JCMathLib: Wrapper Cryptographic Library for Transparent and
Certifiable JavaCard Applets

D 2020

JCMathLib: Wrapper Cryptographic Library for Transparent and Certifiable JavaCard Applets

MAVROUDIS, Vasilios a Petr ŠVENDA

Základní údaje

Originální název

JCMathLib: Wrapper Cryptographic Library for Transparent and Certifiable JavaCard Applets

Autoři

MAVROUDIS, Vasilios (300 Řecko) a Petr ŠVENDA (203 Česká republika, garant, domácí)

Vydání

Genoa, Italy, 2020 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW), od s. 89-96, 8 s. 2020

Nakladatel

IEEE

Další údaje

Jazyk

angličtina

Typ výsledku

Stať ve sborníku

Obor

10201 Computer sciences, information science, bioinformatics

Stát vydavatele

Spojené státy

Utajení

není předmětem státního či obchodního tajemství

Forma vydání

elektronická verze "online"

Odkazy

URL

Kód RIV

RIV/00216224:14330/20:00117152

Organizační jednotka

Fakulta informatiky

ISBN

978-1-7281-8597-2

DOI

http://dx.doi.org/10.1109/EuroSPW51379.2020.00022

UT WoS

000630275400013

Klíčová slova anglicky

Cryptography; JavaCard; Auditability; Transparency; Elliptic Curves; Big Integers

Změněno: 5. 1. 2023 16:10, doc. RNDr. Petr Švenda, Ph.D.

Anotace

V originále

The JavaCard multi-application platform is now deployed to over twenty billion smartcards, used in various applications ranging from banking payments and authentication tokens to SIM cards and electronic documents. In most of those use cases, access to various cryptographic primitives is required. The standard JavaCard API provides a basic level of access to such functionality (e.g., RSA encryption) but does not expose low-level cryptographic primitives (e.g., elliptic curve operations) and essential data types (e.g., Integers). Developers can access such features only through proprietary, manufacturer-specific APIs. Unfortunately, such APIs significantly reduce the interoperability and certification transparency of the software produced as they require non-disclosure agreements (NDA) that prohibit public sharing of the applet’s source code. We introduce JCMathLib, an open library that provides an intermediate layer realizing essential data types and lowlevel cryptographic primitives from high-level operations. To achieve this, we introduce a series of optimization techniques for resource-constrained platforms that make optimal use of the underlying hardware, while having a small memory footprint. To the best of our knowledge, it is the first generic library for low-level cryptographic operations in JavaCards that does not rely on a proprietary API. Without any disclosure limitations, JCMathLib has the potential to increase transparency by enabling open code sharing, release of research prototypes, and public code audits. Moreover, JCMathLib can help resolve the conflict between strict open-source licenses such as GPL and proprietary APIs available only under an NDA. This is of particular importance due to the introduction of JavaCard API v3.1, which targets specifically IoT devices, where open-source development might be more common than in the relatively closed world of government-issued electronic documents.

Návaznosti

GA20-03426S, projekt VaV

Název: Ověření a zlepšení bezpečnosti kryptografie eliptických křivek

Investor: Grantová agentura ČR, Ověření a zlepšení bezpečnosti kryptografie eliptických křivek

Citovat

MAVROUDIS, Vasilios a Petr ŠVENDA. JCMathLib: Wrapper Cryptographic Library for Transparent and Certifiable JavaCard Applets. Online. In 2020 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW). Genoa, Italy: IEEE, 2020, s. 89-96. ISBN 978-1-7281-8597-2. Dostupné z: https://dx.doi.org/10.1109/EuroSPW51379.2020.00022.

@inproceedings{1701639,
   author = {Mavroudis, Vasilios and Švenda, Petr},
   address = {Genoa, Italy},
   booktitle = {2020 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW)},
   doi = {http://dx.doi.org/10.1109/EuroSPW51379.2020.00022},
   keywords = {Cryptography; JavaCard; Auditability; Transparency; Elliptic Curves; Big Integers},
   howpublished = {elektronická verze "online"},
   language = {eng},
   location = {Genoa, Italy},
   isbn = {978-1-7281-8597-2},
   pages = {89-96},
   publisher = {IEEE},
   title = {JCMathLib: Wrapper Cryptographic Library for Transparent and Certifiable JavaCard Applets},
   url = {https://crocs.fi.muni.cz/papers/cybercert2020},
   year = {2020}
}

TY  - JOUR
ID  - 1701639
AU  - Mavroudis, Vasilios - Švenda, Petr
PY  - 2020
TI  - JCMathLib: Wrapper Cryptographic Library for Transparent and Certifiable JavaCard Applets
PB  - IEEE
CY  - Genoa, Italy
SN  - 9781728185972
KW  - Cryptography
KW  - JavaCard
KW  - Auditability
KW  - Transparency
KW  - Elliptic Curves
KW  - Big Integers
UR  - https://crocs.fi.muni.cz/papers/cybercert2020
N2  - The JavaCard multi-application platform is now deployed to over twenty billion smartcards, used in various applications ranging from banking payments and authentication tokens to SIM cards and electronic documents. In most of those use cases, access to various cryptographic primitives is required. The standard JavaCard API provides a basic level of access to such functionality (e.g., RSA encryption) but does not expose low-level cryptographic primitives (e.g., elliptic curve operations) and essential data types (e.g., Integers). Developers can access such features only through proprietary, manufacturer-specific APIs. Unfortunately, such APIs significantly reduce the interoperability and certification transparency of the software produced as they require non-disclosure agreements (NDA) that prohibit public sharing of the applet’s source code. We introduce JCMathLib, an open library that provides an intermediate layer realizing essential data types and lowlevel cryptographic primitives from high-level operations. To achieve this, we introduce a series of optimization techniques for resource-constrained platforms that make optimal use of the underlying hardware, while having a small memory footprint. To the best of our knowledge, it is the first generic library for low-level cryptographic operations in JavaCards that does not rely on a proprietary API. Without any disclosure limitations, JCMathLib has the potential to increase transparency by enabling open code sharing, release of research prototypes, and public code audits. Moreover, JCMathLib can help resolve the conflict between strict open-source licenses such as GPL and proprietary APIs available only under an NDA. This is of particular importance due to the introduction of JavaCard API v3.1, which targets specifically IoT devices, where open-source development might be more common than in the relatively closed world of government-issued electronic documents.
ER  -

MAVROUDIS, Vasilios a Petr ŠVENDA. JCMathLib: Wrapper Cryptographic Library for Transparent and Certifiable JavaCard Applets. Online. In \textit{2020 IEEE European Symposium on Security and Privacy Workshops (EuroS\&{}PW)}. Genoa, Italy: IEEE, 2020, s.~89-96. ISBN~978-1-7281-8597-2. Dostupné z: https://dx.doi.org/10.1109/EuroSPW51379.2020.00022.

Podrobný výpis o publikaci