Transcript SMART CARD - وب سایت دکتر مسعود حجاریان

SMART CARD
Melika Sefidary
What is Smart Card
A Smart Card is a card incorporating a “CHIP” or (microprocessor) which is a
type of tiny computer embedded in the plastic. The metal circle visible on the
outside of the card is not the microprocessor itself, but rather a unit containing
its outside connections. The chip provides the card with these advantages:
 a memory for greater storage than can be provided on magnetic stripes
 intelligence for exploiting this increased data. The smart card participates
directly in controlling transactions
 it stores formula within its permanent (read-only) memory which enables it to
verify the authenticity of the secret code typed in by the customer
 it registers and memorize the number and frequency of all transactions
effected.
2
Milestones in the development of smart
card technology
 1974 - Roland Moreno of France filed the original patent for
the IC card, later dubbed the "smart card".
 1977 - Three commercial manufacturers, Bull CP8, SGS
Thomson, and Schlumberger began developing the IC card.
 1979 - Motorola developed the first secure single chip
microcontroller for use in French banking.
3
Milestones in the development of smart
card technology
 1984 - Field trials of ATM bank cards with chips were
successfully conducted.
 1986 - 14,000 cards equipped with the Bull CP8 were
distributed to clients of the Bank of Virginia and the
Maryland National Bank.
.
4
Milestones in the development of smart
card technology
 1991 - First Electronic Benefits Transfer (EBT) smart card
project launched
 1992 - A nationwide prepaid (electronic purse) card project
(DANMONT) was started in Denmark.
 1994 - Europay, MasterCard, and Visa (EMV) published joint
specifications for global microchip-based bank cards (smart
cards).
5
Milestones in the development of
smart card technology
 1995 - Over 3 million digital mobile phone subscribers
worldwide begin initiating and billing calls with smart cards.
 1996 - MasterCard and Visa began sponsorship of competing
consortia to work on solving the problems of smart card
interoperability. Two different card solutions were developed:
the Java Card backed by Visa, and the Multi-application
Operating System (MULTOS) backed by MasterCard.
.
6
WHY CONSIDER SMART CARDS?
 a portable record of one or more applications is necessary or
desirable
 Records are likely to require updating over time
 Records will interface with more than one automated system
 Security and confidentiality of records is important
7
THEN, smart cards are a feasible
solution for making data processing
and transfer more efficient and secure.
8
Advantages of Smart Cards
 The capacity provided by the on-board microprocessor and
data capacity for highly secure, off-line processing
 Adherence to international standards, ensuring multiple
vendor sources and competitive prices
 Established track record in real world applications
9
Advantages of Smart Cards
 Durability and long expected life span (guaranteed by vendor
for up to 10,000 read/writes before failure)
 Chip Operating Systems that support multiple applications
 Secure independent data storage on one single card
10
Barriers to Acceptance of Smart Cards
 Relatively higher cost of smart cards as compared to magnetic
stripe cards.
 Present lack of infrastructure to support the smart card.
Necessitating retrofitting of equipment such as vending machines,
ATMs, and telephones.
11
Barriers to Acceptance of Smart Cards
 Proprietary nature of the Chip Operating System. The
consumer must be technically knowledgeable to select the
most appropriate card for the target application.
 Lack of standards to ensure interoperability among varying
smart card programs.
 Unresolved legal and policy issues related to privacy and
confidentiality or consumer protection laws.
12
Financial Applications
 Electronic Purse to replace coins for small purchases in
vending machines and over-the-counter transactions.
 Credit and/or Debit Accounts, replicating what is currently
on the magnetic stripe bank card, but in a more secure
environment.
 Securing payment across the Internet as part of Electronic
Commerce.
13
Communications Applications
 The secure initiation of calls and identification of caller (for
billing purposes) on any Global System for Mobile
Communications (GSM) phone.
 Subscriber activation of programming on Pay-TV.
14
Government Programs
 Electronic Benefits Transfer using smart cards to carry Food
Stamp and WIC food benefits in lieu of paper coupons and
vouchers.
 Agricultural producer smart marketing card to track quotas.
15
 Information Security
Employee access cards with secured passwords and the
potential to employ biometrics to protect access to computer
systems.
 Physical Access Control
Employee access cards with secured ID and the potential to
employ biometrics to protect physical access to facilities
16
 Student Identification
All-purpose student ID card (a/k/a campus card), containing
a variety of applications such as electronic purse (for vending
machines, laundry machines, library card, and meal card).
17
Evolution of Smart Cards
18
19
20
Conventional Smartcard Architectures
21
RAM
256 bytes to 1 Kbytes
EEPROM
1 Kbytes to 16 Kbytes
ROM
6 Kbytes to 24 Kbytes
Microprocessor
8 bits at approximately 5 MHz
Interface Speed
9600bps minimum, half duplex
Smartcard Electrical Contacts
22
Description of Contacts
23
Chip Operating Systems
 The smart card's Chip Operating System (frequently referred
to simply as Mask) is a sequence of instructions permanently
embedded in the ROM of the smart card. Like the familiar
PC DOS or Windows Operating System, OS instructions are
not dependent on any particular application but are
frequently used by most applications.
24
Type of OS
 general purpose OS which features a generic command set
in which the various sequences cover most application
 dedicated OS with commands designed for specific
applications and which can even contain the application itself.
An example of a dedicated OS would be a card designed to
specifically support an electronic purse application.
25
The baseline functions of the Chip OS
 Management of interchanges between cards and the outside




26
world, primarily in terms of interchange protocol.
Management of the files and data held in memory.
Access control to information and functions (e.g. select file,
read, write, and update data).
Management of card security Maintaining reliability,
particularly in terms of data integrity.
Management of various phases of the card's life cycle (e.g.
microchip fabrication, personalization, active life, and end of
life).
notable operating systems on the market
 JAVA CARD for program development using Java. A typical Java
Card device has an 8- or 16-bit CPU running at 3.7MHz, with 1K
of RAM and more than 16K of non-volatile memory (EEPROM or
flash). High-performance smart cards come with a separate
processor and cryptographic chip and memory for encryption, and
some come with a 32-bit CPU.
 MULTOS is the first, open, high security, multi-application
operating system for smart cards. MULTOS allows you to
dynamically load, update, or delete any application during the life
of the card.
27
World Smart Card Demand by Region
28
World Smart Card Demand by Application
29