Sponsored by ComputerWeekly.com
Version 3 of the Java Card smart card specification, released in March 2008, overhauled the technical architecture of the smart card. The Connected Edition of the specification introduced a significantly enhanced execution environment and a new virtual machine. It includes new network-oriented features, support for web applications with new Servlet APIs, multi-threading and support for applets with extended and advanced capabilities. Such features add complexity to the smart card platform and the hosted applications, increasing the attack surface and introducing a multitude of vulnerabilities. The security models, testing and risk management programmes must cater for these susceptibilities. In this article we consider the new features of the Connected Edition and identify some of the security problems that developers need to be aware of. Access >>>
Table of contents
- Smart card operating systems
- Java Card
- Inter-application communications – services and events
Premium Content for Free.
More Premium Content Accessible For Free
What went wrong with the IT for farmers' rural payments?
In this week's Computer Weekly, we examine the real reasons behind the failure of the government's rural payments digital service. We look at how ...
A Computer Weekly buyer's guide to data science
In this 10-page buyer's guide, Computer Weekly looks at how, with the open data movement taking hold and data analytics technology becoming ...
Staying the course as a CIO
In this extract from his book, Staying the Course as a CIO, Jonathan M. Mitchell looks at the challenges of managing IT projects.