smartcard - Symptoms of EEPROM damage -


suppose there bug in java card applet: temporary byte array stored in eeprom instead of ram. moreover, suppose byte array overwritten each apdu.

this bug should damage card sooner or later.

what symptoms expect? incorrect values in array without explicit warnings or errors? exceptions thrown when accessing array? applet unselectable? whole card unresponsive?

should card damaged "once , forever", or these failures occur more , more often?

in experiment (j2e145) there first failure after 5 000 000 apdus , symptom card did not send r-apdu @ , died. however, next apdu ok again, approximately 1 apdu out of 10000 failed (with increasing frequency) , after 5 100 000 apdus card stopped communicating forever.

is there standard says should happen in case of eeprom damage? (i looking it, did not find any.)

i know question broad , depends on particular chip (i interested in nxp chips), think comments, answers , experience many java card developers, found bug in code after deployment.

i guess best shot @ finding non-nda'd information common criteria security targets specific platforms.

an example hardware platform nxp: nxp secure smart card controllers p5cx128v0a/p5cx145v0a, mso (bsi-dsz-cc-0645)

  • from toe overview:

    the non-volatile eeprom [...] contains high reliability cells, guarantee data integrity. [...] security functionality protects contents of memories.

  • from security feature sf.opc:

    an exception forced [...] single fault injection detection circuitry. in case minor configuration option "inverse eeprom error correction" enabled [...] probability detect fault injection errors increases , error correction logic raises exception when detecting error.

  • from security feature sf.phy:

    the eeprom able correct 1-bit error within each byte. [...] eeprom corrects errors automatically without user interaction [...]

so this hardware platform capable of detecting eeprom cell failures , can automatically correct 1-bit errors within each byte. other detected errors raise exception can handled software.

that's hardware platform (without os / jcre). let's see security target of jcop tells us. chose nxp j3a128 , j3a095 secure smart card controller rev. 3 (bsi-dsz-cc-0731).

  • from security feature sf.audit:

    the following reactions toe based on indication of potential violation of tsp possible:

    • throw exception
    • terminate card (life cycle state: terminated)
    • reinitialize java card system (warm reset)
    • [...] eeprom able correct 1-bit error within each byte. [...] eeprom corrects errors automatically without user interaction [...]
    • lock card session (simply stops processing; escape reset session/card tearing)

    based on these types of response/reaction events listed above have following mapping:

    • eeprom failure audited through exceptions in read/write operations , consistency/integrity check: lock card session
    • self test mechanism on start-up: lock card session
    • corruption of check-summed objects: lock card session

  • from security feature sf.securemanagement:

    the tsf run suite of self-tests during initial start-up (at each power on) demonstrate correct operation of tsf, verify integrity of tsf data, , verify integrity of stored tsf executable code. includes checking eeprom integrity. if error detected, toe enters secure state (lock card session)

    the tsf monitors user data d.app_code, d.app_i_data, d.pin, d.app_keys for integrity errors. if error occurs, tsf maintain secure state (lock card session)

so this software platform (again) capable of detecting eeprom cell failures , can automatically correct 1-bit errors within each byte. other detected eeprom errors "lock card session", means stops processing , performs reset. seems match observation "the symptom card did not send r-apdu @ , died".


Comments

Post a Comment

Popular posts from this blog

Magento/PHP - Get phones on all members in a customer group -

i working on custom magento extension. working around adminhtml part , i've created custom form there. here form code: <?php class vivasindustries_smsnotification_block_adminhtml_sms_sendmass_edit_form extends mage_adminhtml_block_widget_form { public function _preparelayout() { $extensionpath = mage::getmoduledir('js', 'vivasindustries_smsnotification'); $head = $this->getlayout()->getblock('head'); $head->addjs('jquery.js'); $head->addjs('vivas.js'); return parent::_preparelayout(); } protected function _prepareform() { $form = new varien_data_form(array( 'id' => 'edit_form', 'action' => $this->geturl('*/*/save', array('id' => $this->getrequest()->get...
Read more

php - Bypass Geo Redirect for specific directories -

i'm trying bypass redirect specific url within site. wondering if might able help. the code below code use, original urls replaces example.com i'd able access http://example.com/admin without redirect occuring. is there way this, , there way using own ip? function country_geo_redirect() { $country = getenv('http_geoip_country_code'); if ($country == "us" ) { wp_redirect("http://usa.example.com/"); exit; } else if ($country == "gb" ) { wp_redirect("http://uk.example.com/"); exit; } } add_action('init', 'country_geo_redirect'); you can bypass redirection code if server found ip address. if ip address == <my ip address> ' nothing here else country_georedirect() end if
Read more

php - .htaccess mod_rewrite for dynamic url which has domain names -

i want convert url ex:( example.com/link.php?url=facebook.com ) ( example.com/facebook.com.php ) how can using .htaccess. or there other process make job easier ? i tried adding script .htaccess file options +followsymlinks rewriteengine on rewriterule url-(.*)\.htm$ link.php?url=$1 but converting url adding "url-" ( example.com/url-facebook.com.php ) i want remove "url-" , want make ( example.com/facebook.com.php ) rewriteengine on rewritecond %{the_request} ^get.*link\.php\?url\= [nc] rewritecond %{request_uri} !/system/.* [nc] rewriterule (.*?)link\.php\?url\=/*(.*) /$1$2 [r=301,ne,l] not sure how above work edit of used use remove index.php url
Read more