from smart card to trusted personal device - reset

R E S E T Roadmap for European research on Smartcard

Technologies

RESET Seminar3 April 2003

Brussels

FROM SMART CARD TO TRUSTED PERSONAL DEVICE

RESET IST-2001-39046

RESET SeminarAgenda

09h30 welcome address Lutz Martiny09h30 09h45 introduction to Reset Olivier Trébucq09h45 10h45 Reset WGs deliverables Reset WG leaders10h45 11h00 Coffee break11h00 12h45 Challenges for technology Pieter Hartel

Ulrich BükerJean-Paul ThomassonAlbert Mödl

12h45 13h00 Lessons from Reset Bruno Le DantecQ&A session

13h00 14h00 Lunch break

14h00 15h45 Discussion (other roadmaps and audience)Lutz Martiny 15h45 16h00 Conclusions from discussions16h00 16h15 FP6 orientations on trust & security Gérard Galler16h15 16h30 an IP for trusted personal devices Bruno Cucinelli16h30 Wrap-up and seminar closing

R E S E T : a technology roadmap for

smart cards & trusted personal devices

Olivier TREBUCQ RESET Technology advisor

RESET public seminar

Brussels, 03 / 04 / 2003


RESET : WHAT is it ?

The first ever made attempt of both smart card industry and academic stakeholders to assess R&D priorities for technologies and standardsA concerted approach on technology exploitation, implementation scenarios, market requirements and application environments105 experts involved : suppliers of SC systems components research & technology institutions Cards and accepting devices issuing organisations


RESET : WHY is it ?

A strong background: smart card is now acknowledged worldwide as a major component of trust & security systems, within the global information and communication society

A major requirement for enhancing business: to overcome identified technology bottlenecks which prevent smart card to consolidate its current position and to address new application areas

A tremendous opportunity: to focus on common R&D priorities at an early stage of the FP6, for consolidating and sharing expertise of European industry and academic players

A key challenge: to achieve the successful migration from current generation of smart cards to innovative trusted personal devices


RESET : WHY is it (cont’d)?

A specific complexity:

smart card is the resulting combination of a wide range of HW and SW technologies, with related management features, which require being specified, developed and integrated through a quite interactive process, especially for designing secure and tamper resistant systems

A technology supported by a large community of developers:

through evolution towards open platforms and systems, an increasing number of people have access to high level language and programming tools, for enriching the scope of middleware and applications


RESET : WHY is it (cont’d)?

A never ending arms race between hackers and security providers:

security, which is by nature the first asset of smart card systems, is a continuous challenge for information systems providers, especially when transactions such as payment or electronic signature are performed

An activity increasingly mixing technology, marketing and legal requirements:

to address detailed specifications of issuing organisations, suppliers must comply to quite extended sets of requirements, which often refer to legal frameworks, as for identification, protection of personal data, trusted e-commerce procedures,…


RESET : which target(s) ?

Communication and networking

Systems and S/W platforms

Smart card accepting devices, interfaces and biometry

Card embedded peripherals, subsystems and micro-systems packaging

High-end cryptography, tamper resistant and security technologies

Micro-electronics and system on chip


RESET : which target(s) ?

Technologies for Security and Trust :

secure chip design physical/logical attacks secure SW and protocols and high-end cryptography Security certification

Technologies for improved integration of trusted personal devices in networked systems & environments :

High speed communication protocols middle-ware components multi-interfaces protocols (USB, BT, W-LAN) high level programming languages & tools Networked managed objects


RESET : which target(s) ?Technologies for safe management of trusted personal devices :

real time open OS platforms for secure applet loading & maintenance multi-tasking OS evaluation and test of HW and SW components distributed systems (peer to peer VS client/server)

Technologies for System on Chip / on Card (smart objects):

Non Volatile Memories = Fe RAM, Flash, MRAM,… memory management / partitioning assembly / embedding techniques power supply and management Chip re-configurability


Market requirements for smart cards & trusted personal devices: Strengthening current

positions

Telecom : new ecosystem featuring extended data rates (UMTS), increased trust requirements and strong interface with Internet V2 for addressing added value services (locate, instantiate, operate) Management of complex operated services

Customer Relationship management user identification and profiling protection of personal data

Safe and dynamic management of applications (OTA) Strong authentication and consent management into

heterogeneous communication systems (GSM, W-LAN) Enhanced man-machine interface (contact-less…)


Market requirements for smart cards & trusted personal devices: strengthening current positions

(cont’d)

2) Financial services: in the context of the worldwide migration of bank cards towards chip embedding, requirements for enhanced security and multi-application schemes Interoperable multi-application platforms Improved authentication mechanisms (biometry) Improved communication services for e-

transactions (TCPIP, USB, MMC, XML,…) Distributed applications model and evolution

towards open infrastructures (internet)


Market requirements for smart cards & trusted personal devices: featuring new opportunities

1) Global digital ID and data management into heterogeneous networks:

Complex algorithm matching (PK, biometry,…) Full speed online encryption (DRM) Repository services (unified way to access any type of data)

2) Generic technology drivers :

JavaCard standard (V2.2, V3.0) Improved security level (EAL 5+, 6, 7, over 7) Card interface with external networks / systems:

dynamic memory management low power compliance (GSM/3G) increased computing power on-board multi-browsers Interactive & secure links within ambient intelligent environments


RESET : from smart card to trusted personal devices

Smart card:

a piece of plastic, with a standardized body format, embedding an electronic system packaged into a µmodule, made of either a single memory chip or a microcontroller one (ROM + RAM + EEPROM), connected to a card accepting device which provides interface to the network

Trusted personal device:

a small and portable object, which can take the form of a standard plastic card, and which is featuring several of the main following characteristics:

- increased autonomy: no master/slave relationship with reader- user-friendly interface, with holder’s control on device- direct interactivity with e-environment- extended data processing capability- huge memory capacity (up to Gigabytes)- fully networked object- extended embedded components (screen, keyboard, biometric sensor,…)- holding, protecting and managing owner’s specific data (identity/credentials)


Conclusion / Introduction:RESET is…

…a fantastic community of experts experienced in strategic domains of the information society

…an unprecedented forum for addressing technology requirements for new trusted devices

…a tool for continuously supporting the dialogue between players of the e-society, on both supply and demand sides

…a strong commitment of the smart card industry and academic players to migrate from the smart card generation to the “trusted personal device” era

…a beginning, not at all an end…

And now, let us address the concrete outcome of the work

performed at this stage in Reset !

Thank you for listening !

RESET Web site :http://www.ercim.org/reset

Reset public Seminar

Brussels 03 / 04 / 2003