During the development and production of secure smartcard products there is a need for a secure exchange of trusted data between multiple parties (Card manufacturer, OS manufacturer, customer, etc.). Goal of this research project is to establish a comprehensive workflow that will cover the steps from customer requirements over product configuration, verification, production and delivery in consideration of high security requirements. Especially the interfaces between each party needs to be designed with care, since it is easy to leave an open security leak where an attacker can retrieve master keys and other trusted data.
Aim is to develop a generic architecture to support the wide variety of products regarding different OS versions and hardware platforms using modern techniques of component based development. An exemplary use-case is the secure insertion of customer specific key material into the protected OS/HW structure of a smartcard and a secure retrieval process in case of symmetric key material.
Furthermore, new techniques for the creation of die individual (dynamic) TP data are considered which will increase the security of the overall process and simultaneously will reduce the needed time to manufacture a chip in the factory.
Smartcard products are usually evaluated according to Common Criteria which adds additional requirements to the underlying development process and the used toolchains. To reduce the needed time to develop new products, components of previously evaluated products are used by applying advanced techniques for an efficient reuse of security evaluation results (Composite Product Evaluation).