Security Section Index | Page 4
Are transient writes transactioned?
No. Transient data is lost whenever the card is powered-up, so it wouldn't make sense to include it in transactions.
Can any data be shared?
No. To be shareable, an object must be an instance of a class implementing an interface extending the Shareable interface. Got that? Well, this is the one-line version. Check out the Java Card doc...more
Can two applets share data?
Yes. If two applets live in the same package, they are attached to the same memory context. Thus, they may exchange object references and use them directly. Two applets living in different package...more
How does Java Card protect itself against SPA, DPA, etc?
The Java Card specification doesn't deal with smart card attacks. Card issuers have to make sure that their Java Card implementation is immune (or at least very resistant) to all well-known smart ...more
How much transient data can I allocate?
Not much. The value is platform-dependent, but it's usually around 220 bytes. Transient space is shared among all applets, so you need to be very conservative. Unfortunately, there's no API to get...more
How safe is Java Card?
This is a very tough question. The security of Java cards is evaluated using
the Common Criteria (CC) methodology. A number of platforms (Gemplus, Oberthur Card Systems, Schlumberger, probably ot...more
How secure is object sharing?
The security of object sharing relies on AIDs. If an applet may be loaded with an arbitrary AID, then your security is pretty much out the window. This is why the security mechanisms provided by O...more
May transient data be shared?
No. Any attempt to share a transient array, whatever its type is, will trigger a SecurityException.
What are the security features of Java Card?
The main security features of Java Card are:
All the benefits of the Java language: data encapsulation, safe memory management, packages, etc.
Applet isolation, thanks to the Java Card firewall.
...more
What is the firewall?
The firewall is a software feature of the Java Card platform, which isolates applets from each other. In other words, even if an applet succeeds in obtaining a reference to an object belonging to ...more
When do I need to use transients?
Transients are relevant when you need to store data that mustn't survive either applet deselection or card reset. They're also good for frequently modified non-persistent data and temporary result...more
How do I configure a HostnameVerifier on an HttpsURLConnection?
The solution:
connection.setHostnameVerifier(new HostnameVerifier()
{
public boolean verify(String urlHostname, String certHostname)
{
return ("www.badcert.com".equalsIgnoreCase(ce...more
Where can I learn about US patents?
Check out the US Patent & Trademark Office web site.
Where can I learn about US trademarks?
Check out the US Patent & Trademark Office web site.
Where can I learn more about US copyright law?
A good place to start is Brad Templeton's 10 Big Myths about copyright explained page.
