Bluetooth Low Energy in Wireless PKI deployments

Similar documents
mcard CPK Supported Solutions

Longmai Mobile PKI Solution

Logitech Advanced 2.4 GHz Technology

Logitech Advanced 2.4 GHz Technology With Unifying Technology

1. What is the main difference between the X3 micro and other Bluetooth headsets? 3. How does the X3 micro use the Bluetooth technology?

Connecting your Aiki phone to a network

Smart Card- An Alternative to Password Authentication By Ahmad Ismadi Yazid B. Sukaimi

Secure Data Exchange Solution

RF-Enabled Applications and Technology: Comparing and Contrasting RFID and RF-Enabled Smart Cards

Brief Introduction Thump Bluetooth Wireless Headphones features What s in the package? Bluetooth Wireless technology...

Introducing etoken. What is etoken?

Microsoft Identity Lifecycle Manager & Gemalto.NET Solutions. Jan 23 rd, 2007

The Convergence of IT Security and Physical Access Control

Technical Article. NFiC: a new, economical way to make a device NFC-compliant. Prashant Dekate

ITL BULLETIN FOR AUGUST 2012

Training. MIFARE4Mobile. Public. MobileKnowledge April 2015

Wireless Ethernet LAN (WLAN) General a/802.11b/802.11g FAQ

ZigBee Technology Overview

Jabra SPORT WIRELESS+

How to connect your D200 using Bluetooth. How to connect your D200 using GPRS (SIM Card)

Latest and Future development of Mobile Payment in Hong Kong

MediaQ M310. Quick Start HUAWEI TECHNOLOGIES CO., LTD.

Key & Data Storage on Mobile Devices

Using RFID Techniques for a Universal Identification Device

DATA PROJECTOR XJ-A147/XJ-A247/XJ-A257 XJ-M146/XJ-M156 XJ-M246/XJ-M256. XJ-A Series. XJ-M Series. Network Function Guide

INTRODUCTION AND HISTORY

HANDS-FREE BLUETOOTH CONTROLLER for SMART READY TABLETS AND COMPUTERS

The Convergence of IT Security and Physical Access Control

MobileLite Wireless G2 5-in-1 Mobile Companion User Manual

Contactless Smart Cards vs. EPC Gen 2 RFID Tags: Frequently Asked Questions. July, Developed by: Smart Card Alliance Identity Council

Mobile Payment Transactions: BLE and/or NFC? White paper by Swen van Klaarbergen, consultant for UL Transaction Security s Mobile Competence Center

MOBILE PAYMENT SECURITY: BLE OR NFC

CRESCENDO SERIES Smart Cards. Smart Card Solutions

Bluetooth wireless technology basics

Jabra SPORT. User manual.

The Increasing Use of Cordless Handheld Bar Code Readers, Technology, and Applications. A White Paper by Datalogic Scanning, Inc.

Jabra CRUISER2. User manual. MUTE VOL - VOL + jabra

Figure 1.Block diagram of inventory management system using Proximity sensors.

ENABLING WIRELESS DATA COMMUNICATION IN CONSTRUCTION MANAGEMENT SYSTEM

Bluetooth Installation

Bluetooth Wireless USB Adapter. User Manual (GBU211 / GBU311)

FNC-1000 User Guide Table of Contents

Mobile MasterCard PayPass Testing and Approval Guide. December Version 2.0

Smart Tiger STARCHIP SMART TIGER PAYMENT PRODUCT LINE. Payment. STiger SDA. STiger DDA. STiger DUAL

NFC. Technical Overview. Release r05

Dell Wyse Cloud Connect

Bluetooth 4.0 Solutions for Apple ios Devices. Bluegiga Technologies

Android pay. Frequently asked questions

Wireless-N. User Guide. PCI Adapter WMP300N (EU) WIRELESS. Model No.

AV1200 TL-PA8030P KIT. 3-Port Gigabit Passthrough Powerline Starter Kit. Highlights

JABRA STYLE. User Manual. jabra.com/style

FREQUENTLY ASKED QUESTIONS

EXPLORING SMARTCARDS: AN INDEPENDENT LOOK TO TECHNOLOGIES AND MARKET

Thingsquare Technology

Integration Guide. SafeNet Authentication Client. Using SAC CBA for Check Point Security Gateway

SafeNet Authentication Client (Windows)

DSB-100 Portable Premium Bluetooth Speaker Owner s Manual

Conducting Virtual Meetings

PROFESSIONAL DIGITAL TWO-WAY RADIO MOTOTRBO ANYWHERE. for ios USER GUIDE

DATA PROJECTOR XJ-A146/XJ-A246/XJ-A256

Office Cordless Desktop 2.4GHz FAQ

Sprint Mobile Hotspot MiFi TM 2200 by Novatel Wireless Frequently Asked Questions (FAQ)

DigitalPersona Pro Enterprise

Mobile Financial Services Business Ecosystem Scenarios & Consequences. Summary Document. Edited By. Juha Risikko & Bishwajit Choudhary

BTX180 Wireless Bluetooth Speaker

WI-FI VS. BLUETOOTH TWO OUTSTANDING RADIO TECHNOLOGIES FOR DEDICATED PAYMENT APPLICATION

CellCast Solution for BlackBerry Smartphones. Security Overview. Revised: June

Working With Bluetooth Devices

Two-Factor Authentication over Mobile: Simplifying Security and Authentication

INTEGRATION GUIDE MS OUTLOOK 2003 VERSION 2.0

Mobile application testing for the enterprise

S4 USER GUIDE. Read Me to Get the Most Out of Your Device...

THE APPEAL FOR CONTACTLESS PAYMENT 3 AVAILABLE CONTACTLESS TECHNOLOGIES 3 USING ISO BASED TECHNOLOGY FOR PAYMENT 4

Service "NCPCLCFG" is not running In this case, increase the WaitForConfigService setting until the problem is circumvented

Modern Multi-factor and Remote Access Technologies

HIPAA Security Considerations for Broadband Fixed Wireless Access Systems White Paper

Mobile Near-Field Communications (NFC) Payments

EESTEL. Association of European Experts in E-Transactions Systems. Apple iphone 6, Apple Pay, What else? EESTEL White Paper.

This guide describes features that are common to most models. Some features may not be available on your tablet.

Point of view HDMI Smart TV dongle Mini RF Keyboard

Security Policy Revision Date: 23 April 2009

Frequently asked questions

Bluetooth Wireless USB Adapter. User Manual (GBU221/321)

Wireless Phone Systems for your Organisation

Enterprise Security Management CheckPoint SecuRemote VPN v4.0 for pcanywhere

BigPond Wi-Fi 4G Advanced II AirCard 790S User Manual

Audio: This overview module contains an introduction, five lessons, and a conclusion.

Smart Card Deployment in the Data Center: Best Practices for Integrating Smart Card Authentication in a Secure KVM Environment

Application Note Gemalto.NET 2.0 Smart Card Certificate Enrollment using Microsoft Certificate Services on Windows 2008

Smart Card Certificate Authentication with VMware View 4.5 and Above WHITE PAPER

Index. 1-FLYPOS hardware/firmware Technology Overview 2-FLYPOS software architecture 3-Gateway/Acquirer Interface 4-Letters of Approval

From Edge to the Core. Sicurezza dati nelle infrastrutture condivise, virtualizzate e cloud.

Tecnologías Inalámbricas.

SecureCom Mobile s mission is to help people keep their private communication private.

Release Notes. NCP Secure Entry Mac Client. Major Release 2.01 Build 47 May New Features and Enhancements. Tip of the Day

Introductions 1 min 4

IEEE b WLAN PC Card

2.4G Bluetooth Datalink & ipad Ground Station User Guide V1.02

Feature List for Kaspersky Password Manager

Transcription:

Bluetooth Low Energy in Wireless PKI deployments mtoken BLE ecosystem White Paper All rights reserved 1 Introduction Century Longmai Technology Co., Ltd

CONTENTS 1. INTRODUCTION... 3 WHO SHOULD READ THIS DOCUMENT?... 3 DEFINITIONS... 4 2. BLUETOOTH OVERVIEW... 4 HOW BLUETOOTH WORKS... 5 FREQUENCY HOPPING... 5 POWER CONSUMPTION... 6 SECURITY... 6 BLUETOOTH CORE SPECIFICATION 4.2... 6 Features and Benefits... 6 BLUETOOTH ARCHITECTURE... 8 BLE Application services... 8 3. NEW GENERATION (NG) WIRELESS TOKEN... 8 BACKGROUND... 8 Structural Design... 9 Model Appearance... 10 STRONG TWO FACTOR AUTHENTICATION (2FA)... 11 Scalable portfolio of authentication devices... 11 New Smart card based Security... 11 Exchange & Storage of Sensitive Data... 11 Portability & Usability... 12 Mobility Convenience& Compatibility... 12 Multiple applications Security & Flexibility... 13 Card Operating System Features... 13 4. MTOKEN BLE-B1 OVERVIEW... 14 OVERVIEW... 14 Design... 14 Operation... 15 Important Notes... 17 5. APPENDIX A: GLOSSARY... 18 6. APPENDIX B: DOCUMENT REVISION HISTORY... 20 7. ABOUT CENTURY LONGMAI... 20 2 Introduction Century Longmai Technology Co., Ltd

1. Introduction The evolution of mobile applications and mobile payment industries is accompanied by two technologies i.e. Bluetooth Low Energy (BLE) and host card emulation (HCE) with Near Field Communication (NFC). With the increasing consumer demands for greater privacy of their communications, network security problems have drawn much attention, especially in government telecom, and financial industries. In this paper, we define Bluetooth from the technical and organizational context, and discuss the security and privacy designs when using this technology in Public key infrastructure. Bluetooth silently connects so many of our gadgets together, it s easy to forget it s a pretty impressive piece of technology on its own. It helps us listen to music, talk on our phones, and play video games, all without being frustrated by miles of cables strewn around the place. We present Century Longmai s newly launched wireless token series that utilize the Bluetooth communication protocol to secure a wide range of applications and realize robust identity authentication functions especially in mobile and wireless transaction markets. As one of the leading digital Information security device manufacturers in China, Century Longmai is always excited on best informing those in IT security and related industries about technologies used in our innovative products. Who Should Read This Document? Because this document comprises conceptual and future mobile payment market security, its audience is broad. This document sets the stage with an overview of Bluetooth technology. Then, it describes how Century Longmai implements Bluetooth technology in its Public Key Infrastructure (PKI) tokens to meet end-users mobility needs. If you are unfamiliar with Bluetooth technology in general, you can read this document for a high-level summary. If you are primarily interested in learning about Century Longmai mtoken BLE ecosystem product series, you will find a thorough description and application scenarios in this document. Finally, if you are involved in deploying mobile payment solutions that utilize wireless Public Key Infrastructure or communicate with Bluetooth enabled devices, you should read this document to discover your options. Get more technical information on Bluetooth technology including core specifications, FAQs and Quick Reference Guides. Links to tools and information: o Quick Reference Guide o Frequently Asked Questions o Bluetooth Brand Guide Getting Additional Information Century Longmai provides reference documentation for the mtoken BLE ecosystem wireless PKI token products series that utilizes Bluetooth low energy. If you have any questions 3 Introduction Century Longmai Technology Co., Ltd

regarding mtoken BLE ecosystem, review our frequently asked Questions at http://lminfosec.com/about-us/faqs/ ; if you would like to request for technical assistance or would like to provide feedback about our products and solutions, visit Contact Us Page at http://lminfosec.com/contact/ Definitions o Bluetooth is a technology that makes short-range wireless connections between devices at distances up to 10 meters (33 feet). o Bluetooth Smart refers to qualified products incorporating Bluetooth Core Specification Version 4.0 (or higher) with a Low Energy Core Configuration or Basic Rate and Low Energy Combined Core Configuration and using the GATT-based architecture to enable particular functionality of the product. o Bluetooth Smart Ready refers to qualified products incorporating Bluetooth Core Specification Version 4.0 (or higher) with a Basic Rate and Low Energy Combined Core Configuration, and using the GATT-based architecture to provide a means by which the end user can choose to update the Bluetooth Smart Ready product with the functionality of a Bluetooth Smart product. o Bluetooth Smart technology is a wireless communications system intended to replace the cables connecting many types of devices, from mobile phones and headsets to hear monitors and medical equipment. Learn more about how Bluetooth Smart increases opportunities for developers to make consumers' lives easier. 2. Bluetooth Overview This section seeks to give you an overview of the Bluetooth technology. If you re already familiar with the Bluetooth specification and how Bluetooth devices work, you might choose to skip ahead to mtoken BLE ecosystem. Bluetooth is an open specification that enables low-bandwidth, short-range wireless connections between computers and peripherals, such as keyboard, mouse, Smartphone, and personal data assistant (PDA). The appeal of the Bluetooth model lies in its convenience for wirelessly transferring information and small data files between devices. Meanwhile, the Core Bluetooth framework enables support for communication between applications and Bluetooth devices. For example, when a health monitoring app can discover, explore, and interact with peripheral devices, such as heart rate monitors, digital thermostats, and even other multi-platform based devices. 4 Bluetooth Overview Century Longmai Technology Co., Ltd

How Bluetooth Works Bluetooth devices operate at 2.4 GHz in the license-free, globally available Industrial, Scientific, and Medical (ISM) radio band. Bluetooth chips produce wavelengths that are bound to frequencies operating within a range specifically set aside for short-range communication. The advantage of operating in this band is worldwide availability and compatibility; but the potential disadvantage is that Bluetooth devices must share this band with many other Radio Frequency (RF) Emitters. To overcome this challenge, Bluetooth employs a fast frequency-hopping scheme and uses shorter packets than other standards in the ISM band. The frequent change in wavelength means that even a consistent signal won t interrupt, and won t be interrupted, for longer than 1/1600th of a second.this scheme makes Bluetooth communication more robust and more secure. Frequency Hopping Frequency hopping is literally jumping from frequency to frequency within the ISM band. After a Bluetooth device sends or receives a packet, it and the Bluetooth device or devices it is communicating with hop to another frequency before the next packet is sent. This scheme has three advantages: o It allows Bluetooth devices to use the entirety of the available ISM band, while never transmitting from afixed frequency for more than a very short time. This ensures that Bluetooth conforms to the ISM restrictions on transmission quantity per frequency. o It ensures that any interference will be short-lived. Any packet that doesn't arrive safely at its destination can be re-sent at the next frequency. o It provides a base level of security because it's very difficult for an eavesdropping device to predict whichfrequency the Bluetooth devices will use next. Of course, the connected devices must agree upon the next frequency to use. The Bluetooth specification ensures this in two ways. First, it defines a master-slave relationship between Bluetooth devices. Second, it specifies an algorithm that uses device-specific information to calculate frequency-hop sequences. A Bluetooth device operating in master mode can communicate with up to seven slave devices. To each of its slaves, the master Bluetooth device sends its own unique device address (similar to an Ethernet address) and the value of its internal clock. This information is used to calculate the frequency-hop sequence. Because the master device and all its slaves use the same algorithm with the same initial input, the connected devices always arrive together at the next frequency. Click to go to section 3 to learn more about the mtoken BLE Ecosystem core framework change 5 Bluetooth Overview Century Longmai Technology Co., Ltd

Power Consumption As a cable-replacement technology, it s not surprising that Bluetooth devices are usually battery-powered devices, such as wireless mice and mobile phones. To conserve power, most Bluetooth devices operate as low-power, 1 mw radios (Class 3 radio power). This gives Bluetooth devices a range of about 5 10 meters. This range is far enough for comfortable wireless peripheral communication but close enough to avoid drawing too much power from the device s power source. Security Security is a challenge faced by every communications standard. Wireless communications present special security challenges. Bluetooth builds security into its model on several different levels, beginning with the security inherent in its frequency-hopping scheme (described in Frequency Hopping). At the lowest levels of the protocol stack, Bluetooth uses the publicly available cipher algorithm known as SAFER+ to authenticate a device s identity. The generic-access profile depends on this authentication for its device-pairing process. This process involves creating a special link to create and exchange a link key. Once verified, the link key is used to negotiate an encryption mode the devices will use for their communication. Bluetooth Core Specification 4.2 Bluetooth 4.2 is an important update to the Bluetooth Core Specification delivering exciting new features and benefits for Bluetooth Smart technology. Release on December 2, 2014, this update has created significant advantages for Century Longmai product development by enabling us provide a hardware based wireless PKI solution for mobile users to transact from anywhere with better user experience and assured privacy. The mtoken BLE ecosystem series of products from Century Longmai feature Bluetooth Low Energy communication protocol in addition to USB support; making us the first in the Industry to realize PKI powered by Bluetooth Wireless technology in a smarter, faster and more secure fashion. Features and Benefits Key features of Bluetooth high speed wireless technology include: Power Optimization. The new Bluetooth technology reduces power consumption. The high speed radio is used only when necessary, which means longer battery life for your devices. Improved Security: The Generic Alternate MAC/PHY in Bluetooth high speed enables the radio to discover other high speed devices only when they are needed in the transfer of music, video and other large data files. This decreases power consumption and increases radio security. Enhanced Power Control: Drop-out reduction is now a reality: enhanced Bluetooth technology makes power control faster and reduces the impact of a power or signal loss. 6 Bluetooth Overview Century Longmai Technology Co., Ltd

Lower Latency Rates: Unicast Connectionless Data (UCD) improves the user s speed experience by moving small amounts of data faster, which lowers latency rates. For complete information on Bluetooth 4.2 features and benefits, technical details, tools and more please visit: https://www.bluetooth.org/en-us/specification/adopted-specification 7 Bluetooth Overview Century Longmai Technology Co., Ltd

Bluetooth Architecture The topic of Bluetooth Architecture (including Bluetooth Protocol stack and Bluetooth profiles) is beyond the scope of this document. For more information on Bluetooth Protocol Stack and Profiles, visit https://www.bluetooth.org/enus/specification/adopted-specifications/ BLE Application services Bluetooth has evolved to be a perfect mobile connectivity option, because it doesn t take much energy, and the signal isn t broadcast for miles. The data transfer speed of Bluetooth isn t particularly high, so while uses like streaming music, transferring larger amounts of data would take far too long to be practical. The low power consumption is also important when Bluetooth is used in mobile devices. Bluetooth 4.2 brought a new low power option that allows wireless objects to operate for long periods of time, even on the smallest of batteries. This enables all sorts of useful devices to be incorporated into the Internet of Things, from showerheads to ovens to countertops. These kinds of connections are part of the work being done to create greater connectivity betw een everyday objects, and the already heavily-used Bluetooth protocol will surely be a part of that movement. 3. New Generation (NG) Wireless Token Background Century Longmai developed mtoken BLE ecosystem portfolio of products strongly backed by deep security and cryptography research and development, to provide reliable, versatile and standard compliant solution the product s framework adopts an abstraction of Bluetooth wireless communication and supports a broad range of international digital security algorithms. The ecosystem consists of wireless biocommunication (supporting Bluetoothand USB) smartcard chip based tokens specifically designed to meet users growing mobility and privacy demands. It works with cross-platform operating systems, multi-vendor mobile terminals and custom designed client software to provide secure connection to network based resources such as during online transactions, message transmission or when accessing

Micro USB Interface Bluetooth Low Energy in Wireless PKI deployments mtoken BLE ecosystem Case study any public key infrastructure (PKI) applications for example Email, VPN, E-documents, etc. Typical usage includes: o Network logon o Computer access control o Data protection o Logical Access control (LAC) o Trusted document exchange o Secure Internet and remote access o e-commerce and online banking Structural Design o Features a peripheral Micro USB interface and in-built Bluetooth module and antenna for short-distance wireless communication support. o The Secure element (SE) and Bluetooth modules are physically separated to avoid any leakage of sensitive data. o Featuresbuilt in battery management module to control device s working time and connection overbluetooth. The device turns off automatically after 60 seconds * without user interaction. LED Light indicators and Buttons Build-in antenna Peripheral Management Module Secure Element Module Bluetooth Management Module Battery Management Module 9 New Generation (NG) Wireless Token Century Longmai Technology Co., Ltd

Bluetooth Low Energy in Wireless PKI deployments mtoken BLE ecosystem Case study Fig 3-1: Structure design of mtoken BLE-B1 device Model Appearance Century Longmai offers 4 standard and customizable mtoken BLE ecosystem models as listed below: mtoken BLE-B1 o Single button Bluetooth Token o Support for Bluetooth communication o Supports for USB connection mtoken BLE-B4 o 4 buttons LCD display o Support for Bluetooth communication o Supports for USB connection mtoken BLE-B16 o 16 buttons o Features LCD display o Support for Bluetooth communication o Supports for USB connection mtoken BLE-B56 o Full keyboard Bluetooth token Secure Payment terminal o Support for Bluetooth communication o Supports for USB connection o Features standard LCD or a customized OLED display. For customized product models, please contact us. 10 New Generation (NG) Wireless Token Century Longmai Technology Co., Ltd

Bluetooth Low Energy in Wireless PKI deployments mtoken BLE ecosystem Case study Strong Two factor authentication (2FA) mtoken BLE ecosystem product portfolio offers the highest level of security for two factor authentication (2FA): the token itself and a PIN, providing an extra level of security for the most sensitive applications. E-Government and E-Banking enablers or retailers can choose from a wide range of wireless form factors including mtoken BLE- B1, mtoken BLE-B4, and mtoken BLE-B56. Scalable portfolio of authentication devices mtoken BLE ecosystem can secure logical access control services hosted on any system through the USB connection or by Bluetooth communication. There is guaranteed and proven support for all major mobile operating systems and desktop operating systems including Windows, Mac and Linux. New Smart card based Security Adopting 32-bit smartcard chip technology can connect to PC terminals via High speed USB interface, ensure transmission security and fully protect application data and with onboard security algorithms. Exchange & Storage of Sensitive Data The mtoken BLE ecosystem secures by cryptography stored and exchanged data cryptographic keys are secured through both physical and logical security measures. Communication security o Uses Bi-directional authentication between the host and token device o Uses Encrypted USB and Bluetooth communication protocols. PIN code security o Two-level user rights (administrator and users) o Users must logon with PIN when communicating with token wirelessly. This is an advanced security protection enabled by two factor authentication: something users have the device, and something they know their PIN. The PIN ensures the holder of the device is its legitimate owner. 11 New Generation (NG) Wireless Token Century Longmai Technology Co., Ltd

Bluetooth Low Energy in Wireless PKI deployments mtoken BLE ecosystem Case study o Password verification and editing operations can be performed through inbuild keyboard Transaction security Device Address o Internal signature based on RSA algorithm, onboard secret keys o Trade double check, exchange information show on LCD display, users need to type PIN code to make verification, and press button to confirm o All exchange information is analyzed inside the key to prevent information leakage and data falsification. The mtoken products device address is uniquely assigned and is used when setting up pairing connections with other Bluetooth devices. Get more technical information on Bluetooth technology including core specifications, FAQs and Quick Reference Guides. Links to tools and information: o Quick Reference Guide o Download the Core Specification Portability & Usability The mtoken BLE ecosystem of products are especially convenient in situations that require secureauthentication and when smart card readers are not available.features built in Lithium ion battery for long time usage support without need to charge by USB connection. Mobility Convenience& Compatibility Highly scalable Leverages existing infrastructure and supports both mobile operating systems and major desktop operating systems including Windows, Linux, and OS X. Also devices in this series can be customized with acustomer s logo and other branding requirements. Mobile terminals and OS supported o ios Terminals running ios 6.0 and above o Android Terminals supporting Android 4.3 and Bluetooth 4.0 12 New Generation (NG) Wireless Token Century Longmai Technology Co., Ltd

Bluetooth Low Energy in Wireless PKI deployments mtoken BLE ecosystem Case study o All Windows 8+ and Windows Phone devices supporting for Bluetooth communication mtoken BLE ecosystem products are fully compatible with Apple products and Android mobile terminals. o Desktop OS: supports for Windows, Linux, and Mac OS X. Users could use USB interface with CSP, PKCS11 middleware and corresponding tools to operate and manage the token device. o Bluetooth communication: We offer different model versions to support for latest Bluetooth Low energy and earlier Bluetooth core versions. The Bluetooth Low energy model version are recommended since they are backward compatible and fully compatible with both Android and IOS devices. Multiple applications Security & Flexibility The mtoken BLE ecosystem products are designed for secure storage of cryptographic keys and certificates, strong authentication, encryption, and digital signature of email and data while supporting non- repudiation, a crucial feature for proof of financial transactions. They also offer extended flexibility while securing a broad range of applications when provisioned with custom Middleware. Meanwhile, the custom Middleware integrates Century Longmai s smart card cryptography with Public Key Infrastructure (PKI) services to realize high level access control and network security. Card Operating System Features Century Longmai self-designed Card Operating System (COS) with proprietary IP: o Designed according to FIPS 140-2 standards. o Meet ISO7816-4 communication standards featuring secure messaging to ensure confidentiality between token device and application o Supports for storage of X.509 v3 digital certificates and PKCS12 certificate importing o Onboard RSA 2048 key pair generation, signature and encryption o Supports DES, 3DES, AES128/192/256, SHA1/SHA256/SHA384/SHA512, RSA(1024/2048) 13 New Generation (NG) Wireless Token Century Longmai Technology Co., Ltd

Bluetooth Low Energy in Wireless PKI deployments mtoken BLE ecosystem Case study o Supports multi-applications, multi-containers and storage of multiple certificates on one device. o Supports custom and standard Middleware such as MS CAPI, PKCS11. 4. mtoken BLE-B1 Overview Overview The mtoken BLE-B1 offers all the power of a multi-applicationsmart card token in a USB form factor with additional capabilities of Wireless PKI, making it anideal solution for organizations that require a combination of security, portability, robustness and convenience for their end-users. mtoken BLE-B1 is single button USB and Bluetooth powered PKI solution, easy-tocarry and operate, can be applied in multiple enterprise mobile systems. It supports for USB connection and Bluetooth communication:- USB communication model is designed to work exclusively with desktop terminals Bluetooth communication model is specifically designed to securedata and data transmission on mobile terminals. In addition to support for PKCS11, CSP, X.509 digital certificates, the mtoken BLE-B1 supports international algorithms such as DES, 3DES, AES, RSA and SHA1/256/512and is able to meet multiple PKI application requirements. Design The mtoken BLE-B1 features a dramatic innovative and seamless design. The mtoken BLE-B1Panel features the following components: 14 mtoken BLE-B1 Overview Century Longmai Technology Co., Ltd

Bluetooth Low Energy in Wireless PKI deployment mtoken BLE Case study System Status Indicator Power button Bluetooth LED indicator BLE SYS CHR Activation/ Confirmation Button Charging LED indicator o Power Button - Though the device features an auto power-off mode, users are highly recommended to turn off the device manually when not in use. o Activate/Confirm Button - This button is multi-function button: When the system or token is in inactive state, pressing this button re-activates the system or token; After powering on the token, user needs to press hold this button for at least one second for token to transitinto working state. o LED Indicator lamps - includes 3 LED light indicators to differentiate device and system status. Operation Public

Bluetooth Low Energy in Wireless PKI deployment mtoken BLE Case study Disconnected Power ON Power OFF Long Press Discoverable Connecting Connected Time out Auto time out Activation Sleep Fig 4-1 mtoken BLE-B1 workflow Power On o Power on the device with Power button. o Press and hold the Activation button for at least 1 second, the Green and Blue LED indicator will light at the same time. At this stage, the token is in standby mode -waiting for connections. Initial Connection and Pairing A flashing Blue LED light indicates standby mode, and it turn to steady Blue after connection. System Status If no operation with the token for 60 seconds, the token system goes in sleep mode. At this time, the BLUE LED light is turned off, and the GREEN LED light keeps flashing slowly. Press the Activation button to re-activate the device. Power off & Auto Power Off The mtoken BLE-B1 supports power save mode i.e. the token system will automatically turn off after 60 seconds of inactivity. User must press hold the activation button to turn on the Bluetooth token after the device is automatically or manually turned off. User is suggested to turn off the device manually if not in usage for a long time. Public

Bluetooth Low Energy in Wireless PKI deployment mtoken BLE Case study Charging Users can charge the token via USB interface connection. The Red LED indicator lights during charging, and is turned off when the device is fully charged. The entire charging takes about 1hour, and the token can be used during its charging. Important Notes o All mtoken BLE ecosystem products support for both USB and Bluetooth wireless communication: o The USB interface is designed to connect with PC terminals o Bluetooth communication is designed specifically forconnection with mobile terminals o Using two models at the same time is NOT recommended o The effective operation range of mtoken BLE ecosystem devices is 2 meters * o * Data based on internal testing. Actual performance may vary Public

Bluetooth Low Energy in Wireless PKI deployment mtoken BLE Case study 5. Appendix A: Glossary o 2FA Two factor authentication o BLE Bluetooth Low Energy o Chip: An electronic component that performs logic, processing, and/or memory functions. o Connectable: A Bluetooth enabled device in range that will respond to another device and set up a connection. o Connected: A Bluetooth enabled device is within range and communicating over the Bluetooth wireless link. The Bluetooth preference pane shows a green dot indicating a successful connection. o Device discovery: A process that allows one device to detect another device. o Discoverable: When a Bluetooth enabled device is discoverable, other Bluetooth devices can detect, pair, or connect to it. Century Longmai wireless token will flash its indicator light when it is in discovery mode and will turn off discovery mode after approximately one minutes* to save battery life. o HCE Host Card Emulation o IC Integrated circuit. o ISMIndustrial, Scientific, and Medical o Issuer: The bank that provides a credit card to a cardholder. o Key: In encryption and digital signatures, a value used in combination with a cryptographic algorithm to encrypt or decrypt data. o Mobile contactless payments: A payment to a physical merchant that is initiated from an NFC-enabled mobile phone held in close proximity (within a few centimeters) of the merchant's POS equipment. o Mobile proximity payments: Mobile payment transaction in which a consumer uses a phone to pay for goods or services at a physical POS. Public

Bluetooth Low Energy in Wireless PKI deployment mtoken BLE Case study o Name discovery: The mechanism that requests and receives a device name. o NFC Near Field Communication o Pairing: The process of creating a persistent link between two Bluetooth devices, which may involve the exchange of a passkey between two devices. *This may only occur once; future connections between the devices are authenticated automatically. o Passkey: The authentication key used to establish a link between devices. A passkey is similar to a password, but the passkey is only used once: you enter the passkey once and won t need to remember it. o POS Point-of-sale: The merchant s physical location where the payment transaction takes place. This term is also used to describe the equipment used by the merchant to complete the payment transaction. o Profile: A Bluetooth service that may be provided or used by a Bluetooth device. Such services can include file exchange, stereo audio, and tethering. o SE Secure element: The component in a mobile phone that provides security and confidentiality. o Smart card: A device that includes an embedded secure integrated circuit that can be either a secure microcontroller or equivalent intelligence with internal memory or a secure memory chip alone. o SMS Short Message Service o Tethering: The use of an Internet enabled smart phone linked via Bluetooth to a computer to provide Internet services to the computer. Sources: http://www.pcmag.com/encyclopedia_term/ http://lm-infosec.com/techno/glossary-terms/ Public

Bluetooth Low Energy in Wireless PKI deployment mtoken BLE Case study 6. Appendix B: Document Revision History The table below describes the changes to the BLE in Mobile Payments White Paper. Document Name Revision and Date Version 1.0, 2015-02-29 Status Notes Status Final Release R1 Initial Release 7. About Century Longmai Established in 2003, Century Longmai Technology Co., Ltd is one of the most leading digital security device vendors in China with extended experience in developing latest generation of digital security solutions and products for secure information access and transmission. Our product portfolios include USB PKI token, wireless PKI tokens, OTP tokens, smartcard, JAVA cards, software license dongles, Smartcard readers, Electronic document protection (DLP) solutions and OEM services. Proved to be secure and convenient, our solutions and products are dedicated to help customers build safe, efficient and sustainable networks, financial systems and enjoy secure access to data and information everywhere whenever they want; you can work with us to benefit from deployment of standard technology solutions and our industry experience: o We have over 12 years' experience in digital security industry o We offer a wide range of technologies in the Information security industry o We have Bluetooth Low energy products that realize true wireless PKI. We guide our customers through the various stages of information privacy and security deployments and support them further with a range of customizable products and services. We really do much more than you can imagine! GET STARTED Have a question or Need more info? Public

Bluetooth Low Energy in Wireless PKI deployment mtoken BLE Case study To learn more on how the unique features of mtoken BLE ecosystem offers strong security, differential access to data and definitive auditing in multiple industries, please request for access for mtoken BLE ecosystem Technical Paper or contact our sales directly. Contact Details Century Longmai Technology Co., Ltd 3/F, GongKong Building, No.1, WangZhuang Road, Haidian District, Beijing, P.R.China Postcode: 100083 Tel: (86) 10-62323636 Fax: (86) 10-62313636 Sales E-mail: info@longmai.net Support E-mail: support@longmai.net Website: http://lm-infosec.com/ Public

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information