A Secure and Trusted Channel Protocol for User Centric Smart Card Ownership Model

Research output: Chapter in Book/Report/Conference proceedingConference contribution

1036 Downloads (Pure)


The User Centric Smart Card Ownership Model (UCOM) provides an open and dynamic smart card environment enabling cardholders to request installation/deletion of an application to which they are entitled. As in this model, smart cards are not under the control of a centralised authority; hence, it is difficult for an application provider to ascertain their trustworthiness. At present, proposed secure channel protocols for the smart card environment do not provide adequate assurance required by the UCOM. In this paper, we explore the reasons behind their failure to meet the UCOM requirements and then propose a secure and trusted channel protocol that meets them. In addition, the proposed protocol is also suitable to GlobalPlatform's consumer-centric smart cards. A comparison of the proposed protocol with existing smart card and selected Internet protocols is provided. Then we analyse the protocol with the CasperFDR tool. Finally, we detail the implementation and the performance measurement.
Original languageEnglish
Title of host publication12th IEEE International Conference on Trust, Security and Privacy in Computing and Communications (IEEE TrustCom-13)
Place of PublicationMelbourne, Australia
PublisherIEEE Computer Society Press
Publication statusPublished - 16 Jul 2013

Cite this