LG electronics has added support for Smart Card Web Servers in their latest phone model, the Renoir. Gemalto has jumped on the occasion to communicate about it. LG has a mini-site about their new phone (a pretty cool one, actually), but it does not mention this feature there. If you find a mention of Smart […]
Performing a long overdue upgrade
I will be upgrading to WordPress 2.6 in the coming days, and things may not work very well, if at all. I will write a post when this will be over.
JC101-19C: Secure channel protocol
Starting a session Protocol For our session start, we will here use a classical architecture, but with slightly different commands. First, here is a definition of the exchanges between two actors (say, Alice and Bob) to start a secure session: Alice sends a 16-byte random number to a1 … a16 to Bob. Bob replies with […]
Another Java Card 3.0 Sesames award !
This edition of Cartes definitely is a good one for Java Card 3.0. After Gemalto, it is now Oberthur Technologies’ turn to get a Sesames for a product based on Java Card 3.0. This time, it is a SIM oriented product, which Oberthur describes as follows (in French): Sésame de la meilleure application Mobile, GIGANTIC […]
Java Card 3.0 got its first Sesames award!
Today marks the beginning of our annual fair, when the entire smart card industry gathers in Paris for the Cartes event. Like usual, this event started with the Sesames award, and this year, Gemalto only got one (usually, they get several). But this Sesames is not like the previous ones, because it is named Smart […]
Factories are not safe any more …
It seems that some payment terminals have been rigged with a device that collects card information and sends it “home” (somewhere in Pakistan, apparently). Now, the really interesting part is that this little addition to the device seems to have been done during their production process, apparently in China. The news still needs further confirmation […]
Visa doubts about mobile payments
Recently, Visa made announcements about mobile payment that looked at least half-baked. Now, we are getting the explanation. And the explanation is very interesting. The headline is a catcher: A Visa spokeswoman said her company does not see phones replacing cards for in-person purchases; instead, Visa thinks that mobile payment “will be mostly a value-added […]
JC101-18C: Defining a secure channel from scratch
In the few coming posts, we will define a secure channel protocol from scratch as an example, and provide an implementation for it. This example will also be used as a way to introduce the cryptographic mechanisms that exist in Java Card. Be careful, this is not a tutorial on cryptography. I am not a […]
What happened since 2001?
To celebrate its birthday, Google is giving us he opportunity to search the Web as it was in 2001. So, let’s try to catch a few differences. The Web has grown. In 2001, when searching for my last name, 9 out of 10 entries in the first page were about me. Today, it is only […]
Smart cards, linux, and tokens
Neowave is getting a lot of media attention, and they are also involved indirectly in an interesting project, Live Token. The idea is to put together a USB token containing a Linux distro and a smart card that will be used to provide security services, for encryption, authentication, and more. The idea definitely looks good: […]