Java Card Technology for Smart Cards: Architecture and Programmer's Guide

Table of Contents Foreword. Preface. I. INTRODUCTION. 1. From the Beginning. Smart Cards. Brief History. Benefits. Applications. Challenges in the Development of Smart Card Applications. Applying Java to Smart Cards. Benefits of Java Card Technology. Brief History of Java Card Technology. 2. Smart Card Basics. Overview of Smart Cards. Basic Card Types. Memory Cards versus Microprocessor Cards. Contact Cards versus Contactless Cards. Smart Card Hardware. Smart Card Contact Points. Smart Card Central Processing Unit. Smart Card Coprocessors. Smart Card Memory System. Smart Card Communication. Card Acceptance Device and Host Applications. Smart Card Communication Model. APDU Protocol. TPDU Protocol. ATR. Smart Card Operating Systems. Smart Card File Systems. Master File. Dedicated File. Elementary File. Smart Card Systems. Smart Card Standards and Specifications. ISO 7816 Standards. GSM. EMV. Open Platform. OpenCard Framework. PC/SC. II. JAVA CARD TECHNOLOGY. 3. Java Card Technology Overview. Architecture Overview. Java Card Language Subset. Java Card Virtual Machine. CAP File and Export File. Java Card Converter. Java Card Interpreter. Java Card Installer and Off-Card Installation Program. Java Card Runtime Environment. JCRE Lifetime. How Does the JCRE Operate during a CAD Session? Java Card Runtime Features. Java Card APIs. java.lang Package. javacard.framework Package. javacard.security Package. javacardx.crypto Package. Java Card Applets. Package and Applet Naming Convention. Applet Development Process. Applet Installation. ROM Applets. Preissuance or Postissuance Applets. Postissuance Applet Installation. Error Recovery during Applet Installation. Installation Constraints. 4. Java Card Objects. Java Card Memory Model. Persistent Objects. Transient Objects. Properties of Transient Objects. Transient Object Types. Creating Transient Objects. Querying Transient Objects. A Few Words about Object Creation and Deletion. 5. Atomicity and Transactions. Atomicity. Block Data Updates in an Array. Transactions. Commit Transaction. Abort Transaction. Nested Transaction. Commit Capacity. TransactionException. Local Variables and Transient Objects during a Transaction. 6. Java Card Exceptions and Exception Handling. Exceptions in the java.lang Package. Java Card Exceptions. Java Card Exception Reason Code. Throwing an Exception in the Java Card Platform. ISOException. UserException. 7. Java Card Applets. Applet Overview. Applet Installation and Execution. Applet Communication. Class javacard.framework. Applet. install Method. Creating Objects in the Applet's Constructor. Registering the Applet Instance with the JCRE. Processing the Installation Parameters. Further Applet Initialization. select Method. SELECT APDU Format and Processing. Default Applet. deselect Method. process Method. Other Methods in the Class javacard.framework. Applet. 8. Working with APDUs. APDU Class. APDU Object. APDU Buffer Size. Interface ISO7816. Working with APDUs in Applets. Retrieve the APDU Buffer. Examine the Command APDU Header. Receive APDU Command Data. Process the APDU Command and Generate the Response Data. Return APDU Response Data. Return the Status Word. Protocol-Specific APDU Processing. Method getProtocol. Method getInBlockSize. Method getOutBlockSize. Method setOutgoingNoChaining. Method getNAD. Method waitExtension. Summary. 9. Applet Firewall and Object Sharing. Applet Firewall. Contexts. Object Ownership. Object Access. Transient Array and Context. Static Fields and Methods. Object Sharing across Contexts. Context Switch. JCRE Privileges. JCRE Entry Point Objects. Global Arrays. Object Shareable Interface Mechanism. 10. Programming Cryptography. Quick Tour of Cryptography. Encryption and Decryption. Message Digest. Digital Signature. Random Data. Cryptographic Practice in Smart Card Applications. Ensuring Application Security. Functioning as a Secure Token. Summary. Java Card Cryptography APIs. Design Principles. Architecture. Package Structure. Code Examples. Compute a Message Digest. Build a Cryptographic Key. Sign and Verify a Signature. Encrypt and Decrypt Data. Generate Random Data. 11. Java Card Platform Security. Java Card Platform Security Features. Java Language Security. Additional Security Features of the Java Card Platform. Java Card Platform Security Mechanisms. Compile-Time Checking. Class File Verification and Subset Checking. CAP File and Export File Verification. Installation Checking. Cryptographically Enforced Chain Trust. Runtime Security Enforcement. Java Card Cryptographic Support. Applet Security. III. PROGRAMMING GUIDE AND TIPS. 12. Step-by-Step Applet Development Guide. Design the Applet. Specify the Functions of the Applet. Specify AIDs for the Applet. Define the Class Structure and Method Functions of the Applet. Define the Interface between the Applet and Its Host Application. Construct the Applet Code. Wallet Applet Code. Implement Error Checking. What's the Next Step? 13. Applet Optimization. Optimizing an Applet's Overall Design. On-Card Execution Time. Method Invocations. Creating Objects in Applets. Reusing Objects. Eliminating Redundant Code. Accessing Arrays. The switch Statement versus the if-else Statement. Arithmetic Statements. Optimizing Variables in Applets. 14. Working with int Data Type. 32-Bit Arithmetic Operations. Array Size and Array Index. Storing and Computing int Values. Summary. 4 Appendices. A. Java Card Language Subset. B. Java Card Application Programming Interface. Glossary. Bibliography.