SmartCard Forum 2011 - Chytré karty dnes a za 20 let

Chytré karty dnes a za 20 let...

SmartCardForum 2011SmartCardForum 2011

Jan NěmecGemalto

Květen 2011

Agenda

Chytré karty včera, dnes a za 20 let

eGo

SmartCardForum 2011 – Chytré karty dnes a za 20 let ... 2

eGo

Bezpečnost mobilních telefonů

Smart cards


Smart Cards predecessors …

1950 - plastic cards used for payment issued by Diners Club

200 customers in 27 restaurants in New York


1960ths - magnetic stripe cards

London Transit Authority installed a magnetic stripe system

… Smart Cards vision 5 year ago …


Source: Chandan – blog

… Smart Cards vision today


Sources: http://www.upgradeyourbody.comhttp://www.ego-project.eu/


What you touch is yours

Everywhere…

Any Phone is mine, anywhere!


Eve has:• borrowed a phone• placed a phone call• returned the phone

Eve did not:• Insert a card• Enter a code in the handset• Charge the call on the phone

owner’s bill

Fast…

Just take it!


Jeanne has:• Selected her drink• Taken it

Jeanne did not:• Open her handbag and grab her

purse• Use her credit card• Insert coins

Friendly…

No more user name/password!


Pierre has:• touched his mouse• Worked within his private

environment

Pierre did not:• Enter a login and a password• Insert a card

Intuitive…

Open a door without handling a key!


John has:• Opened the door

John did not• turn a key

Safe…

Only my swimming suit and my bath-towel!


Eve has:• closed her home door• Stepped into her car• Driven to the beach• Purchased a bottle of iced tea• Placed a phone call

Eve did not:• Be concerned about leaving

anything on the beach during her bath

A wireless worldUbiquity• Everywhere• I can use all objects around

me

Security• All transactions are:

anonymous, authenticated and non traceable


and non traceable

Autonomy• Guarantee of mission of at

least a day

Connectivity• Easy and intuitive pairing and

collaboration between smart objects

No more physical connectors

Easy pairing principle

The principle involves two wireless technologies:• INTRA-BODY Communication:

• very short operational range to unambiguously select the device to connect with

• Ultra -Wide Band (UWB) with RTLS (Real Time Location Service)


• Ultra -Wide Band (UWB) with RTLS (Real Time Location Service)• Medium operational range, high-speed exchange for application data

Step 1: Securely Pair two devices and bootstrap the UWB communicationStep 2: Start Application via a fast and secure wireless network and monitor the distance between the two devices to control an operational and secure bubble

eGo: a wearable device

eGo can be placed anywhere on the user’s body• An NFC antenna would require to be

in close vicinity of the “reader” object, therefore would be wearable only when positioned close to the user’s hand. Reversely, IBC antenna can be placed anywhere on the user’s


be placed anywhere on the user’s body. IBC-based devices are truly wearable: intra-body communication will bridge the two devices.

Physically attached to clothes or garments you wear• Has to be kept close to your body at

all time

No standard form factors

Intra-body communication

CapacitiveSensing

CapacitiveSensing

Capacitive


�Ultra-low power�Low frequency (< 10 MHz)�Conveys no application data�Short range (< 20 mm)�No direct skin contact needed. Work through gloves or clothes�Low data rates (few dozens of kbit/s)

Sensing

eGo: Two -Factor Authentication

1- What you wear• eGo is a wearable device

2- Who you are


2- Who you are• A Single-Sign-On based

on a fingerprint sensor

eGo: basic security concerns

Active• When eGo is

attached to your


attached to your body and after a positive SSO

Inactive• When eGo is not

attached to your body

eGo: Enhanced Privacy Protection

All transactions may be:• Anonymous• Non traceable• Authenticated

Multiple Identity/Attributes


Multiple Identity/Attributes Providers supportInherits from smart cards technology• Javacard• Global Platform

Application Distance Control with RTLStechnology

RTLS (Real Time Location Service) based control• +/- 10 cm accuracy• Courtesy of IEEE802.15.4a

precision location


Relay-attack protection• Application bubble controlled by

the application• Completed with Out-Of-Band

agreement

eGo and Safety

Intra-Body Communication• eGo embeds only the receiver• eGo-ready device generates electric field bursts. SAR is 10 millions

times lower than a mobile phone• Electric field based technologies are already use for:

• biomedical sensors• Sensitive PC Pads, touch display• Sensitive button (lift button, electronic oven control,…)


• Sensitive button (lift button, electronic oven control,…)

UWB IEEE802.15.4a• Ultra low spectral density:

• 1000 times less than Bluetooth class 1

• Specific Absorption Rate• 3.5 GHz to 8GHz out of range of the water absorption (e.g. Body) which

is around 2.4 GHz• Low power 3000 times lower than mobile phone

• 99% of the working time in standby mode• The UWB and Intra-body technology are safe

Security in


Security in Handset Market

Malware Applications and Security Holesare Growing …

January 11, 2010: Android app steals bank login details An application available via Google's Android Market was infected with a trojandesigned to steal users' bank login details (…)

May 27, 2010: Ubuntu Lucid (PC) can read your iPhone's secrets


May 27, 2010: Ubuntu Lucid (PC) can read your iPhone's secretsDo you have a PIN code on your iPhone? Well, it doesn’t prevent access to your data … When hooking up a non-jailbroken, fully up-to-date iPhone 3GS to a PC running Lucid Lynx …

Malware and Attacks in Smartphones are Growing !


Users are Delocking their Smarphones…

Step 1: Set up ADB Step 2: Push exploid to /sqlite_stmt_journals "adb push exploid/sqlite_stmt_journals"Step 3: type "adb shell"Step 4: type "cd sqlite_stmt_journals"Step 5: type "chmod 755 exploid"


Step 6: type "./exploid" and follow directions on screenStep 7: type "rootshell"Step 8: type in password "secretlol"

Step 9: you’re in root!

⇒⇒⇒⇒ Used by users to get accessand full control to Androidresources by exploitingAndroid security holes

Android Case

Android security model based on end-user• User validates the application permissions at installation

• Example: application X needs to access localizationinformation

• User is capable of modifying the whole Android system (fully open model)


Android is a large and complex system� Security holes that can be used by user and malwaree.g. Just a few days to jailbreak a new Android phone model

Any software or sensitive data needs to be isolated from Android

How to Secure Sensitive Applications?

Software to be executed needs to be secured(code and data such as cryptographic keys)• Principle: isolation in a secure environment

1. Security for downloadable applications2. Use of Trusted Execution Environment (TEE)3. Use of external component: Secure Element


User Interface needs to be secured• Sensitive information entry (e.g. password)• Transaction data to be validated (e.g. transaction

amount)• Principle: Trusted User Interface via Trusted Execution

Environment

TEE provides hardware-basedisolation from Rich OS such as Android, Windows Phone and Symbian.TEE runs on the main deviceprocessorTEE has privileged access to deviceresources (user interface, crypto

What is a Trusted Execution Environment (TEE)?

Rich OS Application Environment Trusted Execution Environment

GlobalPlatformTEEInternalAPI

Payment Corporate

Client Applications

TrustedApplication

DRM

TrustedApplication

Payment

TrustedApplicationCorporate

GlobalPlatformTEE Internal APIGlobalPlatform TEE Client API


resources (user interface, crypto accelerators, secure elements, …)

Advanced Trusted Environment: OMTP TR1

Security Requirements byHardware Platform

Rich OS

Trusted CoreEnvironment

TrustedFunctions

HW Secure Resources

TEE Kernel

GlobalPlatform TEE Client API

Trusted Execution Environment

Innovative solution from the mobile industryHardware protection exists in mobile processors to isolate critical data and code

Main OS Environment Trusted Execution Environment

SECURE SERVICES

APPLICATIONS


SmartphoneProcessor

OS

TRUSTED EXECUTION ENVIRONMENT OS

(Trusted LogicTrusted Foundations™)

APPLICATIONS

What GlobalPlatform Defines

Rich OS Application Environment Trusted Execution Environment

GlobalPlatform TEEInternal API

Payment Corporate

GlobalPlatformTEE Functional API

GlobalPlatformTEE Functional API

Client Applications

TrustedApplication

DRM

TrustedApplication

Payment

TrustedApplicationCorporate

GlobalPlatform TEE Internal API

TEE APIs


Hardware Platform

Rich OS

GlobalPlatformTEE Client APITrusted CoreEnvironment

GlobalPlatform TEEInternal API

TrustedFunctions

TEE Functional APITEE Functional API

GlobalPlatform TEE Client API

HW Keys, Secure Storage,Trusted UI (Keypad, Screen),

Crypto accelerators,NFC controller,

Secure Element, etc.

HW SecureResources

EnvironmentTrusted Core Trusted

Functions

GlobalPlatform TEE Internal

TEE Kernel

API

TEE Compliance

and Security

Certification

Your questions ...


... thank you!

Technology

SmartCard Forum 2011 - Chytré karty dnes a za 20 let