In the past two weeks, I have had the feeling that issues surrounding the use corporations make of our data have been everywhere. Let’s take a look at a few of these news. The first news came from a fight between Facebook and Google about how our lists of contacts may be transferred from one […]
Viva GlobalPlatform!
Over the past months, I have been looking at applications, sensitive or not, on both smart card and mobile devices, trying to figure out why people would use cards. The most typical argument is security (yes, smart cards are secure, but servers are, too; at least they are secure enough for PC-based internet, so why […]
JC101-12C: Defending against attacks
UPDATED (05/06/08): Fixed problem with loops that zapped examples. UPDATED (06/06/08): Fixed some bugs. In the previous entry, we have looked at a few common attacks on smart cards. In this one, we will look at possible defenses against such attacks. Instead of applying them to our example, we will look at one simple example, […]
JavaOne finale
Well, that’s it, I am about to head back home in a few hours. We just went through James Gosling’s keynote on Extreme Innovation, which included a piece on Java Card 3. Here is what the conference paper had to say on this: During the show, the Gemalto-cosponsored Java Card programming contest winners will be […]
Writing a Java Card 3 program
Yesterday, I stopped by the Sun/Gemalto contest booth, to try writing a little robot strategy, because I was a bit lazy to set up everything by myself on my computer. So, they brought me on a computer, where I edited my robot, and tried to make it better. It went through a little trial-and-error process […]
Java Card 3 day at JavaOne
May 6 was our big day, with four events in the afternoon. Two sessions, a keynote appearance, and a BOF interactive session; plus, of course, the robot programming contest. All sessions went fine, with a classical Java Card attendance, around 80-100 people for the sessions, and 30 for the BOF (at 8:30PM, additional courage is […]
JavaOne is starting
The JavaOne 2008 conference is starting this morning, and Java Card 3 is going to be a part of the show, as the spec has been recently announced. Actually, it started yesterday, in the motivational talk given by Sun to its licensees. Sun mentioned that there were over 6 billions of Java platforms around, and […]
JC101-11C: Attacks on smart cards
Even without Java Card 3, there are many similarities between smart cards and web servers: They both receive requests from unknown origin and process them. They both manage potentially sensitive data that they need to protect. Of course, the exact attacks are different. Cross-site scripting is not really a smart card threat, but the countermeasure […]
A message from Orange on NFC
There have been many messages about NFC at SIMposium, and I will certainly write about this in the near future. Nevertheless, one of the speakers, Mung Ki Woo from Orange, gave a very refreshing talk, and managed to shake our neurons a bit. He basically made three statements: NFC in mobiles is much more than […]
Can T=0 disappear from SIM cards?
Still Live from Symposium, I have listened this morning to a talk from Klaus Vedder, chairman of ETSI/SCP. Most of the speech was a classical speech from a standard person, highlighting the things enabled by their new developments. But on this talk, two statements sounded a bit different. First, a slide showed the question “When […]