Identity, Security, Payments, Biometrics, Smart Cards and Authentication News

GlobalPlatform releases security management specs

Wednesday, April 23, 2008

GlobalPlatform, the international smart card specification organization, has finalized its Device Application Security Management Specification for terminals, including mobile phone handsets and EFT-POS devices, based of GlobalPlatform device technology.

This specification defines how multiple actors within a device environment, such as issuers and third-party application providers, can exchange and manage secure data when downloading applications either pre or post issuance.

The DASM Specification is three documents. The first – the DASM Concepts and Descriptions Specification – was introduced in May 2007 and defines the roles and responsibilities of different actors and specifies the data that needs to be shared in the application download process. The final two documents, which have just been published on the GlobalPlatform website, are:

The DASM Key and Certificate Management Specification – This document details the keys, signature scheme and certificate infrastructure that must be applied to ensure that all actors active within the device environment are verified as trustworthy.

The DASM Provisioning Specification – This document specifies the data format required to install an application and set up a security configuration on GlobalPlatform systems. [end] 

Related Articles
Shanghai Fudan Microelectronics Group joins GlobalPlatform

Shanghai Fudan Microelectronics Group has joined GlobalPlatform as the organization’s latest Observer Member.

The Chinese chip design company focuses on the development and manufacture of application-specific secure chips across multiple sectors, including automotive, mobile/telecoms and payment. In joining GlobalPlatform, Shanghai Fudan will bring a its knowledge and experience in the manufacture of secure chips for specific functions, further strengthening the organization’s membership base of chip manufacturers.  

read more »
GlobalPlatform posts online guide to secure elements

GlobalPlatform has launched its second in a series of online guides explaining the association’s current projects and technologies.

This new guide addresses the role of secure elements (SE) in mobile devices and GlobalPlatform’s involvement in this area of mobile security. The FAQ-style guide is free to view on the organization’s website.

read more »
GlobalPlatform releases government smart card implementation guidelines

GlobalPlatform published an implementation guideline for smart card-based government identity services. This document, called Card ID Configuration v. 1.0, is the first part in GlobalPlatform’s plan to become the trusted source for government issuing authorities in this segment.

read more »
NFC software developer Sequent joins GlobalPlatform

NFC software provider Sequent Software has joined GlobalPlatform as an Observer Member.

Sequent’s membership enables it to contribute to specifications that ensure the interoperability of secure contactless services. The company, which provides a neutral software and services platform for the developing NFC market, plans to participate in the formation of business requirements and the development of best practices in different industry sectors, according to GP.

read more »
GlobalPlatform releases new specs for Trusted Execution Environment

GlobalPlatform launched its latest specifications for the Trusted Execution Environment (TEE).

The organization has released two new specifications primarily for use by software developers working within the TEE space. The “TEE Systems Architecture v1.0” explains the hardware and software architectures behind the TEE, while the “TEE Internal API Specification v1.0” specifies how to develop trusted applications.

read more »
Trüb releases next generation smart card OS

The Trüb Group has released the second generation of its CombOS Dual Interface OS for contactless and contact-based EMV compliant smart cards based on new specs from MasterCard and Visa.

read more »

Copyright © 2012, AVISIAN, Inc. All rights reserved.