an authentication framework for secure nfc …...2012/05/09 · 7 tizen.org 0 200 400 600 800 1,000...
TRANSCRIPT
An Authentication Framework for Secure NFC Applications
Charles Walton 9 May 2012
tizen.org 2
A History of NFC Innovation
tizen.org 3
INSIDE Secure: A Leader, Pioneer in NFC
A leading position in the NFC market…
..INSIDE Strengths
• One of only 2 vendors worldwide
currently shipping NFC chips in volume:
─ Over 17 million NFC chips sold in 2011
─ Design wins & strategic partnerships with leading
mobile device and SIM providers
• Multiple Innovative Solutions
─ 4th generation NFC chips
─ Roadmap to 65 nm technology node
─ Open NFC software for multiple ecosystems
• Proprietary Secure Element for 2012
• Applications, Authentication Infrastructure
• NFC Booster for Legacy Mobile Phones
─ SIM, microSD Form-Factors
tizen.org 4
Near Field Communications (NFC)
Reader Mode
Card Emulation
Device to Device
• Smart posters
• ID check
• Download of mobile
coupons
• Mobile advertising
• Transport and ticketing
• Mobile payments
• Access control
• Information exchange
• P2P payment
• Social networking
• Low-power short-range wireless
• Enables contactless communication between devices when they are brought within a few centimeters of each other
• Compatible with large installed base of RF readers, smartcards and tags
• Enables a new breed of proximity-based applications for mobile handsets, tablets, PCs and other consumer electronic devices
Secure Connectivity
Standard Easy-to-use Platforms for Unlimited
Applications
tizen.org 5
High Level NFC Architecture
tizen.org 6
INSIDE’s Open NFC Software Stack
tizen.org 7
0
200
400
600
800
1,000
2011 2012e 2013e 2014e 2015e 2016e
IMS ABI Informa
Rapid NFC Market Growth N
FC
-en
ab
led
ha
nd
se
t
sh
ipm
en
ts w
orl
dw
ide
(mill
ion
s)
Sources: Informa, IMS Research, ABI Research
918m NFC-enabled mobile
handsets in 2016
552m NFC-enabled mobile
handsets in 2016
630m NFC-enabled mobile
handsets in 2015
tizen.org 8
tizen.org 9
Current Situation for NFC Application Growth
• Attributes
─ Proprietary Vendor Solutions – Evolving from Card Market
─ Card Applet, Reader Firmware Pair for each Scheme
─ Multi-App Smart Card Paradigm Evolution to TSM
─ Chip Based Application and Credentials
• Scaling Challenges
─ Drives greater secure chip capacity requirements
─ Slower, less flexible, more expensive, less open
─ In short, tech-centric (old paradigm) drivers
tizen.org 10
Historical, Legacy Approach – Why?
Reader Device Visa
payWave
HID iClass
Physical Access
MBTA
Transit
MasterCard
PayPass
Visa
payWave
HID iClass
Physical Access
MBTA
Transit
MasterCard
PayPass
Contactless Card
tizen.org 11
Approach to Contactless Standards
• Separation of Contactless Application Protocol
• Component for Standard Authentication
• Component for Data Exchange
• Move Data Management to Server-Based Services
ISO 14443
MasterCard
PayPass
ISO 14443
MBTA
Transit
ISO 14443
Simple
Authentication
Application
Data
ISO 14443
Acme
Coffee
tizen.org 12
An NFC Authentication Scheme
• Targeted to New NFC/Contactless Applications, Fast Time to Market
• Open framework for future applications, vs. “walled garden”
• Elimination of Applet, Terminal Application Scalability Problems
• Applicable to use cross vertical markets, cross hardware ecosystems
• New Vertical Market Schemes in Target: Retail Commerce, Health, …
• Preserve Legacy Data Flows for Magstripe Applications
ISO 14443
Simple Authentication
“Acme Coffee”
“1st National Hardware”
“Mass Gen Hospital”
tizen.org 13
The Future of Secure NFC Applications
• SE: Multi-applets, multi-credentials
• Storage: Drives increased SE capacity
• Auth: Multiple, different schemes
• Interop: Fragmentation, lack of standard
• TSM: More complex, heavy
•SE: One user credential
•Storage: Minimizes storage requirements
•TSM: Simplified SE Administration
•Flexible: Credentials in eSE or UICC
•Flexible: Fast to market for developers
tizen.org 14
A System Approach: ‘An NFC-id’
UI App
NFC -Man
NFC SW Stack
OS
NFC Controller
Secure Element NFC-id
Applet Smart
Phone
Application
Store
TSM
Service
UI A
pp
lic
ati
on
Do
wn
loa
d
SE
Ma
nag
em
en
t
NFC-id
Firmware
Core NFC Reader
Functions Legacy
App SW
NFC
Reader
NFC Contactless
Transaction
App/Service
Provider
NFC-id Reader,
Services
Interconnect
Authentication, Validation
Core Payment, Loyalty, Info
Access Transaction
NFC-id Managed Service
Aggregate Managed Service
Application
Service Provider
(Retailer, Other)
tizen.org 15
Strong Value Proposition in the Ecosystem
Smart Phone OEM
Wireless Carrier,
TSM
App Service Provider
Reader Device Maker
Merchant Consumer
Common Framework – ‘The SSL for NFC’
The Benefits of NFC-id to the Application Enablement Community
• Minimizes SE Storage Space Requirements
• Minimizes TSM Applet and Credential Downloads
• Minimizes Reader Device Updates
• Application and Developer Simplicity • Focus on UI Application, Faster/Simpler Application Rollouts.
• Applicable for Proximity, WIFI, OTA Transactions
• Flexibility for Multiple Administrative Domains if Desired
tizen.org 16
Summary Points
• Next Wave of NFC Applications and Services will require a common
framework for industry growth
• For Mobile Commerce, services meeting the needs of the retail
segment: Methodology, Tools, Core Authentication.
• Framework of NFC-id within Tizen Ecosystem
• Open NFC for Tizen Ecosystem
Charles Walton, General Manager INSIDE Secure 617-953-4251 [email protected]