Smart Card Handbook

FAQ
Smart Card Links
Java Card Simulator

Home Page Entry: Smart Card Handbook

created: 1998, last modified: 7. Jan. 2005
Copyright © 1998-2005 Wolfgang Rankl, Munich
Impressum und rechtliche Hinweise

Content

3. Edition of the Smart Card Handbook

Preface from Smart Card Handbook

Content of the Smart Card Handbook

Extraction: "The SIM"

Smart Card Glossary

Smart Card Standards

Attacks on Smart Cards

Errata List

2. Edition of the Smart Card Handbook

Content

Errata List

1. Edition of the Smart Card Handbook

Ordering the Smart Card Handbook

John Wiley & Sons

3. Edition of the Smart Card Handbook

Picture Smart Card Handbook 3rd edition

The 3rd edition of the Smart Card Handbook is available since December 2003. The 3rd edition of the Smart Card Handbook is a translation from the 4th German edition of the Handbuch der Chipkarten.

Number of pages: 1088
Number of figures: 570
Number of tables: 356

Smart Card Handbook
3rd edition, 2003
Wolfgang Rankl and Wolfgang Effing
John Wiley & Sons
ISBN: 0-470-85668-8

The Smart Card Handbook is firmly established as the definitive reference to every aspect of smart card technology and has proved to be an invaluable resource for security systems development engineers. Professionals and microchip designers working in the smart card industry will continue to benefit from this essential guide. The book is also ideal for newcomers to the field.

Building on the current and previous editions, this third edition of the Smart Card Handbook offers a completely updated overview of the state of the art in smart card technology. Everything you need to know about smart cards and their applications is covered! Fully revised, this handbook describes the advantages and disadvantages of smart cards when compared with other systems, such as optical cards and magnetic stripe cards and explains the basic technologies to the reader. This book also considers the actual status of appropriate European and international standards.

"The book is filled with information that students, enthusiasts, managers, experts, developers, researchers and programmers will find useful. The book is well structured and provides a good account of smart card state-of-the-art technology. There is a lot of useful information in this book and as a practicing engineer I found it fascinating, and extremely useful.
Review of second edition in Measurement and Control.

The standard has got a lot higher, if you work with smart cards then buy it! Highly recommended.
Review of second edition in Journal of the Association of C and C++ Programmers.

New sections on:

smart card applications (PKCS #15, USIM, Tachosmart)

smart card terminals: M.U.S.C.L.E., OCF, MKT, PC/SC

contactless card data transmission with smart cards.

Revised and updated chapters on:

smart cards in the telecommunications industry (GSM, UMTS, (U)SIM application toolkit, decoding of the files of a GSM card).

smart card security (new attacks, new protection methods against attacks).

A detailed description of the physical and technical properties and the fundamental principles of information processing techniques.

Explanations of the architecture of smart card operating systems, data transfer to and from the smart card, command set and implementation of the security mechanisms and the function of the smart card terminals.

Current applications of the technology on mobile telephones, telephone cards, the electronic purse and credit cards.

Discussions on future developments of smart cards: USB, MMU on microcontroller, system on card, flash memory and their usage.

Practical guidance on the future applications of smart cards, including health insurance cards, e-ticketing, wireless security, digital signatures and advanced electronic payment methods.

Preface from Smart Card Handbook

The following text is the preface from the Smart Card Handbook (3rd edition).

Preface (PDF)

Content of the Smart Card Handbook

The following text is the content from the Smart Card Handbook (3rd edition).

Content (PDF)

Extraction "The SIM"

The following text is an extraction from the Smart Card Handbook chapter about SIM smart card in the GSM system.

The SIM (PDF)

Smart Card Glossary

The following text is the glossary from the Smart Card Handbook (3rd edition).

Smart Card Glossary (PDF)

Smart Card Standards

The following list is an overview from the smart card handbook about the smart card relevant standards (2nd edition).

Smart Card Standards (PDF)

Attacks on Smart Cards

The following article is a condensed version of the chapter about smart card security in the Smart Card Handbook from Wolfgang Rankl und Wolfgang Effing which will be pub-lished in the 3rd edition at John Wiley and Sons in September 2003.

Overview about Attacks on Smart Cards (PDF)

Errata List

The following is a list of all known errors in the 3rd English edition of the Smart Card Handbook

not yet available

2. Edition Smart Card Handbook

Picture Smart Card Handbook 2nd edition

The 2nd edition of the Smart Card Handbook was available since 2000. The 2nd edition of the Smart Card Handbook is a translation from the 3rd German edition of the Handbuch der Chipkarten.

Number of pages: 746
Number of figures: 420
Number of tables: 275

Smart Card Handbook
Wolfgang Rankl and Wolfgang Effing
2nd Edition, 2000
John Wiley & Sons
ISBN: 0-471-98875-8

Content

The content of the Smart Card Handbock in the 2nd English edition:

1 Introduction

This chapter provides a brief history of the development of Smart Cards. An initial overview of the diverse applications areas of memory cards, microprocessor cards and contactless cards is given alongside a summary of the international standards for smart cards.

Key words: smart card history, smart card application areas, standardization, standardization bodies

2 Types of Cards

This chapter provides an overview of various types of cards in the ID-1 format. Embossed cards, magnetic-strip cards, memory cards, microprocessor cards and contactless smart cards are considered along with optical memory cards.

Key words: embossed cards, magnetic strip cards, smart cards, memory cards, microprocessor cards, contactless cards, optical memory cards, architecture of typical smart cards

3 Physical and Electrical Properties

Covers the physical properties of contact-type and contactless cards smart cards. Card formats, components and various security markings are outlined, including holograms, kinegrams, laser images, embossing and engraving. The materials, construction and production are the card body are all discussed. The electrical properties are discussed and topic covered include connections, supply voltage, supply current, external clocks, data transfer, activation and de-activation sequences. The functionality and manufacturing costs of smart card microcontrollers are covered, along with the available processor and memory types, (ROM, EEPROM, Flash EEPROM, FRAM and RAM).

Key words: cards formats, card components, security markings, card body, card materials, chip modules, electrical properties, smart card microcontrollers, processor types, memory types, supplementary chip hardware, contact-type cards, contactless cards

4 Information-Technology Foundations

The majority of this chapter is dedicated to the cryptographic procedures used in the field of smart cards. A grounding in basic information theory is also provided. Coverage includes: data structures, SDL notation, state machines, error detection and correction codes, data compression, cryptographic algorithms key management, hash functions, random numbers, unilateral, and mutual authentication, digital signatures and certificates.

Key words: data structures, SDL notation, state machines, error detection codes, error correction codes, cryptology, symmetric cryptoalgorithms, asymmetric cryptoalgorithms, key management, hash functions, random numbers, authentication, digital signatures, certificates

5 Smart Card Operating Systems

This chapter covers development of smart card operating systems, design and implementation principles, memory organization smart card files, file management, process control, atomic processes. Detailed descriptions of operating systems with downloadable program code, Java Card and the small-os smart card operating system are also provided.

Key words: fundamentals of smart card operating systems, development of smart card operating systems, design and implementation principles, memory organization, smart card files, file management, process control, atomic processes, downloadable program code, Java card

6 Smart Card Data Transfers

The data transfer process to and from the Smart Card is described. Coverage includes the physical transmission layer, Answer to Reset (ATR) and ATR characters and practical examples, Protocol Type Selection (PTS), Data Transmission Protocols (Synchronous data transmission, The T=0 transmission protocol, The T=1 transmission protocol), a comparison of asynchronous transmission protocols, APDUs, Logical Channels and procedures for secure data transfers.

Key words: physical transmission layer, answer to reset (ATR), protocol type selection (PTS), data transmission protocols, T=0, T=1, application protocol data unit (APDU), secure messaging, logical channels

7 The Smart Card Command Set

The following commands are covered in this chapter: File Selection, Read and Write, Search, File Manipulation, Identification, Authentication, Commands for Cryptographic Algorithms, File Management, Database Commands: SCQL, Commands for Electronic Purses Credit Card and Debit Card Commands, Commands for Completing the Operating System, Hardware Testing Commands, Application-Specific Commands and Transmission Protocol Commands.

Key words: file selection commands, read and write commands, search commands, file manipulation commands, identification and authentication commands, database commands (SCQL), application specific commands

8 Security Techniques

This chapter is a compendium of the essential principles, procedures and strategies that lead to secure Smart Cards and Smart Card applications. Coverage includes: User Identification, testing a secret number, biometric methods, classification of attacks and attackers, and attacks and defense mechanisms during smart card development, production and usage.

Key words: principles of user identification, PIN, biometric user identification, smart card security, typical attacks, typical defense mechanisms

9 Quality Assurance and Testing

Testing methods for the card body and the microcontroller hardware are outlined, along with testing methods for software and dynamic tests for operating systems and applications.

Key words: card body tests, microcontroller hardware tests, software evaluation, testing methods for software, dynamic tests for operating systems and applications, test methods, test strategies, test tools

10 The Smart Card Life Cycle

A life history of a Smart Card, from the origin of the semiconductor chip through the production of the card and finally to the recycling of the card materials, this chapter contains detailed coverage of the five phases of the Smart Card life cycle. A section of this chapter is also dedicated to the life cycle of Smart Card applications.

Key words: phases of the smart card life cycle, production phase, card preparation phase, application preparation phase, card utilization phase, end of life phase

11 Smart Card Terminals

A brief overview of the various smart card terminals available is followed by a consideration of the terminals' mechanical and electrical characteristics. Security techniques and mechanisms are discussed along with guidance on the linking of terminals with PC/SC.

Key words: terminal types, mechanical characteristics, electrical characteristics, security techniques, PC/SC interface

12 Smart Cards in Payment Systems

Payment transactions with Smart Cards, including credit cards, debit cards and electronic purses are discussed. Coverage also includes basic system architecture options, prepaid memory cards, the CEN EN 1546 standard, the Mondex and Eurocheque systems plus credit cards with chips.

Key words: electronic payment, credit cards, debit cards, electronic money, system architecture, prepaid memory cards, electronic purses, architecture of a typical electronic purse scheme, Mondex system, German ec-System, credit cards with chip (EMV-cards)

13 Sample Applications

The following sample Smart Card applications are presented and described in broad terms: Public Cardphones in Germany, Contactless Memory Cards for Air Travel, Health Insurance Cards, Electronic Toll Systems, The GSM Network and Digital Signatures.

Key words: public cardphones, contactless memory card, health insurance card, electronic toll system, global system for mobile communication (GSM), digital signatures

14 Application Design

The first section of this chapter contains general notes and technical data related to the use of Smart Cards. A brief summary of the current state of the technology is presented and the notes can be used directly for designing Smart Card applications. The second section of the chapter describes the working principles of a number of tools allowing the creation of complex smart card applications. Formulas for estimating processing times, typical command execution times, application development tools, methods for terminal testing and design examples for smart card applications are all provided.

Key words: formulas for processing time, command execution times, application development tools, course of a smart card project, design examples for smart card applications

15 Appendix

Registration Authorities for RIDs, Events, World Wide Web Addresses Characteristic Values and Tables, ATR interval, ATR data element conversion tables, Determining the data transmission rate, Sampling times, Smart Card commands, utilized instruction bytes, command encoding, return codes and selected microcontrollers and chips for Smart Cards

Key words: glossary, literature, standards, web addresses, characteristic values and tables

Errata List

The following is a list list of all known errors in the 2nd English edition of the Smart Card Handbook.

Errata List Version 1 vom 11. September 2002 (PDF)

1. Edition of the Smart Card Handbook

Picture Smart Card Handbook 2nd edition

The 1st edition of the Smart Card Handbook was available since 1997. The 1st edition of the Smart Card Handbook is a translation from the 2nd German edition of the Handbuch der Chipkarten.

Number of pages: 420
Number of figures and tables: 375

Smart Card Handbook
Wolfgang Rankl and Wolfgang Effing
1st Edition, 1997
John Wiley & Sons
ISBN: 0-471-96720-3

Ordering the Smart Card Handbook

The Smart Card Handbook is available at many book stores. It could be ordered also via internet (e.g. Amazon).

Ordering the Smart Card Handbook via Amazon

John Wiley & Sons

Logo John Wiley & Sons

Informations from John Wiley & Sons about the Smart Card Handbook.