ECC Curve P-224 implementation in java card

Similar Messages

• Implement tegnologia Java Card

  Where I can be able to readers and cards to implement tegnologia Java Card

  Better download the Sun'sJavaCardKit freely availble online in Sun's website

• Java card implementation

  I am a beginner of java card.
  I want to implement JCRE on a smart card.But I don't know what I must do,what components can I get from SUN?

  I am not just wanting to write a applet,I am planning to implement a JCRE on a card.
  I(not only one) have used Infineon's smart card chip to develop COS(Chip Operating System).Now,I am planning to implement a JCRE on a Infineon card,but I don not know whether I can do like this.In my opinion implementation of Java card is a software system for programmers.if the smart card chip have enough resource,programmers can implement JCRE,manufacturer of chip(for example Infineon company) will mask your code into ROM just like code of COS.Could you tell me how to apply for a license from SUN or oher things about java card implementation?
  Thanks a bunch,durangova.

• Java Card Startup

  I have downloaded JavaCard JDK 2.1.2,
  I have a smartcard reader-writer
  I have a smart card which I do not know if it works with Java.
  I need to know what tools, hardware, what kind of smart card do I need to develop a project using Java Card.
  Do I need a special kind of smart card, if so where can I buy it?
  Thanks for your time and consideration.

  Hi,
  I was in this position a few short weeks ago... here's what you'll need:
  First of all, you'll need to know whether or not your smartcard supports java. That's VERY important! Some cards do not include a processor, yours has to. Some cards only provide a sort of primitive "file system" for storing information. Yours has to have an operating system that implements the Java Card Runtime Environment. I guess that whoever you bought the smart card from would be the best person to ask about that stuff.
  If you've already got the JavaCard Development Kit, you pretty much need only a couple more pieces of software. You need an application (hopefully included with the reader) to transfer your applets to the card, and you need an API for your host-side application that will communicate with the card. Opencard, at www.opencard.org, is a good API for this.
  Hope this helps! Good Luck!
  Russ

• How SDA and DDA works in Java Card?

  Hi Friends,
  I want to know how exactly SDA and DDA works in Java Card technology..
  Yes, i know that SDA (Static Data Authentication) is valid for every transactions, but the key used is always same for every transaction made..
  and DDA (Dynamic Data Authentication) uses dynamic key for every transactions, it means that one key is valid for one transaction..
  But, i'm a little bit confused how this is implemented in Java Card..
  Is it related with SCP01 and SCP02?..
  Please help me regarding this..
  Thanks in advance

  Hi,
  I want to know how exactly SDA and DDA works in Java Card technology..This is an EMV concept and as such is not implemented in Java Card as such. You would have to create an implementation to be able to use SDA and DDA.
  But, i'm a little bit confused how this is implemented in Java Card..
  Is it related with SCP01 and SCP02?..It is not implemented natively in Java Card and are not related to SCP. SDA and DDA are for the EMV card application (card application data updates) and SCP is for the card manager (card content updates). While they could be considered similar concepts, they are not related in a Java Card sense.
  Cheers,
  Shane

• Java Card Gurus.. help needed!!! Could be a hidden bug with JavaCard Tools!

  Hello,
  I've run into a small problem, if u could help me out, Id be really grateful.
  The problem lies in the WAY the tools are used(apdutool, jcwde etc). The project envisages the running of the tools from a RELATIVE point of view and not absolute. That is, (simplistically speaking),
  The Host side is handled thus:
  I AM NOTrunning jcwde as : jcwde -p 9025 jcwde.app
  The mode is : c:\javacarddk\bin\jcwde.bat -p 9025 c:\temp\raj\jcwde.app
  The Card side is handled thus :
  The CAP file generation is : c:\javacarddk\bin\converter.bat -config c:\temp\raj\walletfile.opt
  The SCR file generation is : c:\javacarddk\bin\scriptgen.bat -o wallet.scr com/sun/..../javacard/wallet.cap
  However. the SERVER responds positively with the "T=0 listening on port 9025" message,
  but as soon as the CLIENT is started, ie
  c:\javacarddk\bin\apdutool c:\temp\raj\wallet.scr,
  The following exception is thrown :(SERVER)
  java.net.SocketException: Connection reset by peer: JVM_recv in socket input str
  eam read
  jcwde terminating on receipt of SimulationException. See previous messages for
  cause.
  and on the CLIENT :
  com.sun.javacard.apdutool.ReaderWriterError: Card powered down. (0x15)
  Please help, as the source codes of the JavaCard API are not available, so I am unable to determine if this
  RELATIVE path access is the root of the problem.
  Any help is appreceiated!!!!
  Thanks
  --Raj

  cref is not the same as JCWDE.
  JCWDE uses class files to emulate Java Card environment. It doesn't support package installation.
  If you want to test a package using JCWDE you should a) add path to your class files to classpath that is used by JCWDE and b) specify in JCWDE configuration file AIDs for your applets.
  JCWDE receives APDU commands and transfer them to your classes, everything is executed in usual java VM. You can even put debug output (System.out.println(...)) into your sources.
  cref if a 'c reference implementation' of Java Card VM. It executes Java Card bytecodes and emulates real device. It supports package installation (scriptgen/apdutool) and works with converted packages.
  If you want to test a package using cref you should compile sources, convert class files into cap file, create a script for package installation and use apdutool to install and 'run' package in cref.

• NetBeans java card platform

  Dear All,
  I need a java card simulator to debug my java card applet code.
  I try to use Java Card Platform on NetBeans IDE 7.1 for debugging purpose. After successfully building the applet and loading it onto the simulated card environment I try to select the applet instance using the following command through the Console.
  select //aid/3F564379F5/00279CD982
  in response I receive the following error.
  "Connection reset by peer: socket write error"
  Is anyone using Java Card Platform for debugging? I would be very happy to hear how to resolve this problem.
  Thanks in advance!
  Cheers!
  Mehmet

  Mehmet wrote:
  Hello Rohit,
  If you download the Java Card Development Kit (http://www.oracle.com/technetwork/java/javasebusiness/downloads/java-archive-downloads-javame-419430.html#java_card_kit-2.2.1-oth-JPR)
  you will have a set of sample java card applets to use.
  You can use JPShell to download the cap files(compiled applet) onto the card and send ADPU to the card to see if you get correct response.
  Following link provides all the information to set up the environment and start developing java card applets using NetBeans IDE and GPShell.
  https://minotaur.fi.muni.cz:8443/~xsvenda/docuwiki/doku.php?id=public:smartcard:javacardcompilation
  I hope this can help.
  MehmetI already have , Netbeans 7.1 and now i have gpshell 1.4.4 ,i think netbeans is capable to making .cap file, did you mean that with use of gpshell i can connect with java card through reader? gp shell would work stand alone or we need to set this to netbeans? i read the link which u passed to me, it seems very good but "it seems very tough to implement" . HELL IS WAITING FOR ME... KIDDING DEAR,
  one last thing, anything other than net beans { here we create applet and it automatically create cap file} and gp shell are require to load applet onto the card? OR these is enough to implement wholo java card application- I asked this because i get the term JCOP and etc when i read uploading applet to card.
  anyways thanks for your help.

• Help with Java card client

  Hello All ,
  i am new to javacard ...
  i am using JCOP31 , and smartcard reader 5321
  and implementing the java card by using Eclipse with the JCOP tools plugin
  I installed an applet on a java card... and i was told that i have to write a client program to test it.
  I hope some one show me how to implement a javacard Client ..and what i should do to implement a JavaCard Client .
  Thank You for your time.

  Hi,
  Your best bet (for communicating with a real card) is to use the classes in the javax.smartcardio package in Java 6. If you search the forum you should be able to find examples of using this.
  If you need to communicate with the JCOP card simulator, you will need to use the JCOP offcard API's. This is a little bit harder and you will most likely have to use trial and error (and Eclipse) to find the classes you need. I have used this in the past, but I do not have any examples of this. It was actually possible to develop a service layer that can use either API so you can switch between a real card and JCOP simulator (handy for debugging). The JCOP offcard API jar file is in the JCOP Tools plugins directory.
  Cheers,
  Shane

• Java Card and Elliptic Curves

  Hi all,
  has anyone ever used Elliptic Curve cryptography on a Java Card? I can't find any documentation and sample code about this topic, although it should be implemented in the new java card specifications.
  I would like to use ECC instead of RSA for encrypting a message and verifying a signature on a java card with a EC pubkey.
  If anyone could provide me with sample code or hints, that would be very helpful!
  Thanks in advance,
  Matthias

  has anyone ever used Elliptic Curve cryptography on a
  Java Card? I can't find any documentation and sample
  code about this topic, although it should be
  implemented in the new java card specifications.No, it can (not should) be implemented. The implementation of all cryptographic algorithms is optional.
  I would like to use ECC instead of RSA for encrypting
  a message and verifying a signature on a java card
  with a EC pubkey.
  If anyone could provide me with sample code or hints,
  that would be very helpful!The sample code wouldn't be too complicated to create (should be very similar to using RSA) but where do you execute this code? All emulators/simulators and the real Java Cards I know do not support ECC.
  I only heard rumours that "Trusted Logic" has Java Cards which support ECC, but I haven't checked that.
  Jan

• JCOP and Java Card Reference Implementation

  Hello,
  is it possible to use the JCOP tool to debug or run an applet not on only on the simulation of the JCOP cards, but also on the Java Card Reference Implementation?
  If yes, how can I do it?
  Thanks

  That would be interesting to see. I don't think it would be benefcial, simply because the JCOP uses additional features that aren't found in the JCREF, like Global Platform. Therefore, your applet downloads wouldn't work because of the difference in APDU commands. Also I don't know how the IDE debugging would handle it.
  I'd like to see if JPCSC can work with JCREF for sending APDU commands.

• Java Card and OID Implementation

  Hi
  Has anyone used java card (Smart card) authentication and authorization with Oracle Internet Directory. Can it be done using the Identity Managment Component.
  More specifically speaking , I want to create the trade partner user in internet directory and wants to enable the JAAS in oracle application server for authentication and authorization.
  There are other types of users ( patient) who are having the biometric smart card (i.e. Java card). When these user swipes the finger, client based authentication is performed using the fingerprints and connects to the oid to get the authorization and personal details.
  Please let me know the exact suggestion to implement these type of identification and authorizaiton. Please let me know if there is any oracle technical paper which addresses the mentioned problem.
  Thanks in Advance.
  with regards
  Mazhar

  I am interested in this also. We are currently trying to move our website to java card authentication with an OID directory. I know it has been done before but have not thoroughly researched it yet.

• Java Card ECKey with NIST P256 Curve. How to encode a negative coefficient?

  I try to use an ECKey (http://www.win.tue.nl/pinpasjc/docs/apis/jc222/javacard/security/ECKey.html) with the P-256 curve defined by NIST on a Java Card:
  Curve P-256
  p = 115792089210356248762697446949407573530086143415290314195533631308867097853951
  r = 115792089210356248762697446949407573529996955224135760342422259061068512044369
  s = c49d3608 86e70493 6a6678e1 139d26b7 819f7e90
  c = 7efba166 2985be94 03cb055c 75d4f7e0 ce8d84a9 c5114abc af317768 0104fa0d
  b = 5ac635d8 aa3a93e7 b3ebbd55 769886bc 651d06b0 cc53b0f6 3bce3c3e 27d2604b
  Gx = 6b17d1f2 e12c4247 f8bce6e5 63a440f2 77037d81 2deb33a0 f4a13945 d898c296
  Gy = 4fe342e2 fe1a7f9b 8ee7eb4a 7c0f9e16 2bce3357 6b315ece cbb64068 37bf51f5
  with y²= x³ -3x + b (mod p)
  As far as I understand it I use
  p for setFieldFP(), prime p corresponding to the field GF(p)
  r for setR(), order of the fixed point G of the curve,
  b for setB(), second coefficient of the curve,
  Gx and Gy for setG(), fixed point of the curve (after encoding them as ANSI X9.62),
  cofactor of the order of the fixed point G is 1, so setK(1)
  The coefficient A is -3 (according to the definition of the curve). But how do I have to encode -3 (as a byte[]), so that I can set it with setA()?

  Refer to page 33 in this document: http://www.nsa.gov/ia/_files/nist-routines.pdf
  Use the hex values. You don't have to calculate any parameters yourself.
  Regards,
  Adriaan

• Essentials for Java Card implementation

  i am new at java CArd.
  I would like to find out what is a good starting point for me if i want to begin using this technology. I know that I need the SDK. what else would I need? what book(s) would you reccommend? where can I find some examples and tutorials?

  Have you google ? searched this forum ? Did you bother clicking the vertical menu on the left where it says "Java Card" ?
  Do some homework before asking a question like that and you'll find that it's been answered over and over.

• NFC for Java Card

  Hi guys
  I'm a new one with NFC, especially for the field that I'm investigating right now, Java Cards. Hence, would you mind to help me with the initialization? I mean what am I supposed to begin with (name of documents, materials,...)?
  Any of your help would be appreciated.
  Thanks in advance
  Jason

  Jason,
  I'm not sure what you mean by NFC integrated Java Card. Could you give me the name of the document you downloaded from Global Platform?
  Java Card knows about the transport type between itself and the reader: contact (T=0, T=1 : ISO/IEC 7816) or contactless (T=CL : ISO/IEC 14443). But that is all; a Java Card applet should not know or care about the lower transport layers.
  As for the relationship between GSM, UICC and NFC, have a look at the document "NFC Stepping Stones" from SIMAlliance: http://www.simalliance.org/en?t=/documentManager/sfdoc.file.supply&fileID=1308660607647
  EDIT:
  For more on STK applets (GSM), read the Gemalto introduction to the SIM Toolkit: http://developer.gemalto.com/home/technology/sim-toolkit.html
  The best standard for you to start with is probably 3GPP 43.019.
  As reference, here is a partial list of (I hope) relevant standards. If you find more, please post them here!
  ISO/IEC:
  ISO/IEC 7816-1
  ISO/IEC 7816-2
  ISO/IEC 7816-3 (T=0)
  ISO/IEC 7816-4 (Limited to command set required for GSM compliance.)
  Java Card:
  Runtime Environment Specification Java Card Platform, Version 2.2.1 V2.2.1
  Virtual Machine Specification Java Card Platform, Version 2.2.1 V2.2.1
  Application Programming Interface Java Card Platform, Version 2.2.1 V2.2.1
  Global Platform:
  Global Platform Card Specification 2.1.1 V2.1.1
  GSM:
  GSM 11.11 version 8.3.0
  GSM 11.12 version 4.3.1
  GSM 11.14 version 8.3.0
  GSM 11.17 version 7.0.2
  GSM 11.18 version 7.0.1
  GSM Comp128-1, 2, 3
  SIM:
  TS 23.040 V.6 Technical realization of the Short Message Service (SMS)
  TS 43.019 V.6 Subscriber Identity Module Application Programming Interface (SIM API) for Java Card; Stage 2
  TS 51.011 V.5 Specification of the Subscriber Identity Module - Mobile Equipment (SIM-ME) interface
  TS 51.014 V.4 Specification of the SIM Application Toolkit for the Subscriber Identity Module - Mobile Equipment (SIM - ME) interface
  USIM:
  TS 31.102 V.6 Characteristics of the Universal Subscriber Identity Module (USIM) application
  TS 31.111 V.6 Universal Subscriber Identity Module (USIM) Application Toolkit (USAT)
  TS 31.115 V.6 Secured packet structure for (Universal) Subscriber Identity Module (U)SIM Toolkit applications
  TS 31.116 V.6 Remote APDU Structure for (Universal) Subscriber Identity Module (U)SIM Toolkit applications
  TS 31.124 V.6 Mobile Equipment (ME) conformance test specification; Universal Subscriber Identity Module Application Toolkit (USAT) conformance test specification
  TS 31.900 V.6 SIM/USIM internal and external interworking aspects
  TR 31.919 V.6 2G/3G Java Card™ Application Programming Interface (API) based applet interworking
  ETSI TS 135.208 Technical Specification Universal Mobile Telecommunications System (UMTS); 3G Security; Specification of the MILENAGE algorithm set
  UICC:
  TS 31.101 V.6 UICC-terminal interface; Physical and logical characteristics
  TS 31.121 V.6 UICC-terminal interface; Universal Subscriber Identity Module (USIM) application test specification
  ETSI TS 102.220 ETSI numbering system for telecommunication application providers
  ETSI TS 102.221 Smart cards; UICC-Terminal interface; Physical and logical characteristics
  ETSI TS 102.222 IC Cards Admin Commands for Telecom
  ETSI TS 102.223 Card Application Toolkit
  ETSI TS 102 241 "Technical Specification Smart Cards; UICC Application Programming Interface (UICC API) for Java Card"
  OTA:
  ETSI TS 102.224 Security mechanisms for UICC based Applications -Functional requirements
  ETSI TS 102.225 Secured packet structure for UICC based applications
  ETSI TS 102.226 Remote APDU structure for UICC based applications
  TS 23.040 V.6 Technical realization of the Short Message Service (SMS) Point-to-Point (PP)
  TS 23.041 V.6 Technical realization of Cell Broadcast Service (CBS)
  (U)SAT:
  TS 23.048 V.5 Security Mechanisms for the (U)SIM application toolkit
  TS 31.111 V.6 Specification of the USIM Application Toolkit
  TS 31.112 V.6 Universal Subscriber Identity Module Application Toolkit (USAT) interpreter architecture description
  TS 31.113 V.6 Universal Subscriber Identity Module Application Toolkit (USAT) interpreter byte codes
  TS 31.114 V.6 Universal Subscriber Identity Module Application Toolkit (USAT) interpreter protocol and administration
  TS 51.014 V.4 Specification of the SIM Application Toolkit for the Subscriber Identity Module - Mobile Equipment (SIM-ME) interface
  ETSI TS 102 223 Card Application Toolkit (CAT)
  SIM Alliance:
  S@T 01.00 Specification 2009 SIMalliance S@T Byte Code
  S@T 01.10 Specification 2009 SIMalliance S@T Markup Language
  S@T 01.20 Specification 2009 SIMalliance S@T Session Protocol
  S@T 01.21 Specification 2009 SIMalliance S@T Administrative Commands
  S@T 01.22 Specification 2009 SIMalliance S@T Operational Commands
  S@T 01.23 Specification 2009 SIMalliance S@T Push Commands
  S@T 01.30 Specification 2007 SIMalliance S@T Validation Test Plan System Functional Tests
  S@T 01.50 Specification 2009 SIMalliance S@T Browser Behaviour Guidelines
  S@T 01.60 Gateway Implement 2009 SIMalliance S@T Gateway Implement
  Security & Algorithm
  TS 33.102 V.6 3G security; Security architecture
  TS 33.105 V.6 Cryptographic algorithm requirements
  TS 35.205 V.6 3G Security; Specification of the MILENAGE algorithm set: An example algorithm set for the 3GPP authentication and key generation functions f1, f1*, f2, f3, f4, f5 and f5*; Document 1: General
  TS 35.206 V.6 3G Security; Specification of the MILENAGE algorithm set: An example algorithm set for the 3GPP authentication and key generation functions f1, f1*, f2, f3, f4, f5 and f5*; Document 2: Algorithm specification
  TS 55.205 V.6 Specification of the GSM-MILENAGE algorithms: An example algorithm set for the GSM Authentication and Key Generation Functions A3 and A8
  Test specification
  TS 31.048 V.5 Security mechanisms for the (U)SIM application toolkit; Test specification
  TS 31.120 V.6 UICC-terminal interface; Physical, electrical and logical test specification
  TS 31.121 V.6 UICC-terminal interface; Universal Subscriber Identity Module (USIM) application test specification
  TS 31.122 V.6 Universal Subscriber Identity Module (USIM) conformance test specification
  TS 31.130 V.6 (U)SIM Application Programming Interface (API); (U)SIM API for Java Card
  TS 31.213 V.6 Test specification for subscriber (U)SIM; Application Programming Interface (API) for Java Card™
  TS 35.203 V.6 Specification of the 3GPP confidentiality and integrity algorithms; Document 3: Implementors' test data
  TS 35.207 V.6 3G Security; Specification of the MILENAGE algorithm set: An example algorithm set for the 3GPP authentication and key generation functions f1, f1*, f2, f3, f4, f5 and f5*; Document 3: Implementors’ test data
  TS 35.208 V.6 3G Security; Specification of the MILENAGE algorithm set: An example algorithm set for the 3GPP authentication and key generation functions f1, f1*, f2, f3, f4, f5 and f5*; Document 4: Design conformance test data
  TR 35.909 V.6 3G Security; Specification of the MILENAGE algorithm set: an example algorithm set for the 3GPP authentication and key generation functions f1, f1*, f2, f3, f4, f5 and f5*; Document 5: Summary and results of design and evaluation
  TS 51.013 V.5 Test specification for Subscriber Identity Module (SIM) Application Programming Interface (API) for Java Card
  TS 51.017 V.4 Subscriber Identity Module (SIM) test specification
  Adriaan
  Edited by: Adriaan on Feb 14, 2012 1:34 AM

• The version number of export file in Java Card 2.2 is not correct

  Hi all,
  I used jdk1.3.1 and java card 2.2's exp2text tool to see the content of an export file. The value of minor_version is 1. But the JCVM 2.2 spec. says it should be 2. So which one is correct?
  Joey

  Read my post again....indicate binary compatibility or incompatibility between successive implementations of a package.
  I can gerenate CAP files generated with JC 2.2., and load onto my JC 2.1.1 cards. AS LONG as I'm not using JC 2.2 implementation.
  Run the exp2Text on javacard.framework.service and notice that it should read minor = 2. That's because to use that export, JC 2.2 is minimal required implementation.