Abstract
Smartcards and PKCS #11 are an appealing solution for combined storage and certificate management at the enduser level. Many applications use PKCS #11 primitives for security reasons: a popular browser, like Netscape Navigator contain a PKCS #11 cryptographic module that plays a critical role in secure web surfing and e-mail signing and encryption. Nevertheless, most market-ready solutions ([SMARTSIGN], [GPKPKCS#11], [SLBCBPKCS#11]) use non-programmable cards or else do not exploit the card’s programmable capabilities. Instead they utilize cryptographic functions built into the card. This results in applications having the card manufacturer’s semantics instead of PKCS #11 semantics.
In this article we present our work: Java Card Certificate Management (JCCM). JCCM moves PKCS #11 middleware into the card itself. This results in greater flexibility and less implementation dependence for applications. We have developed JCCM for two cards: the GemXpresso RAD 211is and the Cyberflex for Linux Starter’s Kit 2.1. We have also developed the corresponding dynamic library for Netscape enabling our endusers to use JCCM in their daily.
This work has been partially supported by the project E-TICKET CYCYT N∘2FD1997-1269-C02-01(TEL)
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
“ISO/IEC 7816-4: Integrated circuit(s) cards with contacts. Part 4: Interindustry commands for interchange”, ISO/IEC, 1995.
“ISO/IEC 7816-3: Integrated circuit(s) cards with contacts. Part 3: Electronic signals and transmission protocols”, ISO/IEC, 1997.
“Java Card Applet Developer’s Guide. Java Card Version 2.0”, SUN Microsystems, Agosto de 1998.
‘Java Card Applet Developer’s Guide. Java Card Version 2.1”, SUN Microsystems, Agosto de 1999.
“GemXpresso RAD 211 User Guide Version 1.0”, Gemplus, Octubre 1999
“GemXpresso RAD 211 Card Reference Manual Version 1.0”, Gemplus, Octubre 1999
“Cyberflex Access Developer’s Series. Programmer’s Guide”, Schlumberger, Septiembre 1999.
“Cyberflex Access Software Developer’s Kit 2-Release Notes”, Schlumberger, Noviembre 1999.
“HTTP Over TLS”, Rescorla, E., IETF RFC 2818, Mayo 2000.
“Internet X.509 Public Key Infrastructure Operational Protocols: FTP and HTTP”. R. Housley, P. Hoffman. IETF RFC 2585, Mayo 1999.
“Design Principles for Tamper-Resistant Smartcard Processors” by Oliver Kömmerling, Markus Kuhn, Workshop on Smartcard Technology Proceedings, Chicago, Illinois, USA, Mayo 10–11, 1999
‘Smart Card Developer’s Kit”, Scott B. Guthery, Timothy M. Jurgensen. Macmillan Technical Publishg. 1998. ISBN 1-57870-027-2.
‘Smart Card. Application Developement Using Java”, Uwe Hansmann, Martin S. Nicklous, Thomas Schack y Frank Seliger, Springer, 2000. ISBN 3-540-65829-7.
“PKCS #11 v2.10: Cryptographic Token Interface Standard”, RSA Laboratories Inc., Diciembre 1999 (003-903052-210-000-000).
“PKCS #1 v2.1: RSA Cryptography Standard”, RSA Laboratories Inc.
“PKCS #5 v2.0: Password-Based Cryptography Standard”, RSA Laboratories Inc.
“PKCS #8 vl.2: Private-Key Information Syntax Standard”, RSA Laboratories Inc.
‘Cryptography and Network Security: Principles and Practices”, Stallings, W., 2ed, Prentice-Hall Inc., 1999
“Smart Sign”, Tommaso Cucinotta, http://sourceforge.net/projects/smartsign
“GemSAFE Products”, Gemplus, http://www.gemplus.com/products/software/gemsafe/index.html
“Cyberflex Access SDK”, Schlumberger, http://www.cyberflex.com/Products
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2001 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Campo, C. et al. (2001). JCCM: Flexible Certificates for smartcards with Java Card. In: Attali, I., Jensen, T. (eds) Smart Card Programming and Security. E-smart 2001. Lecture Notes in Computer Science, vol 2140. Springer, Berlin, Heidelberg. https://doi.org/10.1007/3-540-45418-7_4
Download citation
DOI: https://doi.org/10.1007/3-540-45418-7_4
Published:
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-42610-3
Online ISBN: 978-3-540-45418-2
eBook Packages: Springer Book Archive