard-Web-Server
Enabler Release Definition for Smartcard-Web-Server Candidate Version 1.0 09 Feb 2007 Open Mobile Alliance OMA-ERELD-Smartcard_Web_Server-V1_0-20070209-C OMA-ERELD-Smartcard_Web_Server-V1_0-20070209-C
More information3GPP TS V ( )
TS 31.116 V11.0.0 (2012-09) Technical Specification 3rd Generation Partnership Project; Technical Specification Group Core Network and Terminals; Remote APDU Structure for (U)SIM Toolkit applications (Release
More informationNIS Platform Working Group 3 Individuals Digital Rights and Capabilities. Dr. Gisela Meister April
NIS Platform Working Group 3 Individuals Digital Rights and Capabilities Dr. Gisela Meister April 08-2014 AoI 1: Individuals Digital Rights and Capabilities AoI 1 s vision is that individuals needs and
More informationSmart cards and smart objects communication protocols: Looking to the future. ABSTRACT KEYWORDS
Smart cards and smart objects communication protocols: Looking to the future. Denis PRACA Hardware research manager, Gemplus research Lab, France Anne-Marie PRADEN Silicon design program manager, Gemplus
More informationIFX Day Secure Mobile Solutions. Dominik Bilo CMO Secure Mobile Solutions Business Group. November 16, Munich. IFX Day 2004.
November 16, 2004 - Munich Secure Mobile Solutions Slide 1 Dominik Bilo CMO Secure Mobile Solutions Business Group Disclaimer Please note that while you are reviewing this information, this presentation
More informationAdvances with Osaifu-Keitai Starting Services Supporting NFC (Type A/B) on NTT DOCOMO UIM Cards. contactless IC cards that is being adopted
Type A/B GP TSM Advances with Osaifu-Keitai Starting Services Supporting NFC (Type A/B) on NTT DOCOMO UIM Cards The Osaifu-Keitai service currently being provided in Japan is based on the FeliCa *1 mobile
More informationThe Mobile Finnish Identity Certificate
The Mobile Finnish Identity Certificate Dr.Tech. Göran Pulkkis and BSc (Eng.) Jonny Karlsson ARCADA Polytechnic Helsinki Finland PRESENTATION OUTLINE Finnish Electronic Identity (FINEID) as a Smartcard
More informationPractical Attack Scenarios on Secure Element-enabled Mobile Devices
Practical Attack Scenarios on Secure Element-enabled Mobile Devices Michael Roland University it of Applied Sciences Upper Austria,, Austria 4 th International Workshop on Near Field Communication 13 March
More informationMobile Station Execution Environment (MExE( MExE) Developing web applications for PDAs and Cellphones. WAP (Wireless Application Protocol)
Developing web applications for PDAs and Cellphones Mobile Station Execution Environment (MExE( MExE) MExE is a standard for defining various levels of wireless communication These levels are called classmarks
More informationSecure Element APIs and Practical Attacks on Secure Element-enabled Mobile Devices
Secure Element APIs and Practical Attacks on Secure Element-enabled Mobile Devices Michael Roland University it of Applied Sciences Upper Austria,, Austria WIMA 2012 NFC Research Track 11 April 2012, Monaco
More informationThe Open Application Platform for Secure Elements.
The Open Application Platform for Secure Elements. Java Card enables secure elements, such as smart cards and other tamper-resistant security chips, to host applications, called applets, which employ Java
More informationEUROPEAN ETS TELECOMMUNICATION September 1994 STANDARD
EUROPEAN ETS 300 509 TELECOMMUNICATION September 1994 STANDARD Source: ETSI TC-SMG Reference: GSM 02.17 ICS: 33.060.20 Key words: European digital cellular communications system, Global System for Mobile
More informationConsidering the Security of Mobile Commerce and Banking. Professor Keith Mayes Information Security Group ACE-CSR
Considering the Security of Mobile Commerce and Banking Professor Keith Mayes Information Security Group ACE-CSR Information Security Group (ISG) Established 1992 17 Full-time Academics, 8+ Research Assistants
More informationWhat s In Your e-wallet? Using ARM IP to Enable Security in Mobile Phones. Richard Phelan Media Processing Division TrustZone Security Technology
What s In Your e-wallet? Using ARM IP to Enable Security in Mobile Phones Richard Phelan Media Processing Division TrustZone Security Technology 1 What s In Your Wallet Today? Some cards A bus ticket A
More informationSecurity & Chip Card ICs SLE 55R04. Intelligent 770 Byte EEPROM with Contactless Interface complying to ISO/IEC Type A and Security Logic
Security & Chip Card ICs SLE 55R04 Intelligent 770 Byte EEPROM with Contactless Interface complying to ISO/IEC 14443 Type A and Security Logic Short Product Information January 2001 Short Product Information
More informationSIDE CHANNEL ATTACKS AGAINST IOS CRYPTO LIBRARIES AND MORE DR. NAJWA AARAJ HACK IN THE BOX 13 APRIL 2017
SIDE CHANNEL ATTACKS AGAINST IOS CRYPTO LIBRARIES AND MORE DR. NAJWA AARAJ HACK IN THE BOX 13 APRIL 2017 WHAT WE DO What we do Robust and Efficient Cryptographic Protocols Research in Cryptography and
More informationETSI TS V7.1.1 ( )
TS 100 922 V7.1.1 (1999-07) Technical Specification Digital cellular telecommunications system (Phase 2+); Subscriber Identity Modules (SIM); Functional characteristics (GSM 02.17 version 7.1.1 Release
More informationIDCore. Flexible, Trusted Open Platform. financial services & retail. Government. telecommunications. transport. Alexandra Miller
IDCore Flexible, Trusted Open Platform financial services & retail enterprise > SOLUTION Government telecommunications transport Trusted Open Platform Java Card Alexandra Miller >network identity >smart
More information3GPP TS V ( )
TS 31.122 V11.0.0 (2012-09) Technical Specification 3 rd Generation Partnership Project; Technical Specification Group Core Network and Terminals; Universal Subscriber Identity Module (USIM) conformance
More informationSmart Card ICs. Dr. Kaushik Saha. STMicroelectronics. CSME 2002 (Chandigarh, India) STMicroelectronics
Smart Card ICs Dr. Kaushik Saha STMicroelectronics CSME 2002 (Chandigarh, India) STMicroelectronics ST Products & Solutions Agenda Smart cards market overview Issues in the Smartcard Business ST Solutions
More informationSEPA goes Mobile Dr. Marijke De Soete ETSI Security Workshop January 2011 Sophia Antipolis, France
www.europeanpaymentscouncil.eu SEPA goes Mobile Dr. Marijke De Soete ETSI Security Workshop 2011 19-20 January 2011 Sophia Antipolis, France Global mobile subscribers (millions) Mobile phone: some statistics
More informationWHAT FUTURE FOR CONTACTLESS CARD SECURITY?
WHAT FUTURE FOR CONTACTLESS CARD SECURITY? Alain Vazquez (alain.vazquez@louveciennes.sema.slb.com) 1/27 AV Contents Major contactless features : summary Contactless major constraints Major security issues
More informationETSI TS V8.0.0 ( ) Technical Specification
TS 102 224 V8.0.0 (2008-10) Technical Specification Smart Cards; Security mechanisms for UICC based Applications - Functional requirements (Release 8) 2 TS 102 224 V8.0.0 (2008-10) Reference RTS/SCP-R0282v800
More informationChip Card & Security ICs SLE Intelligent 1024 Byte EEPROM with Write Protection and Programmable Security Code
Chip Card & Security ICs SLE 5528 Intelligent 1024 Byte EEPROM with Write Protection and Programmable Security Code Short Product Information May 2007 Short Product Information Revision History: Current
More informationMobile NFC Services Opportunities & Challenges. NGUYEN Anh Ton VNTelecom Conference 31/10/2010
Mobile NFC Services Opportunities & Challenges NGUYEN Anh Ton VNTelecom Conference 31/10/2010 Agenda 1. Introduction 2. Mobile NFC Overview 3. NFC Ecosystem Key Findings 4. Main NFC challenges 5. What
More information3GPP TS V9.1.0 ( )
TS 31.101 V9.1.0 (2010-06) Technical Specification 3rd Generation Partnership Project; Technical Specification Group Core Network and Terminals; UICC-terminal interface; Physical and logical characteristics
More informationAcademic Day on Mobile Solutions for Senegal June 7, 8 and 9 - Dakar. SIM Card, SIM based Applications & Solutions
Academic Day on Mobile Solutions for Senegal 2010 - June 7, 8 and 9 - Dakar SIM Card, SIM based Applications & Solutions June 8 th, 2010 Dakar, Senegal Presented by: Assane KEBE Mobile Technical Consultant
More informationSustaining profitable growth in Mobile
Sustaining profitable growth in Mobile Mario Rivas Executive Vice President Communications Businesses Philips Semiconductors Financial Analysts Day 2004 Agenda Update Communications businesses Nexperia
More informationThe NFC Forum NFC Technology for Developers
The NFC Forum NFC Technology for Developers 7 October 2008 Audio Tips All audio comes through your computer Use your computer mixer to adjust master volume Use Webcast reader audio slide top center of
More informationETSI TS V6.1.0 ( )
TS 102 224 V6.1.0 (2004-12) Technical Specification Smart cards; Security mechanisms for UICC based Applications - Functional requirements (Release 6) 2 TS 102 224 V6.1.0 (2004-12) Reference RTS/SCP-R0282r1
More informationETSI TS V9.1.0 ( ) Technical Specification
TS 102 705 V9.1.0 (2011-01) Technical Specification Smart Cards; UICC Application Programming Interface for Java Card for Contactless Applications (Release 9) 2 TS 102 705 V9.1.0 (2011-01) Reference RTS/SCP-THCIAPIv910
More informationCALYPSO FUNCTIONAL SPECIFICATION. CNA Calypso rev 3.1 Applet Presentation
1 / 13 CALYPSO FUNCTIONAL SPECIFICATION VERSION The information contained in this document is public. (This document may be accessed at http://www.calypsonet-asso.org/) 2014. All rights reserved. The authors
More informationSTMicroelectronics NATIXIS Payment Solutions Conference
STMicroelectronics NATIXIS Payment Solutions Conference December, 9 th 2014 Marie-France FLORENTIN MMS Group Vice President Secure MCU General Manager GP Microcontrollers General Purpose 8-bit and 32-bit
More informationSmart Payments. Generating a seamless experience in a digital world.
Smart Payments Generating a seamless experience in a digital world www.infineon.com/payment Trends Rising need for security The trends highlighted opposite are heightening the need for security and performance,
More informationChapter 6. Stream Cipher Design
Chapter 6. Stream Cipher Design 1 Model for Secure Communications and Attacks 2 Shannon's Theory on Perfect Secrecy and Product Cryptosystems (self reading, Stinson s book, or Chapters 1 and 2 in Stalling's
More informationM2MD Communications Gateway: fast, secure, efficient
Solution Brief M2MD Communications Gateway: fast, secure, efficient G+D Mobile Security and M2MD enable automakers to improve user experience through fast, secure and efficient cellular automotive connectivity.
More informationETSI TS V ( )
TS 131 116 V14.0.0 (2017-04) TECHNICAL SPECIFICATION Digital cellular telecommunications system (Phase 2+) (GSM); Universal Mobile Telecommunications System (UMTS); LTE; Remote APDU Structure for (U)SIM
More informationLeveraging the full potential of NFC to reinvent physical access control. Friday seminar,
Leveraging the full potential of NFC to reinvent physical access control Wireless@KTH Friday seminar, 2012-08-31 NFC (Near Field Communication) A new radio communication technology for mobile phones Uses
More informationECRYPT II Workshop on Physical Attacks November 27 th, Graz, Austria. Stefan Mangard.
Building Secure Hardware ECRYPT II Workshop on Physical Attacks November 27 th, Graz, Austria Stefan Mangard Infineon Technologies, Munich, Germany Stefan.Mangard@infineon.com Outline Assets and Requirements
More informationChip Card & Security ICs SLE Intelligent 256-Byte EEPROM with Write Protection function and Programmable Security Code
Chip Card & Security ICs SLE 5542 Intelligent 256-Byte EEPROM with Write Protection function and Programmable Security Code Short Product Information May 2006 Short Product Information Revision History:
More informationGLOBAL SYSTEM FOR MOBILE COMMUNICATION (2) ETI2511 Friday, 31 March 2017
GLOBAL SYSTEM FOR MOBILE COMMUNICATION (2) ETI2511 Friday, 31 March 2017 1 SYLLABUS GSM General architecture and interfaces of cellular system and the PSTN and Internet networks: BTS, MSC, Internetworking,
More informationEnabler Test Report Smartcard Web Server v1.0. OMA TestFest (January 2008) Version 1st February 2008
Enabler Test Report Smartcard Web Server v1.0 OMA TestFest (January 2008) Version 1st February 2008 Open Mobile Alliance OMA-Enabler_Test_Report-SCWS-V1_0-20080201 This document is a work in process and
More information3GPP TS V ( )
TS 24.341 V12.6.0 (2014-12) Technical Specification 3rd Generation Partnership Project; Technical Specification Group Core Network and Terminals; Support of SMS over IP networks; Stage 3 (Release 12) The
More information... Lecture 8. Smartcards and Related Application Infrastructures. Mobile Business I (WS 2017/18) Prof. Dr. Kai Rannenberg
Lecture 8 Smartcards and Related Application Infrastructures Mobile Business I (WS 2017/18) Prof. Dr. Kai Rannenberg Deutsche Telekom Chair of Mobile Business & Multilateral Security Johann Wolfgang Goethe
More information3GPP TS V6.4.0 ( )
TS 22.234 V6.4.0 (2006-06) Technical Specification 3rd Generation Partnership Project; Technical Specification Group Services and System Aspects; Requirements on system to Wireless Local Area Network (WLAN)
More informationGrcard SIM Card. Specification
Grcard SIM Card Specification Shenzhen Grcard Smart Card Co.Ltd 2008.06.25 1 1. About Grcard Shenzhen GuangRui Smart Card Co.,Ltd(Grcard) is located in 5/F,West,B2 Building,Anle industrial district,,hangcheng
More informationTechnical Specification Smart Cards; UICC Application Programming Interface for Java Card for Contactless Applications (Release 10)
TS 102 705 V10.1.0 (2013-09) Technical Specification Smart Cards; UICC Application Programming Interface for Java Card for Contactless Applications (Release 10) 2 TS 102 705 V10.1.0 (2013-09) Reference
More informationSecurity & Chip Card ICs SLE 4436/36E
Security & Chip Card ICs SLE 4436/36E Intelligent 221 Bit EEPROM Counter for > 20000 Units with Security Logic and High Security Authentication Short Product Information 07.99 6KRUW3URGXFW,QIRUPDWLRQ 5HYLVLRQ+LVWRU\
More informationNew Embedded NVM architectures
New Embedded NVM architectures for Secure & Low Power Microcontrollers Jean DEVIN, Bruno LECONTE Microcontrollers, Memories & Smartcard Group STMicroelectronics 11 th LETI Annual review, June 24th, 2009
More informationGSMA Embedded SIM Specification Remote SIM Provisioning for M2M. A single, common and global specification to accelerate growth in M2M
GSMA Embedded SIM Specification Remote SIM Provisioning for M2M Purpose of this Reference Messaging Pack Appropriate slides may be selected to be used for within different presentations for multiple audiences
More informationSecurity in NFC Readers
Security in Readers Public Content and security, a different kind of wireless Under the hood of based systems Enhancing the security of an architecture Secure data exchange Information security goals Cryptographic
More informationSecure Application Trend in Smartphones. STMicroelectronics November 2017
Secure Application Trend in Smartphones STMicroelectronics November 2017 A global semiconductor leader 2016 revenues of $6.97B Listed: NYSE, Euronext Paris and Borsa Italiana, Milan Who We Are 2 Research
More informationETSI TS V ( )
TS 121 111 V12.0.0 (2014-10) TECHNICAL SPECIFICATION Universal Mobile Telecommunications System (UMTS); LTE; USIM and IC card requirements (3GPP TS 21.111 version 12.0.0 Release 12) 1 TS 121 111 V12.0.0
More informationNFC is the double click in the internet of the things
NFC is the double click in the internet of the things Name Frank Graeber, Product Manager NFC Subject 3rd Workshop on RFID Systems and Technologies Date 12.06.2007 Content NFC Introduction NFC Technology
More information3GPP TS V4.0.0 ( )
TS 35.205 V4.0.0 (2001-04) Technical Specification 3rd Generation Partnership Project; Technical Specification Group Services and System Aspects; 3G Security; Specification of the MILENAGE Algorithm Set:
More informationPRESENTED FOR INFORMATION
ETSI TC SMG Tdoc SMG 072 / 98 Sophia Antipolis, March 16-20, 1998 Agenda Item: 6.1 GLOBAL SYSTEM FOR MOBILE COMMUNICATIONS R Digital cellular telecommunications system (Phase 2+); Mobile Station Application
More informationSecurity Strategy for Mobile ID GSMA Mobile Connect Summit
Security Strategy for Mobile ID GSMA Mobile Connect Summit Singapore, 22 nd November 2017 G+D Mobile Security G+D Mobile Security: Managing Billions of Connected Digital Identities Today 660 million contactless
More informationSecuring IoT devices with STM32 & STSAFE Products family. Fabrice Gendreau Secure MCUs Marketing & Application Managers EMEA Region
Securing IoT devices with STM32 & STSAFE Products family Fabrice Gendreau Secure MCUs Marketing & Application Managers EMEA Region 2 The leading provider of products and solutions for Smart Driving and
More informationMobile Prepaid: The Future is Now. Mary Carol Harris Visa Europe
Mobile Prepaid: The Future is Now Mary Carol Harris Mobile in context 4.8 billion 3.5 billion 1000 every minute Youth have never known life without a phone Payment via mobile phone discussed spontaneously
More informationNFC embedded microsd smart Card - Mobile ticketing opportunities in Transit
NFC embedded microsd smart Card - Mobile ticketing opportunities in Transit July 2017 By: www.smk-logomotion.com Introduction Presentation is describing NFC enabled microsd smart card (LGM Card) Technical
More informationACR38T-D1. Smart Card Reader. Technical Specifications. Subject to change without prior notice
ACR38T-D1 Smart Card Reader Technical Specifications Subject to change without prior notice Table of Contents 1.0. Introduction... 3 1.1. Smart Card Reader... 3 1.2. Ease of Integration... 3 2.0. Features...
More informationSIDE CHANNEL ANALYSIS : LOW COST PLATFORM. ETSI SECURITY WEEK Driss ABOULKASSIM Jacques FOURNIERI
SIDE CHANNEL ANALYSIS : LOW COST PLATFORM ETSI SECURITY WEEK Driss ABOULKASSIM Jacques FOURNIERI THE CEA Military Applications Division (DAM) Nuclear Energy Division (DEN) Technological Research Division
More information3GPP security. Valtteri Niemi 3GPP SA3 (Security) chairman Nokia
3GPP security Valtteri Niemi 3GPP SA3 (Security) chairman Nokia 1 Some history and background 2 Some history 1/2 SA3 took over the responsibility of specifications created by ETSI SMG10, e.g. TS 43.020
More informationETSI TS V5.3.0 ( )
TS 131 114 V5.3.0 (2003-03) Technical Specification Universal Mobile Telecommunications System (UMTS); USAT interpreter protocol and administration (3GPP TS 31.114 version 5.3.0 Release 5) 1 TS 131 114
More informationEnabling Mobile NFC CTST 2008
CTST 2008 Presented by Patrick Waters 15 May 2008 GROUP R&D - Enablers AGENDA Developing a Mobile NFC platform Turning NFC into Reality Re-inventing the SIM to Enable Trusted Services 2 1 Developing a
More informationETSI TS V8.0.0 ( )
TS 101 180 V8.0.0 (2000-05) Technical Specification Digital cellular telecommunications system (Phase 2+); Security mechanisms for the SIM Application Toolkit; Stage 1 (GSM 02.48 version 8.0.0 Release
More informationMobile/NFC Security Fundamentals. Secure Elements 101. Smart Card Alliance Webinar March 28, 2013
Mobile/NFC Security Fundamentals Secure Elements 101 Smart Card Alliance Webinar March 28, 2013 Introductions Brent Bowen, INSIDE Secure Chair, Mobile & NFC Council, Smart Card Alliance Mobile & NFC Council
More informationFuture-Generation Wireless Networks: Beyond 3G and 4G.
Future-Generation Wireless Networks: Beyond 3G and 4G. Kumar Adumulla 29 March 2006 Networks 1 Outline Introduction Wireless Networking Generations Issues in 3G What is 4G Beyond 3G & 4G Conclusion References
More informationARM Security Solutions and Numonyx Authenticated Flash
ARM Security Solutions and Numonyx Authenticated Flash How to integrate Numonyx Authenticated Flash with ARM TrustZone* for maximum system protection Introduction Through a combination of integrated hardware
More informationUK CONSUMERS WANT NFC ON THEIR MOBILES O2 Wallet trial reveals 78% want to use contactless services on their mobile phone
press release 2nd September 2008 UK CONSUMERS WANT NFC ON THEIR MOBILES O2 Wallet trial reveals 78% want to use contactless services on their mobile phone The prospect of using your mobile phone to make
More informationFT ETSI STANDARDS FOR PUBLIC COMMENT
FT ETSI STANDARDS FOR PUBLIC COMMENT The following ETSI documents are issued under the Public Enquiry PE20081017. Comments are welcome and should be addressed to the named contact to arrive by 12 September
More information