|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: [Muscle] GPShell 1.0.0 release
From: Klaus Peter Gungl (KGUNGL
de.ibm.com)
Date: Wed Aug 10 2005 - 02:11:00 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Hello everyone,
some comments about Secure Channel Protocol:
(1) The applet does not need to support SCP, this support is available to
the applet from its Security Domain via the Global Platform API. The
applet does not need to have access to the keys.
(2) SCP is always used for package loading and applet installation, it can
optionally be used for applet personalization and by the applet during
runtime.
(3) Global Platform offers a compliance package for vendors who claim
proper implementation of the GP card specification.
All of this can be found on the Global Platform website:
http://www.globalplatform.org
Klaus.
Karsten Ohme <widerstandt-online.de>
Sent by: muscle-bounceslists.musclecard.com
10.08.2005 02:22
Please respond to
MUSCLE
To
MUSCLE <musclelists.musclecard.com>
cc
Subject
Re: [Muscle] GPShell 1.0.0 release
Peter Williams wrote:
> a nice featue would be this:
>
> use the SCP01 support to establish a confidentiality channel, and use
> the GP kek in the keyset to load a DES key into the _muscle_ key store.
Thanks. But this would mean that the applet must support secure channels
and the user of
the applet must also have access to the keys of the security domain.
With this much more is possible. Due to the fact that a secure channel
is established everything can be transmitted secretly, also without the
double encryption with the KEK. Both is possible. But I believe the goal
of GPShell is only to have a free platform for GlobalPlatform management
tasks. Ask the author.
Another problem, I know at least one card which has broken API support
within the card for this. GlobalPlatform is not a very well verified
standard on cards ...
Karsten
>
>
>> From: Snit Mo <snitmogmail.com>
>> Reply-To: Snit Mo <snitmogmail.com>, MUSCLE
>> <musclelists.musclecard.com>
>> To: musclelists.musclecard.com
>> Subject: [Muscle] GPShell 1.0.0 release
>> Date: Thu, 4 Aug 2005 22:58:18 -0700
>>
>> Hi,
>>
>> We have just released GPShell 1.0.0. From the README:
>>
>> GPShell is a script interpreter which talks to a smart card. It is
>> written on top of the OpenPlatform library, which was developed by
>> Karsten Ohme. It uses smart card communication protocols ISO-7816-4
>> and Open Platform (which later became Global Platform) 2.0.1. It can
>> establish a secure channel with a smart card, load, instantiate,
>> delete, list applets on a smart card.
>>
>> GPShell and OpenPlatform Library (which GPShell depends on) can be
>> found at:
>> http://sourceforge.net/projects/globalplatform/
>>
>> Enjoy,
>>
>> _______________________________________________
>> Muscle mailing list
>> Musclelists.musclecard.com
>> http://lists.drizzle.com/mailman/listinfo/muscle
>
>
>
> _______________________________________________
> Muscle mailing list
> Musclelists.musclecard.com
> http://lists.drizzle.com/mailman/listinfo/muscle
_______________________________________________
Muscle mailing list
Musclelists.musclecard.com
http://lists.drizzle.com/mailman/listinfo/muscle
_______________________________________________
Muscle mailing list
Musclelists.musclecard.com
http://lists.drizzle.com/mailman/listinfo/muscle
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]