|
Second USENIX Workshop on Electronic Commerce
Smart Cards in Hostile Environments
Howard Gobioff, Carnegie Mellon University
Sean Smith, IBM Research
J.D. Tygar, Carnegie Mellon University
Bennet Yee, UC San Diego
Abstract
One often hears the claim that smart cards are the solution to a
number of security problems, including those arising in point-of-sale
systems. In this paper, we characterize the minimal properties
necessary for the secure smart card point-of-sale transactions. Many
proposed systems fail to provide these properties: problems arise from
failures to provide secure communication channels between the user and
the smart card while operating in a potentially hostile environment
(such as a point-of-sale application.) Moreover, we discuss several
types of modifications that can be made to give smart cards additional
input/output capacity with a user, and describe how this additional
I/O can address the hostile environment problem. We give a notation
for describing the effectiveness of smart cards under various
environmental assumptions. We discuss several security equivalences
among different scenarios for smart cards in hostile environments.
View the full text of this paper in
HTML and
POSTSCRIPT (130,954 Bytes) form.
To Become a USENIX Member, please see our
Membership Information.
|
Need help? Use our Contacts page.
Conference Index