Firewall Mechanism in a User Centric Smart Card Ownership Model

Akram, Raja Naeem; Markantonakis, Konstantinos; Mayes, Keith

doi:10.1007/978-3-642-12510-2_9

Cited by 11 publications

(4 citation statements)

References 14 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…shareable resources) that are provided by partner applications. To access a partner's application services, the downloaded application will establish an application-sharing relationship that is discussed in detail in [34,35].…”

Section: Application Installationmentioning

confidence: 99%

Smart cards: State-of-the-art to future directions

Akram

Markantonakis

2013

IEEE International Symposium on Signal Processing and Information Technology

Self Cite

View full text Add to dashboard Cite

Abstract. Creating security architectures and processes that directly interact with consumers, especially in consumer electronics, has to take into account usability, user-experience and skill level. Smart cards provide secure services, even in malicious environments, to end-users with a fairly straightforward limited usage pattern that even an ordinary user can easily deal with. The way the smart card industry achieves this is by limiting users' interactions and privileges on the smart cards they carry around and use to access dierent services. This centralised control has been the key to providing secure and reliable services through smart cards, while keeping the smart cards fairly useable for end-users.However, as smart cards have permeated into every aspect of modern life, users have ended up carrying multiple cards to perform mundane tasks, making smart card-based services a cumbersome experience. User Centric Smart Cards (UCSC) enable users to have all the services they might be accessing using traditional smart cards on a single device that is under their control. Giving "freedom of choice" to users increases their privileges, but the design requirement is to maintain the same level of security and reliability as traditional architectures while giving better user experience. In this paper, we will discuss the challenges faced by the UCSC proposal in balancing security with usability and "freedom of choice", and how it has resolved them.

show abstract

Section: Application Installationmentioning

confidence: 99%

Smart cards: State-of-the-art to future directions

Akram

Markantonakis

2013

IEEE International Symposium on Signal Processing and Information Technology

Self Cite

View full text Add to dashboard Cite

show abstract

“…This access to the SSO application has to take place when the rst application connects with the internet services. Such an access is termed as synchronous access in the UCTD and is based on the Java Card architecture [186]. Such an access can be based on the Java Card Remote Method Invocation (RMI) [28].…”

Section: Application Sharing In Cdammentioning

confidence: 99%

“…The issues involved are: a) an inability to dynamically authenticate an application on a smart card, b) di culty in ascertaining the security and reliability of the current state of an application, c) an inability to verify and restrict application sharing (privilege-based access), d) no provision for privacy preservation for cardholders, and e) no cryptographic binding between applications. Therefore, in this chapter, we discuss the proposed rewall mechanism [186] that provides an extension to the traditional mechanisms deployed in Multos and Java Card, in order to deal with the listed issues.…”

Section: Introductionmentioning

confidence: 99%