Java Magazine, Nov/Dec 2017
An Introduction to Java Card The smallest Java platform is one of the most widely distributed See how programming it is different from developing conventional apps ORACLE COM JAVAMAGAZINE NOVEMBER DECEMBER 2017 77 java card Java Card is at its core a minimal subset of Java enriched with features catering to the security needs of secure elements A secure element SE is a tamper resistant hardware environment capable of securely hosting applications and their confidential and cryptographic data The most common SE is the one chip secure microcontroller found in smartcards New form factors have started to emerge though from embedded SEs a nonremovable secure microcontroller soldered onto a device board to new security designs embedded into general purpose chips Figure 1 shows the kinds of SEs commonly deployed For any of these SEs a set of common critical requirements can be identified Security Applications must factor in security attributes such as transaction atomicity cryptography support signing an authentication of applications application isolation and a firewall Certifiability Customers require high level security certifications according to internal security assurance level standards such as Common Criteria and FIPS as well as domain specific certifications for example from government entities or payment organizations Compactness SEs are typically resource constrained devices CPU memory and bandwidth In particular memory configurations rarely exceed 1 MB of overall available memory and RAM specifications can be as low as 2 KB Standards based manageability SE applications and stored credentials must be securely managed and updated according to open industry standards Java Card addresses these requirements while retaining the openness and code portability provided by Java NICOLAS PONSINI FLORIAN TOURNIER
You must have JavaScript enabled to view digital editions.