Upload
oksystem
View
144
Download
1
Embed Size (px)
DESCRIPTION
Citation preview
Chytré karty dnes a za 20 let...
SmartCardForum 2011SmartCardForum 2011
Jan NěmecGemalto
Květen 2011
Agenda
Chytré karty včera, dnes a za 20 let
eGo
SmartCardForum 2011 – Chytré karty dnes a za 20 let ... 2
eGo
Bezpečnost mobilních telefonů
Smart cards
SmartCardForum 2011 – Chytré karty dnes a za 20 let ... 3
Smart Cards predecessors …
1950 - plastic cards used for payment issued by Diners Club
200 customers in 27 restaurants in New York
SmartCardForum 2011 – Chytré karty dnes a za 20 let ... 4
1960ths - magnetic stripe cards
London Transit Authority installed a magnetic stripe system
… Smart Cards vision 5 year ago …
SmartCardForum 2011 – Chytré karty dnes a za 20 let ... 5
Source: Chandan – blog
… Smart Cards vision today
SmartCardForum 2011 – Chytré karty dnes a za 20 let ... 6
Sources: http://www.upgradeyourbody.comhttp://www.ego-project.eu/
SmartCardForum 2011 – Chytré karty dnes a za 20 let ... 7
What you touch is yours
Everywhere…
Any Phone is mine, anywhere!
SmartCardForum 2011 – Chytré karty dnes a za 20 let ... 8
Eve has:• borrowed a phone• placed a phone call• returned the phone
Eve did not:• Insert a card• Enter a code in the handset• Charge the call on the phone
owner’s bill
Fast…
Just take it!
SmartCardForum 2011 – Chytré karty dnes a za 20 let ... 9
Jeanne has:• Selected her drink• Taken it
Jeanne did not:• Open her handbag and grab her
purse• Use her credit card• Insert coins
Friendly…
No more user name/password!
SmartCardForum 2011 – Chytré karty dnes a za 20 let ... 10
Pierre has:• touched his mouse• Worked within his private
environment
Pierre did not:• Enter a login and a password• Insert a card
Intuitive…
Open a door without handling a key!
SmartCardForum 2011 – Chytré karty dnes a za 20 let ... 11
John has:• Opened the door
John did not• turn a key
Safe…
Only my swimming suit and my bath-towel!
SmartCardForum 2011 – Chytré karty dnes a za 20 let ... 12
Eve has:• closed her home door• Stepped into her car• Driven to the beach• Purchased a bottle of iced tea• Placed a phone call
Eve did not:• Be concerned about leaving
anything on the beach during her bath
A wireless worldUbiquity• Everywhere• I can use all objects around
me
Security• All transactions are:
anonymous, authenticated and non traceable
SmartCardForum 2011 – Chytré karty dnes a za 20 let ... 13
and non traceable
Autonomy• Guarantee of mission of at
least a day
Connectivity• Easy and intuitive pairing and
collaboration between smart objects
No more physical connectors
Easy pairing principle
The principle involves two wireless technologies:• INTRA-BODY Communication:
• very short operational range to unambiguously select the device to connect with
• Ultra -Wide Band (UWB) with RTLS (Real Time Location Service)
SmartCardForum 2011 – Chytré karty dnes a za 20 let ... 14
• Ultra -Wide Band (UWB) with RTLS (Real Time Location Service)• Medium operational range, high-speed exchange for application data
Step 1: Securely Pair two devices and bootstrap the UWB communicationStep 2: Start Application via a fast and secure wireless network and monitor the distance between the two devices to control an operational and secure bubble
eGo: a wearable device
eGo can be placed anywhere on the user’s body• An NFC antenna would require to be
in close vicinity of the “reader” object, therefore would be wearable only when positioned close to the user’s hand. Reversely, IBC antenna can be placed anywhere on the user’s
SmartCardForum 2011 – Chytré karty dnes a za 20 let ... 15
be placed anywhere on the user’s body. IBC-based devices are truly wearable: intra-body communication will bridge the two devices.
Physically attached to clothes or garments you wear• Has to be kept close to your body at
all time
No standard form factors
Intra-body communication
CapacitiveSensing
CapacitiveSensing
Capacitive
SmartCardForum 2011 – Chytré karty dnes a za 20 let ... 16
�Ultra-low power�Low frequency (< 10 MHz)�Conveys no application data�Short range (< 20 mm)�No direct skin contact needed. Work through gloves or clothes�Low data rates (few dozens of kbit/s)
Sensing
eGo: Two -Factor Authentication
1- What you wear• eGo is a wearable device
2- Who you are
SmartCardForum 2011 – Chytré karty dnes a za 20 let ... 17
2- Who you are• A Single-Sign-On based
on a fingerprint sensor
eGo: basic security concerns
Active• When eGo is
attached to your
SmartCardForum 2011 – Chytré karty dnes a za 20 let ... 18
attached to your body and after a positive SSO
Inactive• When eGo is not
attached to your body
eGo: Enhanced Privacy Protection
All transactions may be:• Anonymous• Non traceable• Authenticated
Multiple Identity/Attributes
SmartCardForum 2011 – Chytré karty dnes a za 20 let ... 19
Multiple Identity/Attributes Providers supportInherits from smart cards technology• Javacard• Global Platform
Application Distance Control with RTLStechnology
RTLS (Real Time Location Service) based control• +/- 10 cm accuracy• Courtesy of IEEE802.15.4a
precision location
SmartCardForum 2011 – Chytré karty dnes a za 20 let ... 20
Relay-attack protection• Application bubble controlled by
the application• Completed with Out-Of-Band
agreement
eGo and Safety
Intra-Body Communication• eGo embeds only the receiver• eGo-ready device generates electric field bursts. SAR is 10 millions
times lower than a mobile phone• Electric field based technologies are already use for:
• biomedical sensors• Sensitive PC Pads, touch display• Sensitive button (lift button, electronic oven control,…)
SmartCardForum 2011 – Chytré karty dnes a za 20 let ... 21
• Sensitive button (lift button, electronic oven control,…)
UWB IEEE802.15.4a• Ultra low spectral density:
• 1000 times less than Bluetooth class 1
• Specific Absorption Rate• 3.5 GHz to 8GHz out of range of the water absorption (e.g. Body) which
is around 2.4 GHz• Low power 3000 times lower than mobile phone
• 99% of the working time in standby mode• The UWB and Intra-body technology are safe
Security in
SmartCardForum 2011 – Chytré karty dnes a za 20 let ... 22
Security in Handset Market
Malware Applications and Security Holesare Growing …
January 11, 2010: Android app steals bank login details An application available via Google's Android Market was infected with a trojandesigned to steal users' bank login details (…)
May 27, 2010: Ubuntu Lucid (PC) can read your iPhone's secrets
SmartCardForum 2011 – Chytré karty dnes a za 20 let ... 23
May 27, 2010: Ubuntu Lucid (PC) can read your iPhone's secretsDo you have a PIN code on your iPhone? Well, it doesn’t prevent access to your data … When hooking up a non-jailbroken, fully up-to-date iPhone 3GS to a PC running Lucid Lynx …
Malware and Attacks in Smartphones are Growing !
SmartCardForum 2011 – Chytré karty dnes a za 20 let ... 24
Users are Delocking their Smarphones…
Step 1: Set up ADB Step 2: Push exploid to /sqlite_stmt_journals "adb push exploid/sqlite_stmt_journals"Step 3: type "adb shell"Step 4: type "cd sqlite_stmt_journals"Step 5: type "chmod 755 exploid"
SmartCardForum 2011 – Chytré karty dnes a za 20 let ... 25
Step 6: type "./exploid" and follow directions on screenStep 7: type "rootshell"Step 8: type in password "secretlol"
Step 9: you’re in root!
⇒⇒⇒⇒ Used by users to get accessand full control to Androidresources by exploitingAndroid security holes
Android Case
Android security model based on end-user• User validates the application permissions at installation
• Example: application X needs to access localizationinformation
• User is capable of modifying the whole Android system (fully open model)
SmartCardForum 2011 – Chytré karty dnes a za 20 let ... 26
Android is a large and complex system� Security holes that can be used by user and malwaree.g. Just a few days to jailbreak a new Android phone model
Any software or sensitive data needs to be isolated from Android
How to Secure Sensitive Applications?
Software to be executed needs to be secured(code and data such as cryptographic keys)• Principle: isolation in a secure environment
1. Security for downloadable applications2. Use of Trusted Execution Environment (TEE)3. Use of external component: Secure Element
SmartCardForum 2011 – Chytré karty dnes a za 20 let ... 27
User Interface needs to be secured• Sensitive information entry (e.g. password)• Transaction data to be validated (e.g. transaction
amount)• Principle: Trusted User Interface via Trusted Execution
Environment
TEE provides hardware-basedisolation from Rich OS such as Android, Windows Phone and Symbian.TEE runs on the main deviceprocessorTEE has privileged access to deviceresources (user interface, crypto
What is a Trusted Execution Environment (TEE)?
Rich OS Application Environment Trusted Execution Environment
GlobalPlatformTEEInternalAPI
Payment Corporate
Client Applications
TrustedApplication
DRM
TrustedApplication
Payment
TrustedApplicationCorporate
GlobalPlatformTEE Internal APIGlobalPlatform TEE Client API
SmartCardForum 2011 – Chytré karty dnes a za 20 let ... 28
resources (user interface, crypto accelerators, secure elements, …)
Advanced Trusted Environment: OMTP TR1
Security Requirements byHardware Platform
Rich OS
Trusted CoreEnvironment
TrustedFunctions
HW Secure Resources
TEE Kernel
GlobalPlatform TEE Client API
Trusted Execution Environment
Innovative solution from the mobile industryHardware protection exists in mobile processors to isolate critical data and code
Main OS Environment Trusted Execution Environment
SECURE SERVICES
APPLICATIONS
SmartCardForum 2011 – Chytré karty dnes a za 20 let ... 29
SmartphoneProcessor
OS
TRUSTED EXECUTION ENVIRONMENT OS
(Trusted LogicTrusted Foundations™)
APPLICATIONS
What GlobalPlatform Defines
Rich OS Application Environment Trusted Execution Environment
GlobalPlatform TEEInternal API
Payment Corporate
GlobalPlatformTEE Functional API
GlobalPlatformTEE Functional API
Client Applications
TrustedApplication
DRM
TrustedApplication
Payment
TrustedApplicationCorporate
GlobalPlatform TEE Internal API
TEE APIs
SmartCardForum 2011 – Chytré karty dnes a za 20 let ... 30
Hardware Platform
Rich OS
GlobalPlatformTEE Client APITrusted CoreEnvironment
GlobalPlatform TEEInternal API
TrustedFunctions
TEE Functional APITEE Functional API
GlobalPlatform TEE Client API
HW Keys, Secure Storage,Trusted UI (Keypad, Screen),
Crypto accelerators,NFC controller,
Secure Element, etc.
HW SecureResources
EnvironmentTrusted Core Trusted
Functions
GlobalPlatform TEE Internal
TEE Kernel
API
TEE Compliance
and Security
Certification
Your questions ...
SmartCardForum 2011 – Chytré karty dnes a za 20 let ... 31
... thank you!