SOSSE. Matthias Brüstle <m@mbsks.franken.de> Simple Operating System for Smartcard Education. Kommunikationsnetz Franken e.v.



Similar documents
Introducing etoken. What is etoken?

Smart Card Technology Capabilities

Specifications for the Smart-Card Operating System for Transport Applications (SCOSTA)

Computer Automation Techniques. Arthur Carroll

Chapter 3: Operating-System Structures. Common System Components

Java Card. Smartcards. Demos. . p.1/30

Computer Architecture. Secure communication and encryption.

Objectives. Chapter 2: Operating-System Structures. Operating System Services (Cont.) Operating System Services. Operating System Services (Cont.

Last Class: OS and Computer Architecture. Last Class: OS and Computer Architecture

OPERATING SYSTEM SERVICES

Smart Card. Smart Card applications

Selection Criteria for ZigBee Development Kits

Last Class: OS and Computer Architecture. Last Class: OS and Computer Architecture

Chapter 2 System Structures

Mobile Operating Systems. Week I

SIP Protocol as a Communication Bus to Control Embedded Devices

System Structures. Services Interface Structure

Example of Standard API

SecureDoc Disk Encryption Cryptographic Engine

CS420: Operating Systems OS Services & System Calls

Embedded Linux development training 4 days session

Java Card TM Open Platform for Smart Cards

Operating System Structures

CS 377: Operating Systems. Outline. A review of what you ve learned, and how it applies to a real operating system. Lecture 25 - Linux Case Study

Index. 1-FLYPOS hardware/firmware Technology Overview 2-FLYPOS software architecture 3-Gateway/Acquirer Interface 4-Letters of Approval

Help us make this document better smarttech.com/docfeedback/ Security information

Chapter 3 Operating-System Structures

Applying Cryptography as a Service to Mobile Applications

CS 3530 Operating Systems. L02 OS Intro Part 1 Dr. Ken Hoganson

CS3600 SYSTEMS AND NETWORKS

GoldKey Product Info. Do not leave your Information Assets at risk Read On... Detailed Product Catalogue for GoldKey

Industrial Flash Storage Trends in Software and Security

UM0586 User manual. STM32 Cryptographic Library. Introduction

Validating Tools for Cell Phone Forensics

Cryptographic functions in a smart card

Embedded Software Development: Spottbillige Hardware + OSS = Zum Spielen zu Schade!

TABLE OF CONTENTS NETWORK SECURITY 2...1

Distributed File Systems

Security Technical. Overview. BlackBerry Enterprise Service 10. BlackBerry Device Service Solution Version: 10.2

CCNA 2 Chapter 5. Managing Cisco IOS Software

Lesson-3 CASE STUDY OF AN EMBEDDED SYSTEM FOR SMART CARD

From Digital Television to Internet? A general technical overview of the- DVB- Multimedia Home Platform Specifications

The Implementation of Signing e-document by Using the Wireless Identity Module in Cellular Phone

Linux Kernel Architecture

MDG. MULTOS Developer's Guide. MAO-DOC-TEC-005 v MAOSCO Limited. MULTOS is a registered trademark of MULTOS Limited.

Kernel Types System Calls. Operating Systems. Autumn 2013 CS4023

EV-8000S. Features & Technical Specifications. EV-8000S Major Features & Specifications 1

Internet of things (IOT) applications covering industrial domain. Dev Bhattacharya

Wireless Microcontrollers for Environment Management, Asset Tracking and Consumer. October 2009

ERserver. iseries. Secure Sockets Layer (SSL)

Disk encryption... (not only) in Linux. Milan Brož

Smartcards with Webservice Interface

The e-payment Systems

Using BitLocker As Part Of A Customer Data Protection Program: Part 1

1. Product Overview 2. Product Features 3. Comparison Chart 4. Product Applications 5. Order Information 6. Q & A

Using AES 256 bit Encryption

Technical Terms and Conditions

Measurement and Analysis Introduction of ISO7816 (Smart Card)

Secure your Privacy. jrsys, Inc. All rights reserved.

Firmware security features in HP Compaq business notebooks

Smart Card Application Standard Draft

Certicom Security for Government Suppliers developing client-side products to meet the US Government FIPS security requirement

SIM900_Custom Application Building Tutorial_Application Note_V1.00

Chapter 11 Security+ Guide to Network Security Fundamentals, Third Edition Basic Cryptography

PC Base Adapter Daughter Card UART GPIO. Figure 1. ToolStick Development Platform Block Diagram

RVS Seminar Deployment and Performance Analysis of JavaCards in a Heterogenous Environment. Carolin Latze University of Berne

Network Defense Tools

Information Technology Solutions. Managed IT Services

Enhancing Web Application Security

Display Message on Notice Board using GSM

How To Write A Windows Operating System (Windows) (For Linux) (Windows 2) (Programming) (Operating System) (Permanent) (Powerbook) (Unix) (Amd64) (Win2) (X

Navigating Endpoint Encryption Technologies

I vantaggi dell?utilizzo di JAVA nella strategia M2M

Administration Guide. Wireless software upgrades

Smart Card Evolution

Secure My-d TM and Mifare TM RFID reader system by using a security access module Erich Englbrecht (info@eonline.de) V0.1draft

Introduction to Virtual Machines

Functional Specification of the OpenPGP application on ISO Smart Card Operating Systems

COS 318: Operating Systems

Study of Java Card and its Application 1 Nainesh Rawani, 2 Akhil Patel

Solution for Non-Repudiation in GSM WAP Applications

JTC 1/SC 27Security Techniques - Översikt arbetsgrupper och standarder

Windows 2000 Security Architecture. Peter Brundrett Program Manager Windows 2000 Security Microsoft Corporation

M2M, IoT, DEVICE MANAGEMENT: ONE PROTOCOL TO RULE THEM ALL? Julien Vermillard, Sierra Wireless

Analysis of advanced issues in mobile security in android operating system

Reverse engineering smart cards

The OpenEapSmartcard platform. Pr Pascal Urien ENST Paris

Everything is Terrible

Surveillance System Using Wireless Sensor Networks

CHAPTER 17: File Management

An Embedded Wireless Mini-Server with Database Support

White Paper. Options for Two Factor Authentication. Authors: Andrew Kemshall Phil Underwood. Date: July 2007

Embedded Linux development with Buildroot training 3-day session

Questions from The New SensorTag - IoT Made Easy Webinar

LEGO NXT-based Robotic Arm

Secure Portable Data Server. 25/06/2012 Alexei Troussov SMIS team INRIA Rocquencourt

MSc Computer Security and Forensics. Examinations for / Semester 1

That Point of Sale is a PoS

Star System Deitel & Associates, Inc. All rights reserved.

KURA M2M/IoT Gateway. reducing the distance between embedded and enterprise technologies. Tiziano Modotti, October 28 th, 2014

Transcription:

Matthias Brüstle Smart Cards mit SOSSE sind lecker 1 SOSSE Simple Operating System for Smartcard Education Matthias Brüstle <m@mbsks.franken.de> Kommunikationsnetz Franken e.v.

Matthias Brüstle Smart Cards mit SOSSE sind lecker 2 Overview Smart Card Operating System Open Source GPLed Runs on easily available hardware Suitable for education Not suitable for security applications

Matthias Brüstle Smart Cards mit SOSSE sind lecker 3 Why? Open Source PC operating systems: */Linux, *BSD No equivalent for smart cards Only cards with VMs (Java, MEL, Basic) Therefore no tinkering on OS level No easy way to learn smart card OS programming And not promotion of pay TV cracking!

Matthias Brüstle Smart Cards mit SOSSE sind lecker 4 Smart Card Hardware AVR commercial of the shelf controller: AT90S8515/35: 512B RAM, 8kB Flash, 512B EEPROM ATmega161: 1kB TAM, 16kB Flash, 512B EEPROM Packaged as smart card from satellite shops (Funcard) Card flashing devices

Matthias Brüstle Smart Cards mit SOSSE sind lecker 5 In System Programming Flash and EEPROM writeable with special protocol

Matthias Brüstle Smart Cards mit SOSSE sind lecker 6 Design of SOSSE Similar to commercial systems Based on ISO/IEC 7816 Reduced functionality because of small code space: 8kB 16kB Flash Commercial 6kB 300kB Flair of phase 1 GSM SIM

Matthias Brüstle Smart Cards mit SOSSE sind lecker 7 Design of SOSSE Modular Unneeded parts can be omitted Frees code space for own code Implemented in C Easier to understand Portable Modern card operating systems are also developed in C

Matthias Brüstle Smart Cards mit SOSSE sind lecker 8 Development Software GNU C Compiler for the AVR Small code size even compared to commercial compilers GCC 3.0.2 for classic AVR: 486 bytes SDCC 2.3.0 for classic AVR: 1030 bytes Code Vision AVR 1.0.2.1b for classic AVR: 476 bytes Keil C51 6.11d for 8051 (compact memory model): 377 bytes

Matthias Brüstle Smart Cards mit SOSSE sind lecker 9 Development Software (cont.) Software for writing binary to card: PonyProg TwoProg...

Matthias Brüstle Smart Cards mit SOSSE sind lecker 10 Building Blocks Hardware Abstraction Layer Filesystem Transactions Streams Access Control Cryptography Commands

Matthias Brüstle Smart Cards mit SOSSE sind lecker 11 Hardware Abstraction Layer Improves portability Provided functions: Initialization of hardware I/O: with T=0 error recovery EEPROM: Continuous address space for all EEPROMs RNG: True or pseudo random number generator

Matthias Brüstle Smart Cards mit SOSSE sind lecker 12 Hardware Abstraction Layer (cont.) Supported Systems: AVR Internal and external EEPROM Unix (*/Linux) No T=0 error recovery

Matthias Brüstle Smart Cards mit SOSSE sind lecker 13 File System Very simple to reduce code size MF, DFs and transparent (plain) EFs supported 6 byte file header: Size 2 bytes File body length FID 2 bytes File ID Type 1 byte File type (DF, tr. EF) AC 1 byte Access contr (PIN/Key)

Matthias Brüstle Smart Cards mit SOSSE sind lecker 14 Cryptography Small code size Doesn t have to be very strong TEA fits well on AVR architecture 658 bytes on AVR Over 1kB on other 8bit architectures Standard authentication commands External Authenticate Internal Authenticate

Matthias Brüstle Smart Cards mit SOSSE sind lecker 15 Commands Create / Delete Select Read / Update Binary External Authenticate / Get Challenge Internal Authenticate Change / Unblock / Verify PIN Get Response Read / Write EEPROM

Matthias Brüstle Smart Cards mit SOSSE sind lecker 16 Development Aids Doxygen documentation User manual Source documentation CT API library with virtual reader and card Development and testing without AVR hardware Easy debugging

Matthias Brüstle Smart Cards mit SOSSE sind lecker 17 Project Suggestions Encryption of external EEPROM with system key Encryption of total EEPROM with user key Card intrusion detection Mobile firmware storage Remotely keyed encryption system Elliptic Curve Cryptography (ATmega)

Matthias Brüstle Smart Cards mit SOSSE sind lecker 18 Links SOSSE: http://www.mbsks.franken.de/sosse/ AVR: http://www.atmel.com/atmel/products/ prod23.html GCC: http://combio.de/avr/ TEA: http://www.cl.cam.ac.uk/ftp/users/djw3/ tea.ps Rankl, W.; Effing, W. Handbuch der Chipkarten, 4. Aufl.; Hanser: 2002

Matthias Brüstle Smart Cards mit SOSSE sind lecker 19 Mahlzeit Matthias Brüstle m@mbsks.franken.de ftp://ftp.franken.de/pub/crypt/chipcards/

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information