Presentation is loading. Please wait.

Presentation is loading. Please wait.

Secure Element API An introduction.

Published byNeal Hopkins Modified over 5 years ago

Similar presentations

Presentation on theme: "Secure Element API An introduction."— Presentation transcript:

1 Secure Element API An introduction

2 Objectives and use cases
“An API enabling the discovery, introspection, and interaction with hardware tokens (Secure Elements) that offer secure services such as tamper-proof storage, cryptographic operations, etc.” Secure Elements: Smart card (contact or contacless) SIM/ UICC card Smart/Secure microSD cards Embedded Secure Elements Clients PC Mobile Tablet SysApps - Secure Element API,

3 Use Case #1: Web Authentication with SE
PC, with contact or contactless PC/SC reader Government eID card with contacts User goes to an eGov web site, and is asked to authenticate E.g. User inserts her eID card in PC reader, and types PIN code User is authenticated User digital signs a document (eg Tax declaration) using her ID card Conflicts with Web Crypto SysApps - Secure Element API,

4 Use Case #2: “Card present” mCommerce
Mobile with NFC UICC or NFC Visa card User navigates to a merchant web store in mobile browser User pays with Visa app preloaded on UICC or in contactless Visa banking card This triggers a system application, which prompts user for confirmation and optionally payment issuer (if multiple available), PIN code, asks SE for “payment credential”, and forward it to payment server When payment confirmation is received, it is forwarded to originating merchant in the browser, which displays confirmation message SysApps - Secure Element API,

5 Use Case #3: Reloading transportation card
Mobile with NFC Public transportation card (e.g. London’s Oyster card) User open’s mobile browser, and navigates to the card’s emitter web site (e.g. User buys a ticket and loads it on her transportation card by tapping it on the mobile Transportation card now holds the tickets, it can be presented to “touch” readers when travelling SysApps - Secure Element API,

6 Use Case #4: Mobile ID (OOB auth)
2 devices: Web application used on PC browser (no SE) Out-of-band authentication on Mobile with NFC Company ID card with embedded Auth Certificate User opens a session on a web application in a PC browser The server opens a session and waits for credential (a signature) from a pre-registered mobile User opens a pre-installed authentication application on mobile, and tap her NFC corporate card Authentication application computes the credential using the embedded card certificate, and sends it to server Server validates session on PC browser and let user in SysApps - Secure Element API,

7 SysApps - Secure Element API, 2013-08-29
Status In W3C: SE planned in Phase 2 of SysApp WG Adoption in Web industry: Tizen Open source, standards-based software platform supported by leading mobile operators, device manufacturers, and silicon suppliers for smartphones, tablets, netbooks, in-vehicle infotainment devices, smart TVs, etc. Webinos EU funded project delivering a platform for web applications across mobile, PC, home media (TV) and in-car devices Adoption In Mobile Industry SIMAlliance’s Open Mobile API Non-profit trade association working mobile community seeking to create a secure, open and interoperable mobile environment Deployed devices (NFC): 180+ models by more than 15 manufacturers Android, BlackBerry (BB OS 10), Windows Phone (7.5) SysApps - Secure Element API,

8 Commercial devices examples
Acer: Liquid Express C6 Alcatel (TCL): Smart III-4 BlackBerry: Z10 HTC: One X LG: P940 (Prada) Nokia: Lumia 610 NFC Motorola: Droid RAZR (XT926) Samsung: Galaxy S2, Galaxy S3, Galaxy S4 Sony: Xperia Z ZTE: P728 …. SysApps - Secure Element API,

9 SysApps - Secure Element API, 2013-08-29
Roadmap Editorship offer: 2 co-editors Gemalto (Olivier Potonniée) Intel (Tran Dzung D.) Ready to draft Start with Use Cases Contributions welcome Requirements How should we manage them? SysApps - Secure Element API,

Download ppt "Secure Element API An introduction."

Similar presentations

Mobile Devices in the DoD

Mobile Devices in the DoD
Cloud PIV Authentication and Authorization Demo PIV Card User Workstation Central Security Server In order to use Cloud Authentication and Authorization.

Cloud PIV Authentication and Authorization Demo PIV Card User Workstation Central Security Server In order to use Cloud Authentication and Authorization.
Ecosystem Scenarios for Cloud-based NFC Payments

Ecosystem Scenarios for Cloud-based NFC Payments
Mobile Application Development Keshav Bahadoor. Part 1 Cross Platform Web Applications.

Mobile Application Development Keshav Bahadoor. Part 1 Cross Platform Web Applications.
Identity and Access IDPrime MD 8840 and IDCore 8030 MicroSD cards

Identity and Access IDPrime MD 8840 and IDCore 8030 MicroSD cards
1 GP Confidential ©2013 1 GlobalPlatform’s Value Proposition for Mobile Point of Sale (mPOS)

1 GP Confidential © GlobalPlatform’s Value Proposition for Mobile Point of Sale (mPOS)
SECURITY IN E-COMMERCE VARNA FREE UNIVERSITY Prof. Teodora Bakardjieva.

SECURITY IN E-COMMERCE VARNA FREE UNIVERSITY Prof. Teodora Bakardjieva.
Cross Platform Single Sign On using client certificates Emmanuel Ormancey, Alberto Pace Internet Services group CERN, Information Technology department.

Cross Platform Single Sign On using client certificates Emmanuel Ormancey, Alberto Pace Internet Services group CERN, Information Technology department.
Key Provisioning Use Cases and Requirements 67 th IETF KeyProv BOF – San Diego Mingliang Pei 11/09/2006.

Key Provisioning Use Cases and Requirements 67 th IETF KeyProv BOF – San Diego Mingliang Pei 11/09/2006.
Lab4 Part2 Lau Ting Nga Virginia Tsang Pui Yu Wong Sin Man.

Lab4 Part2 Lau Ting Nga Virginia Tsang Pui Yu Wong Sin Man.
Dongyan Wang GlobalPlatform Technical Program Manager

Dongyan Wang GlobalPlatform Technical Program Manager
Chung Man Ho Willims Chow Man Kei Gary Kwok Pak Wai Lion.

Chung Man Ho Willims Chow Man Kei Gary Kwok Pak Wai Lion.
Identity and Access IDGo Secure Email (ISE) for Android Didier Bonnet April 2015.

Identity and Access IDGo Secure (ISE) for Android Didier Bonnet April 2015.
PAYware Mobile Android Comparison June 2011. Discussion Topics Obtaining the App PAYware Mobile App.

PAYware Mobile Android Comparison June Discussion Topics Obtaining the App PAYware Mobile App.
1 TELECOM ITALIA GROUP Trial at the University of Rome: SIM-based Services Trial at the University of Rome: SIM-based Services Author: Alessandro Rabbini.

1 TELECOM ITALIA GROUP Trial at the University of Rome: SIM-based Services Trial at the University of Rome: SIM-based Services Author: Alessandro Rabbini.
Alcatel Identity Server Alcatel SEL AG. Alcatel Identity Server — 2 All rights reserved © 2004, Alcatel What is an Identity Provider?  

Alcatel Identity Server Alcatel SEL AG. Alcatel Identity Server — 2 All rights reserved © 2004, Alcatel What is an Identity Provider?  
Secure Element Access from a Web browser W3C Workshop on Authentication, Hardware Tokens and Beyond 11 September 2014 1 Oberthur Technologies – Identity.

Secure Element Access from a Web browser W3C Workshop on Authentication, Hardware Tokens and Beyond 11 September Oberthur Technologies – Identity.
The Linux Revolution  Linux distributions have long since run the top servers worldwide. Today Linux powers 6 of the top 10 web servers worldwide. Linux.

The Linux Revolution  Linux distributions have long since run the top servers worldwide. Today Linux powers 6 of the top 10 web servers worldwide. Linux.
魂▪創▪通魂▪創▪通 2014. 9. 10. Digital Certificate and Beyond Sangrae Cho Authentication Research Team.

魂▪創▪通魂▪創▪通 Digital Certificate and Beyond Sangrae Cho Authentication Research Team.
Introduction to Android Platform Overview 19.3.2013.

Introduction to Android Platform Overview

Similar presentations

Ads by Google