If the customer receives private output from the smart card, he can generate private input to the smart card. If the smart card presents a one-time pad to the customer through the private output, the customer can encrypt his desired input to the smart card (see Section 4 for an example).