Survey
* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project
* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project
RESET Roadmap for European research on Smartcard Technologies FROM SMART CARD TO TRUSTED PERSONAL DEVICE Working Group Outcomes RESET Seminar - 3 April 2003 Brussels RESET Roadmap for European research on Smartcard Technologies WG1 Communication & Networking Dr. David Simplot Université des Sciences et Technologies de Lille Evaluation of Technology and Marketing Requirements Smart cards Need of interoperability, open platform Incompatible with proprietary and exotic communication protocol Information systems Internet everywhere, need of high speed peripheral Telecommunications Cooperation with IT industry, use of same communication protocols Wireless local area networks (W-LAN) Internet everywhere, need of security improvement Potential market for smart card Conclusion: Lack of reachability/connectivity of smart cards In term of physical interface, communication protocol and communication model RESET IST-2001-39046 Research Orientation for improvement Performance improvement From Kbit/s to 100 Mbits/s for data exchange speed rate Low power consumption for enhanced portability Full-duplex for multi-protocol Connectivity enhancement TCP/IPv6 for internet protocols Security of connection link Support new communication models Multi-tasking OS Faster access to NVM Improved RAM capacity RESET IST-2001-39046 Research and Technology Development Priorities Operating system (see WG2) Multitasking operating system Hardware requirements (see WG6) Embedded RF, Embedded battery, Faster NVM access, Larger RAM Security requirements (see WG5) Maintenance of privacy and security level Networking Connectivity with IT Implementation of mobile nodes connected through wireless links Improvement of W-LAN technologies for large and dense selforganizing networks RESET IST-2001-39046 Contribution to RESET Short / medium term Physical link Communication protocol Enhanced standard link between terminal and smart card High speed protocol Non-exotic / non proprietary communication protocols easy to use Integration in networks Integration in wired and wireless Internet access specifications Long term Migration path to smart objects Wireless objets protocols Tentative time schedule IPv6 integration - short term (2 years from now) High speed protocol - short term (2 years from now) Multi-tasking - medium to long term (2 to 5 years from now) Wireless solution - medium to long term (2 to 5 years from now) RESET IST-2001-39046 RESET Roadmap for European research on Smartcard Technologies WG2 Systems & Software Boutheïna Chetali Schlumberger Participants to the group Ulrich Büker, ORGA Kartensysteme Jaan Priisalu, Cybernetica Boutheina Chetali, Schlumberger Jean-Louis Lanet, Gemplus Jean-Jacques Vandewalle, Gemplus Renaud Marlet, Trusted Logic Amokrane Saibi, Oberthur Card Didier Begay, France Telecom RESET Gilles Barthe, INRIA, Erik Poll, U Nijmegen Gilles Grimaud, U Lille Xavier Leroy, INRIA Michael Butler, U Southampton IST-2001-39046 Evaluation of Technology and Marketing Requirements Operating Systems & High level languages Support new upcoming hardware features Support multi-applications (not only capacity but concurrent executions) Need of high-level multi-purpose languages, and portable and efficient low level languages (dedicated features) Development tools Adapt the results from software engineering field (restricted resources and security) Validation and certification RESET IST-2001-39046 Evaluation of Technology and Marketing Requirements (cont’d) Systems Integration and Card Application Management Smart card middleware (adaptability to the end user terminal and to the network) Need to improve management (card , applications) Need to improve project management tools (distributed development, interaction between development and validation) RESET IST-2001-39046 Research and Technology Development Priorities Operating Systems : Enhance execution environment (multi tasking/multi threading, Real time OS, etc) High speed communication protocols, File systems management/memory management Open source OS (SC as an ordinary web server) High Level languages : Enhance the expressiveness of the programming languages (full java), investigate alternative languages as C#, Eiffel, etc Investigate Domain Specific and Scripting languages : characteristics of the application domain as language concepts, constructs and notations Issues : variety of SC hardware & SC limited resources RESET IST-2001-39046 Research and Technology Development Priorities (cont’d) Development tools : improve security and certification process Design modelling and specification languages that are sound and expressive but remain usable in practice Improve methods for verification and test (automatic) Develop adequate interface with verification tools (theorem provers and Model checkers) Develop adequate framework for validation and certification RESET IST-2001-39046 Research and Technology Development Priorities (cont’d) Systems Integration : Adapt middleware and integration tools from software engineering to special characteristics of SCs Improve management of SC and their content with model(s) of card management systems RESET IST-2001-39046 Research and Technology Development Priorities (cont’d) Short term: Integrated set of tools for the development of application in a global framework Enable middleware technologies (RMI, Corba, .NET remoting) Define standard mechanisms for communication between smart cards and terminals (PDA,mobile phone, set-top boxes, etc) Enlarge the scope of Mobile Information Devices Profiles (MIDP) to Smart Cards Long term Design application models to take into account SC constraints, security and the on card part of the application Design models related to management of the SCs (entity definition, functionality, multi application features) Design technologies : XML,UML On-card and off card framework : scalability, dynamic management of card framework services RESET IST-2001-39046 RESET Roadmap for European research on Smartcard Technologies WG 3 Smart card accepting devices, interfaces and biometry François BRION Groupement des Cartes Bancaires Contributors to the group CNR Pisa Stefano BISTARELLI Stefano FRASSI University of Twente Pr Pieter HARTEL Gemplus Olivier TREBUCQ NDS Security Platforms Arieh MOLLER Avi WACHTFOGEL Philips Klaus SICKERT SIT Fraunhofer Institut Sichere Telekooperation Dirk SCHEUERMANN Sun Microsystems Eduard de JONG Cartes Bancaires François BRION Bruno MICHAUD William VANOBBERGHEN Group met once in Paris, Dec 6th 2002 RESET IST-2001-39046 Technology trends Secure readers Secure readers with key pad Biometric interfaces Form factor Miniaturization & cost effectiveness RESET IST-2001-39046 Market requirements Move towards multi application RESET IST-2001-39046 Market requirements (cont'd) Security is a transversal issue and affects every component User friendliness is an important key of success for these projects RESET IST-2001-39046 Research orientations Enhancing user's trust in card and CAD is necessary to develop new smard card applications => TRUSTED ENVIRONMENT Transaction data integrity Secured user identification RESET IST-2001-39046 Scenarios for Network/CAD/card connection modes Network CAD wired link Network CAD wireless link Network link with contacts Smart card Smart card link with contacts CAD wired link Smart card contactless link Network CAD wireless link RESET Smart card contactless link IST-2001-39046 RESET Roadmap for European research on Smartcard Technologies WG4 Card embedded peripherals, sub-systems and micro-systems Benoit Thévenot Schlumberger Contributors to the group GEMPLUS ORGA PHILIPS SAGEM SCHLUMBERGER RESET Henri BOCCIA Philippe PATRICE Olivier TREBUCQ Thies JANCZEK Christian ZENZ Marc MORAZZANI Benoit THEVENOT IST-2001-39046 Market Requirements Trust Permanent control User convenience Cost Lifetime RESET IST-2001-39046 Technology orientations Trust : system on & off card Personal slave reader Smart card HOST Peripherals Peripherals CPU Internal bus External bus wire or wireless Cost : standard for architecture & peripherals Lifetime : standard for cards durability RESET IST-2001-39046 Guidelines for Card architecture DISPLAY KNOBS EXT BUS CPU Interface chip INTERNAL BUS MASS MEMORY POWER ANTENNA RESET IST-2001-39046 BIOMETRIC SENSORS Development priorities 1. Card architecture standards 2. Thin, flexible, reliable, low cost • • Displays, batteries and keyboards Packaging and interconnection technologies (very thin chips, flexible interconnections) 3. Manufacturing equipments 4. Extended / improved set of peripherals RESET IST-2001-39046 RESET Roadmap for European research on Smartcard Technologies WG5: “High-end cryptography, tamper-proof and security technologies Dr. Albert MÖDL Giesecke & Devrient GmbH Technology and Market Trends Smart Cards will continue to provide authenticity, confidentiality, security and trust in electronic transaction systems (especially in electronic payment) to be used as a secure identification module all kind of log-on or user identification (SIM, ...) supplemented by biometrics in dedicated applications Encreased usage of smart cards in the PC and internet environment security threats by hackers in the internet end-to-end security necessary secure traceability RESET IST-2001-39046 Technology and Market Trends (cont’d) Multi-application cards need special security: integrity and strict separation of the different applications prevention of unauthorized access to card file systems or confidential data High-end cryptography big key-lengths high-speed encryption and decryption RESET IST-2001-39046 Research and Technology Development Priorities Design of secure smart card chips develop physical security protection techniques for the smart card chips, devise tamperresistance, tamper protection & detection mechanisms develop means to eliminate information leakage through side channels developed secure re-programmable smart card chips to be able to re-configure processors RESET IST-2001-39046 Research and Technology Development Priorities (cont’d) Investigation and prevention of attacks further develop existing invasive and noninvasive attacks and develop countermeasures modelling of attacks on smart card RESET IST-2001-39046 Research and Technology Development Priorities (cont’d) Development and implementation of high-end cryptology enhance the security of smart cards in the PC and internet environment develop on-the-fly encryption and decryption new public-key algorithms for smart cards without crypto processor on-chip random number generator tests secure on-chip key generation enhance security and the speed of the contactless interface RESET IST-2001-39046 Research and Technology Development Priorities (cont’d) Development of secure smart card software and protocols develop means for secure software updates security for cards with a built-in user interfaces e. g. cards with keyboard, display, sensors secure compilers (producing safe code) develop and adjust evaluation methods accordingly RESET IST-2001-39046 RESET Roadmap for European research on Smartcard Technologies WG6 Micro-Electronics Enrique Canto Jean-Paul Thomasson RESET WG6 Leaders Semiconductor Technology Trends & Market Requirements ITRS *: defines the global technology roadmap over a 15 years period for all applications. Regularly updated by the World Semiconductor Industry Association. Smartcard IC’s designers use rules & tools, and wafers are made on fabrication lines as per ITRS roadmap. Smart card IC market still < 1% of total semi market Five Laws paradigm applies now to smart cards. Mask-set & tools cost continuously increasing pushing for higher system integration, longer lifecycle. From Secure MCU to Secure System On Chip *International Technology Roadmap for Semiconductors RESET IST-2001-39046 Challenges & Research Orientation Performance optimisation: Architecture: 32b CPU – Memory management Memory technology (capacity and access time) Power consumption IP re-use Cost & die size (for card embedding) Flexibility: Time to market Platform concept + 3rd party IP blocks + re-configuration. Security (camouflage & maintenance) Development methodology and environment RESET IST-2001-39046 Technology R&D Priorities Short-medium term: High-performance Non Volatile Memory High-performance Standard Communication Power consumption (MIPS/mW) Continuous tamper resistance improvement Medium/long term: Fault resistant IP blocks design Re-configurable architectures Cost effective camouflage technologies Single memory technology (high density & fast RAM+ NVM) . RESET IST-2001-39046 Contribution of Micro-electronics R&D to RESET Deployment of the Smart Card technology in an “Any time - Anywhere” world (Internet). Integration of High performance Operating Systems including new Java Card. Increase the Trust & Confidence of all stakeholders of the value chain and of citizens for Smart Card technology. Easy migration path to Trusted Smart Objects. RESET IST-2001-39046