1. What is Smart Card 1
Taiwan Applied Module Corp.
What is
Smart Card ??
洪 崇 倍 / Otto Hung
2. What is Smart Card 2
Taiwan Applied Module Corp.
What is a smart card
A credit card size plastic with a single IC chip on
board and conforms with ISO-7816 and ISO 14443
comprises of 3 parts
contact disc
chip
plastic body with cavity
3. What is Smart Card 3
Taiwan Applied Module Corp.
Application
Source: http://www.smartcard.bull.com/
4. What is Smart Card 4
Taiwan Applied Module Corp.
Categories of Smart Cards
Memory Cards
Containing a memory chip (several K bits) with
hardwired logic,
mostly used as prepaid cards,
low cost.
Microprocessor Cards (our focus for this
topic)
like small portable computers (without keyboard
or monitor screen),
increased security capabilities,
can integrate several applications.
5. What is Smart Card 5
Taiwan Applied Module Corp.
Categories of Smart Cards (cont.)
Contact Cards
must be inserted into a card reader or terminal (Card
Acceptance Device),
more commonly used
Contact-less Cards
Can function when placed close enough to the
terminal,
Ideal for fast transactions,
not easily worn out,
can be of different physical sizes,
transmitted data can be intercepted
Dual-Interface Cards
6. What is Smart Card 6
Taiwan Applied Module Corp.
EEPROM :EEPROM :
100 ~ 4 KB100 ~ 4 KB BitsBits
DecodeDecode
LOGICLOGIC
I/OI/O
EEPROMEEPROM
POWERPOWER
(Vcc)(Vcc)
CLOCKCLOCK
RESETRESET
GROUNDGROUND
(Vss)(Vss)
I/OI/O
Architecture of Memory Card
Hard Wired Logic
EEPROM Only
Synchronous Prot.
Non Standardized
7. What is Smart Card 7
Taiwan Applied Module Corp.
Architecture of CPU Card
Asynchronous card
(slow data transfer)
8 –32 bit µP
4 – 20 Mhz Clock
High Security
Medium large Size
(10 to 32 mm²)
RAM : Hundreds Bytes
(Working Memory)
ROM : 6 ~ 96 KB
(Card Operating System)
EEPROM : 1 ~ 64 KB
(Application Memory)
µPµP
LOGICLOGIC
RAMRAM
EEPROMEEPROM
ROMROM
POWER
(Vcc)
CLOCK
RESET
GROUND
(Vss)
I/O
RFU
(Vpp)
8. What is Smart Card 8
Taiwan Applied Module Corp.
CPU ROM EEPROM WDT RNG
串列
界面
RF
界面
RSA
加密器
DES
加密器
安全
保護
線路
Bus Access Control
RAM
PLL
Hardware Block Diagram
9. What is Smart Card 9
Taiwan Applied Module Corp.
Standards and Specifications
Interface
Contact, ISO 7816
Contact-Less, ISO 14443
(U) SIM card-related specifications
ETSI GSM 11 series,
3GPP 03 Series
Payment systems
EMV 2000, etc..
Card Acceptance Device
PC/SC for interoperability between smart cards and
PCs
OpenCard Framework (OCF) similar to PC/SC,
implemented in Java
10. What is Smart Card 10
Taiwan Applied Module Corp.
Smart Card
Communication Model
Commands and Response messages
are contained in APDU Command,
Application Protocol Data Unit
(C_APDU and R_APDU).
Command APDU
Response APDU
Processing
11. What is Smart Card 11
Taiwan Applied Module Corp.
Classify of APDU Command
Case 1, no command/no response data
Case 2, no command data
Case 3, no response data
Case 4
Header sw
Header Le Data sw
Header Lc Data sw
Header Lc Data Le Data sw
12. What is Smart Card 12
Taiwan Applied Module Corp.
Transmit of OSI-Reference
Physical
Data Link
Transport
Application
Physical
Data Link
Transport
Application
ICC CAD
APDU
ISO 7816,
ISO 14443
TPDU
T=0, T=1 and T-CL
Contact
Contact-Less
13. What is Smart Card 13
Taiwan Applied Module Corp.
TPDU Format
Data structure exchanged by using TPDU,
Transaction Protocol Data Unit
T=0, byte oriented
T=1, Block oriented
T=CL
P3 DataP2P1INSCLA
Prologue Information Epilogue
NAD PCB LEN Information field EDC/CRC
1 1 1 0 ~ 254 1 or 2
Prologue Information Epilogue
PCB [CID] [NAD] Information field CRC
1 1 1 0 ~ 254 2
14. What is Smart Card 14
Taiwan Applied Module Corp.
T=0 TPDU Command
CLA INS P1 P2 Lin
PB
Data-In
sw1 sw2
READER
CARD
CLA INS P1 P2 Lin
PB Data-Out sw1 sw2
READER
CARD
ISO-IN
ISO-OUT
15. What is Smart Card 15
Taiwan Applied Module Corp.
T=1 TPDU Command
Supervisor Block
Ready Block
Information Block
ISO-IN
ISO-OUT
ISO-IN&OUT
CLA INS P1 P2 Le sw2Data-Out sw1
CLA INS P1 P2 Lc Data-In sw2sw1
CLA INS P1 P2 Lc Data-In Le sw2sw1Data-Out
16. What is Smart Card 16
Taiwan Applied Module Corp.
About Smart Card Software
Smart card system
Host (Terminal )system + Card
system
Smart card operating systems are typically file
system-centric (based on ISO 7816-4)
Most conventional card applications involve just
file manipulations (select, deselect, read, write)
Software development involves
(1) operating system providers,
(2) card terminal vendors,
(3) application developers, and
(4) card issuers
17. What is Smart Card 17
Taiwan Applied Module Corp.
Chip Card File System
Most smart card operating systems
are typically File System-Centric
based on ISO 7816-4
MF
Level #0
DF
Level #1
DF
Level #1
DF
Level #2
DF
Level #2
EF
EF
EF
EF
EFEF
18. What is Smart Card 18
Taiwan Applied Module Corp.
File Structures (1/3)
Header
System Information
Body
Application Data
Sequence Of Byte
Header
System Information
Body
Record #1
Record #2
Record #3
Last Record #N
Rest of records
TRANSPARENT FILE LINEAR FIXED FILE
19. What is Smart Card 19
Taiwan Applied Module Corp.
File Structures (2/3)
LINEAR VARIABLE FILE
Header
System Information
Record #1 Record #2
Record #P
R
e
c
o
r
d
#
3
R
e
c
o
r
d
L
a
s
t
#
N
Rest of the records
Body
Header
System Information
Body
Record #1
Record #2
Record #3
Last Record #N
Rest of records
CYCLIC FILE
20. What is Smart Card 20
Taiwan Applied Module Corp.
File Structures (3/3)
BER-TLV FILE
Header
System Information
Data #1Data #1
Body
Data #2Data #2
Data #3Data #3
Rest of data..Rest of data..
Data #NData #N
Tag
Tag
Length
Length
Value
Value
21. What is Smart Card 21
Taiwan Applied Module Corp.
Card Operating Systems (COS)
Traditional O.S.
only one application or special
application
Open system O.S.
for multi application or non-specific
application
Java Card Operating System
MultiOS Card Operating System
Smart Card for Windows
Global Open Platform
22. What is Smart Card 22
Taiwan Applied Module Corp.
Multi-Application Cards
New data and new command can be
added!!
Base on “Open OS”
Microprocessor
Virtual Machine
API
EEPROM
Data Code
Stored value applet
Data Code
loyal applet
23. What is Smart Card 23
Taiwan Applied Module Corp.Source: http://www.smartcard.bull.com/
Realizing the Multiple-Application
Vision
24. What is Smart Card 24
Taiwan Applied Module Corp.
Benefits of Open OS
Interoperability
Secure loading of applets into card, even
after issuance
An existing field application can be ported
onto a multi-application card, without
changing the terminal software
Firewalls between applets confidentiality
of data
Applet develop in high level language (java,
C, …) very quick time to market
25. What is Smart Card 25
Taiwan Applied Module Corp.
CPU + crypto
Operating System
R
O
M
Operating System
Application
A
Application
B
file
structure
EE
PROM
EE
PROM
File
structure
Java Interpreter
ROM
ROM
Java Card API
Virtual
Machine
EE
PROM
EE
PROM
Hardware
independant
Hardware
dependant
Java Card Operate System
26. What is Smart Card 26
Taiwan Applied Module Corp.
UICC Card Application Platform
SIM
SIM Application Toolkit
(SAT)
Banking Location Browser
SIM-
WIM
The UICC -
the multi-application platform
separation of layers and
applications
logical channels to run
applications in parallel
The SIM -
a "mono-application" card
SIM according to GSM
11.11
applications based on SIM
Application Toolkit
WIM as exception
(own command set and
triggered by WAP browser)
UICC
Others
EMV
USIM SIM
Electronic
Purse
Phonebook
(U)SAT
GSM Purse
eHealth
27. What is Smart Card 27
Taiwan Applied Module Corp.
Global Open Platform Card
Architecture
Java Card
WfSC
VM & API
Proprietary Card Vendor
OS
WfSC
O.S.
Open Platform
API
Open platform
Card Manager
Visa
Cash
Visa
Smart
Credit
Visa
Smart
Debit
E-Comm Loyalty Loyalty
OR
Issuer Choice of Applications
28. What is Smart Card 28
Taiwan Applied Module Corp.
Definition of Card’s Life Cycle
Blank Cards
Pre-Personalized
Cards
Personalized Cards
Dead Cards
Card
O.S.
FILE STRUCTURE
USER DATA