IEICE TRANSACTIONS on Fundamentals
A Multi-Application Smart Card System with Authentic Post-Issuance Program Modification
Summary :
A multi-application smart card system consists of an issuer, service vendors and cardholders, where cardholders are recipients of smart cards (from the issuer) to be used in connection with applications offered by service vendors. Authentic post-issuance program modification is necessary for a multi-application smart card system because applications in the system are realized after the issuance of a smart card. In this paper, we propose a system where only authentic modification is possible. In the proposed system, the smart card issuer stores a unique long bitstring called PID in a smart card. The smart card is then given to the cardholder. A unique substring of the PID (subPID) is shared between the cardholder and a corresponding service vendor. Another subPID is shared between the issuer and the cardholder. During program modification, a protocol using the subPIDs, a one-way hash function and a pseudorandom number generator function verifies the identity of the parties and the authenticity of the program.
- Publication
- IEICE TRANSACTIONS on Fundamentals Vol.E91-A No.1 pp.229-235
- Publication Date
- 2008/01/01
- Publicized
- Online ISSN
- 1745-1337
- DOI
- 10.1093/ietfec/e91-a.1.229
- Type of Manuscript
- Special Section PAPER (Special Section on Cryptography and Information Security)
- Category
- Implementation
Authors
Keyword
Latest Issue
Copyrights notice of machine-translated contents
The copyright of the original papers published on this site belongs to IEICE. Unauthorized use of the original or translated papers is prohibited. See IEICE Provisions on Copyright for details.
Cite this
Copy
Mohammad Mesbah UDDIN, Yasunobu NOHARA, Daisuke IKEDA, Hiroto YASUURA, "A Multi-Application Smart Card System with Authentic Post-Issuance Program Modification" in IEICE TRANSACTIONS on Fundamentals,
vol. E91-A, no. 1, pp. 229-235, January 2008, doi: 10.1093/ietfec/e91-a.1.229.
Abstract: A multi-application smart card system consists of an issuer, service vendors and cardholders, where cardholders are recipients of smart cards (from the issuer) to be used in connection with applications offered by service vendors. Authentic post-issuance program modification is necessary for a multi-application smart card system because applications in the system are realized after the issuance of a smart card. In this paper, we propose a system where only authentic modification is possible. In the proposed system, the smart card issuer stores a unique long bitstring called PID in a smart card. The smart card is then given to the cardholder. A unique substring of the PID (subPID) is shared between the cardholder and a corresponding service vendor. Another subPID is shared between the issuer and the cardholder. During program modification, a protocol using the subPIDs, a one-way hash function and a pseudorandom number generator function verifies the identity of the parties and the authenticity of the program.
URL: https://global.ieice.org/en_transactions/fundamentals/10.1093/ietfec/e91-a.1.229/_p
Copy
@ARTICLE{e91-a_1_229,
author={Mohammad Mesbah UDDIN, Yasunobu NOHARA, Daisuke IKEDA, Hiroto YASUURA, },
journal={IEICE TRANSACTIONS on Fundamentals},
title={A Multi-Application Smart Card System with Authentic Post-Issuance Program Modification},
year={2008},
volume={E91-A},
number={1},
pages={229-235},
abstract={A multi-application smart card system consists of an issuer, service vendors and cardholders, where cardholders are recipients of smart cards (from the issuer) to be used in connection with applications offered by service vendors. Authentic post-issuance program modification is necessary for a multi-application smart card system because applications in the system are realized after the issuance of a smart card. In this paper, we propose a system where only authentic modification is possible. In the proposed system, the smart card issuer stores a unique long bitstring called PID in a smart card. The smart card is then given to the cardholder. A unique substring of the PID (subPID) is shared between the cardholder and a corresponding service vendor. Another subPID is shared between the issuer and the cardholder. During program modification, a protocol using the subPIDs, a one-way hash function and a pseudorandom number generator function verifies the identity of the parties and the authenticity of the program.},
keywords={},
doi={10.1093/ietfec/e91-a.1.229},
ISSN={1745-1337},
month={January},}
Copy
TY - JOUR
TI - A Multi-Application Smart Card System with Authentic Post-Issuance Program Modification
T2 - IEICE TRANSACTIONS on Fundamentals
SP - 229
EP - 235
AU - Mohammad Mesbah UDDIN
AU - Yasunobu NOHARA
AU - Daisuke IKEDA
AU - Hiroto YASUURA
PY - 2008
DO - 10.1093/ietfec/e91-a.1.229
JO - IEICE TRANSACTIONS on Fundamentals
SN - 1745-1337
VL - E91-A
IS - 1
JA - IEICE TRANSACTIONS on Fundamentals
Y1 - January 2008
AB - A multi-application smart card system consists of an issuer, service vendors and cardholders, where cardholders are recipients of smart cards (from the issuer) to be used in connection with applications offered by service vendors. Authentic post-issuance program modification is necessary for a multi-application smart card system because applications in the system are realized after the issuance of a smart card. In this paper, we propose a system where only authentic modification is possible. In the proposed system, the smart card issuer stores a unique long bitstring called PID in a smart card. The smart card is then given to the cardholder. A unique substring of the PID (subPID) is shared between the cardholder and a corresponding service vendor. Another subPID is shared between the issuer and the cardholder. During program modification, a protocol using the subPIDs, a one-way hash function and a pseudorandom number generator function verifies the identity of the parties and the authenticity of the program.
ER -
English
