智能卡简介外文翻译.doc

毕 业 设 计（论 文）外 文 参 考 资 料 及 译 文 译文题目： 智能卡简介 学生姓名： 学号： 专业： 电子信息工程 所在学院： 信息技术学院 指导教师： 职称： 2013年 11月 25日说明：要求学生结合毕业设计（论文）课题参阅一篇以上的外文资料，并翻译至少一万印刷符（或译出3千汉字）以上的译文。译文原则上要求打印（如手写，一律用400字方格稿纸书写），连同学校提供的统一封面及英文原文装订，于毕业设计（论文）工作开始后2周内完成，作为成绩考核的一部分。Introduction of smart cardFROM: /view/0ceef3da81c758f5f61f6769.htmlA smart card, chip card, or integrated circuit card (ICC), is in any pocket-sized card with embedded integrated circuits which can process data. This implies that it can receive input which is processed by way of the ICC applications and delivered as an output. There are two broad categories of ICCs. Memory cards contain only non-volatile memory storage components, and perhaps some specific security logic. Microprocessor cards contain volatile memory and microprocessor components. The card is made of plastic, generally PVC, but sometimes ABS. The card may embed a hologram to avoid counterfeiting. Using smartcards also is a form of strong security authentication for single sign-on within large companies and organizations.l Overview A smart card is also characterized as follows: u Dimensions are normally credit card size. The ID-1 of ISO/IEC 7810 standard defines them as 85.60 53.98 mm. Another popular size is ID-000 which is 25 15 mm (commonly used in SIM cards). Both are 0.76 mm thick. u Contains a security system with tamper-resistant properties (e.g. a secure cryptoprocessor, secure file system, human-readable features) and is capable of providing security services (e.g. confidentiality of information in the memory). u Asset managed by way of a central administration system which interchanges information and configuration settings with the card through the security system. The latter includes card hotlisting, updates for application data. u Card data is transferred to the central administration system through card reading devices, such as ticket readers, ATMs etc. l Benefits Smart cards can be used for identification, authentication, and data storage.1 Smart cards provide a means of effecting business transactions in a flexible, secure, standard way with minimal human intervention. Smart card can provide strong authentication2 for single sign-on or enterprise single sign-on to computers, laptops, data with encryption, enterprise resource planning platforms such as SAP, etc. l History The automated chip card was invented by German rocket scientist Helmut Grttrup and his colleague Jrgen Dethloff in 1968; the patent was finally approved in 1982. The first mass use of the cards was for payment in French pay phones, starting in 1983 (Telecarte). Roland Moreno actually patented his first concept of the memory card in 1974. In 1977, Michel Ugon from Honeywell Bull invented the first microprocessor smart card. In 1978, Bull patented the SPOM (Self Programmable One-chip Microcomputer) that defines the necessary architecture to auto-program the chip. Three years later, the very first CP8 based on this patent was produced by Motorola. At that time, Bull had 1200 patents related to smart cards. In 2001, Bull sold its CP8 Division together with all its patents to Schlumberger. Subsequently, Schlumberger combined its smart card department and CP8 and created Axalto. In 2006, Axalto and Gemplus, at the time the worlds no.2 and no.1 smart card manufacturers, merged and became Gemalto. A smart card, combining credit card and debit card properties. The 3 by 5 mm security chip embedded in the card is shown enlarged in the inset. The contact pads on the card enables electronic access to the chip.The second use was with the integration of microchips into all French debit cards (Carte Bleue) completed in 1992. When paying in France with a Carte Bleue, one inserts the card into the merchants terminal, then types the PIN, before the transaction is accepted. Only very limited transactions (such as paying small autoroute tolls) are accepted without PIN. Smart-card-based electronic purse systems (in which value is stored on the card chip, not in an externally recorded account, so that machines accepting the card need no network connectivity) were tried throughout Europe from the mid-1990s, most notably in Germany (Geldkarte), Austria (Quick), Belgium (Proton), France (Moneo), the Netherlands (Chipknip and Chipper), Switzerland (Cash), Norway (Mondex), Sweden (Cash), Finland (Avant), UK (Mondex), Denmark (Danmnt) and Portugal (Porta-moedas Multibanco). The major boom in smart card use came in the 1990s, with the introduction of the smart-card-based SIM used in GSM mobile phone equipment in Europe. With the ubiquity of mobile phones in Europe, smart cards have become very common. The international payment brands MasterCard, Visa, and Europay agreed in 1993 to work together to develop the specifications for the use of smart cards in payment cards used as either a debit or a credit card. The first version of the EMV system was released in 1994. In 1998 a stable release of the specifications was available. EMVco, the company responsible for the long-term maintenance of the system, upgraded the specification in 2000 and most recently in 2004. The goal of EMVco is to assure the various financial institutions and retailers that the specifications retain backward compatibility with the 1998 version. With the exception of countries such as the United States of America there has been significant progress in the deployment of EMV-compliant point of sale equipment and the issuance of debit and or credit cards adhering the EMV specifications. Typically, a countrys national payment association, in coordination with MasterCard International, Visa International, American Express and JCB, develop detailed implementation plans assuring a coordinated effort by the various stakeholders involved. The backers of EMV claim it is a paradigm shift in the way one looks at payment systems. In countries where banks do not currently offer a single card capable of supporting multiple account types, there may be merit to this statement. Though some banks in these countries are considering issuing one card that will serve as both a debit card and as a credit card, the business justification for this is still quite elusive. Within EMV a concept called Application Selection defines how the consumer selects which means of payment to employ for that purchase at the point of sale. For the banks interested in introducing smart cards the only quantifiable benefit is the ability to forecast a significant reduction in fraud, in particular counterfeit, lost and stolen. The current level of fraud a country is experiencing, coupled with whether that countrys laws assign the risk of fraud to the consumer or the bank, determines if there is a business case for the financial institutions. Some critics claim that the savings are far less than the cost of implementing EMV, and thus many believe that the USA payments industry will opt to wait out the current EMV life cycle in order to implement new, contactless technology. Smart cards with contactless interfaces are becoming increasingly popular for payment and ticketing applications such as mass transit. Visa and MasterCard have agreed to an easy-to-implement version currently being deployed (2004-2006) in the USA. Across the globe, contactless fare collection systems are being implemented to drive efficiencies in public transit. The various standards emerging are local in focus and are not compatible, though the MIFARE Standard card from Philips has a considerable market share in the US and Europe. Smart cards are also being introduced in personal identification and entitlement schemes at regional, national, and international levels. Citizen cards, drivers licenses, and patient card schemes are becoming more prevalent; For example in Malaysia, the compulsory national ID scheme MyKad includes 8 different applications and is rolled out for 18 million users. Contactless smart cards are being integrated into ICAO biometric passports to enhance security for international travel. l Contact smart card Contact smart cards have a contact area, comprising several gold-plated contact pads, that is about 1 cm square. When inserted into a reader, the chip makes contact with electrical connectors that can read information from the chip and write information back.3 The ISO/IEC 7816 and ISO/IEC 7810 series of standards define: u the physical shape u the positions and shapes of the electrical connectors u the electrical characteristics u the communications protocols, that includes the format of the commands sent to the card and the responses returned by the card. u robustness of the card the functionality The cards do not contain batteries; energy is supplied by the card reader. Electrical signals description u A smart card pinoutVCC : Power supply input u RST : Either used itself (reset signal supplied from the interface device) or in combination with an internal reset control circuit (optional use by the card). If internal reset is implemented, the voltage supply on Vcc is mandatory. u CLK : Clocking or timing signal (optional use by the card). u GND : Ground (reference voltage). u VPP : Programming voltage input (deprecated / optional use by the card). u I/O : Input or Output for serial data to the integrated circuit inside the card. u NOTE - The use of the two remaining contacts will be defined in the appropriate application standards. l Reader Contact smart card readers are used as a communications medium between the smart card and a host, e.g. a computer, a point of sale terminal, or a mobile telephone. Since the chips in the financial cards are the same as those used for mobile phone Subscriber Identity Module (SIM) cards, just programmed differently and embedded in a different shaped piece of PVC, the chip manufacturers are building to the more demanding GSM/3G standards. So, for instance, although EMV allows a chip card to draw 50 mA from its terminal, cards are normally well inside the telephone industrys 6mA limit. This is allowing financial card terminals to become smaller and cheaper, and moves are afoot to equip every home PC with a card reader and software to make internet shopping more secure.citation needed l Contactless smart card A second type is the contactless smart card, in which the chip communicates with the card reader through RFID induction technology (at data rates of 106 to 848 kbit/s). These cards require only close proximity to an antenna to complete transaction. They are often used when transactions must be processed quickly or hands-free, such as on mass transit systems, where smart cards can be used without even removing them from a wallet. The standard for contactless smart card communications is ISO/IEC 14443. It defines two types of contactless cards (A and B), allows for communications at distances up to 10 cm. There had been proposals for ISO/IEC 14443 types C, D, E and F that have been rejected by the International Organization for Standardization. An alternative standard for contactless smart cards is ISO 15693, which allows communications at distances up to 50 cm. Examples of widely used contactless smart cards are Hong Kongs Octopus card, South Koreas T-money (Bus, Subway, Taxi), Londons Oyster card, Japan Rails Suica Card and Mumbai Bus transportation service BEST uses smart cards for bus pass, which predate the ISO/IEC 14443 standard. All of them are primarily designed for public transportation payment and other electronic purse applications. A related contactless technology is RFID (radio frequency identification). In certain cases, it can be used for applications similar to those of contactless smart cards, such as for electronic toll collection. RFID devices usually do not include writeable memory or microcontroller processing capability as contactless smart cards often do. Like smart cards with contacts, contactless cards do not have a battery. Instead, they use a built-in inductor to capture some of the incident radio-frequency interrogation signal, rectify it, and use it to power the cards electronics. l Cryptographic smart cards Cryptographic smart cards are often used for single sign-on. Most advanced smart cards are equipped with specialized cryptographic hardware that let you use algorithms such as RSA and DSA on board. Todays cryptographic smart cards are also able to generate key pairs on board, to avoid the risk of having more than one copy of the key (since by design there usually isnt a way to extract private keys from a smart card). Such smart cards are mainly used for digital signature and secure identification, (see applications section). 4 The most common way to access cryptographic smart card functions on a computer is to use a PKCS#11 library provided by the vendor. On Microsoft Windows platforms the CSP API is also adopted. The most widely used cryptographic algorithms in smart cards (excluding the GSM so-called crypto algorithm) are 3DES (Triple DES) and RSA. The key set is usually loaded (DES) or generated (RSA) on the card at the personalization stage. l Computer security The Mozilla Firefox web browser can use smart cards to store certificates for use in secure web browsing5. Some disk encryption systems, such as FreeOTFE or TrueCrypt, can use smart cards to securely hold encryption keys, and also to add another layer of encryption to critical parts of the secured disk6. Smartcards are also used for single sign-on to log on to computers Smartcards support functionality has been added to Windows Live Passports l Financial The applications of smart cards include their use as credit or ATM cards, in a fuel card, SIMs for mobile phones, authorization cards for pay television, pre-pay utilities in household, high-security identification and access-control cards, and public transport and public phone payment cards. Smart cards may also be used as electronic wallets. The smart card chip can be loaded with funds which can be spent in parking meters and vending machines or at various merchants. Cryptographic protocols protect the exchange of money between the smart card and the accepting machine. There is no connection to the issuing bank necessary, so the holder of the card can use it regardless of him being the owner. The German Geldkarte is also used to validate the customers age at vending machines for cigarettes.智能卡简介来自/view/0ceef3da81c758f5f61f6769.html智能卡、芯片卡或IC卡（ ICC ），是指任何具有嵌入式集成电路并且可处理信息的袖珍卡。这意味着，它可以接收输入并由IC卡处理程序处理后产生输出。IC卡有两大类：记忆卡只包含非易失性存储器存储组件，甚至只有一些具体的安全逻辑；微处理器卡含有挥发性内存和微处理器组成部分，该卡是由塑料（一般是聚氯乙烯，但有时是ABS树脂）制成，可嵌入一个全息图像，以避免伪造。 l “智能卡”的特点如下： u 尺寸通常为信用卡大小，根据ISO / IEC 7810的ID-1标准定义为85.60 53.98毫米，还有一种流行的尺寸根据ID-000标准为25 15毫米，两者都是0.76毫米厚。 u 通常包含一个安全系统防篡改属性（例如一个安全的密码，安全文件系统，人类可读的功能等），并有能力提供安全服务（如对信息保密的记忆）。 u 通过一个中央管理系统进行交流信息和配置设置的卡通过安全体系完成信息管理。后者包括信用卡更新的应用程序数据。 u 卡数据传送到中央管理系统通过卡阅读设备，如车票的读者，自动柜员机等 l 好处：智能卡提供了一种手段，实行商业交易灵活，安全，标准方法以最小的人为干预。 智能卡可以提供强大的身份验证2为单点登录或企业单点登录电脑、笔记本电脑、数据加密、SAP等企业资源规划平台等。l 历史：自动化的芯片卡是由德国火箭科学家Helmut Grottrup和他的同事Jrgen Dethloff在1968年提出，并1982年获得专利。首次大规模使用的信用卡是开始于1983年用于在法国支付付费电话。 Roland Moreno在1974年首次提出实际概念的记忆卡。 1977年，Michel Ugon发明了第一个微处理器的智能卡。 1978年，Bull获得 SPOM （自可编程单片微机）的专利，它确定了其必要的结构，以进行芯片自动编程。三年后，第一个“ CP8 ” 由摩托罗拉公司在此基础上获得专利。到现在共有1200个有关智能卡的专利。 智能卡结合了信用卡和借记卡的属性。3到5毫米厚度使得安全芯片可以嵌入到卡中以存储安全信息。卡上有可以通电的金属片。智能卡的第二次的使用是在1992年的法国由整合芯片制成的借记卡（蓝卡）。当在法国使用蓝卡，只需要将卡插入到商家的终端，然后输入密码，在交易被接受之后便可完成支付。只有非常有限的交易（如支付小高速公路通行费）是使用了个人识别号码。 智能卡的电子钱包系统（信息记录在卡上，而不是在外部记录帐户，使机器识别信用卡不需要网络连接）从20世纪90年代中期开始风靡在整个欧洲：最典型的有德国（Geldkarte），奥地利（Quick），比利时（Proton），法国（Moneo），荷兰（Chipknip and Chipper），瑞士（Cash），瑞典（Cash），芬兰（Avant），英国（Mondex），丹麦（Danmnt）和葡萄牙（Porta-moedas Multibanco）。智能卡是在20世纪90年代随着使用SIM卡的GSM移动电话设备在欧洲广泛应用。随着手机在欧洲的普及，智能卡已成为非常普遍的。 国际支付品牌的MasterCard，Visa和Europay商定于1993年开发共同的标准，使用智能卡无论是作为借记卡还是信用卡都能在支付时使用。EMV系统的第一个版本的公布于1994年。在1998年发布了稳定的标准。 EMVco 公司负责系统的长期维护，并在2000年升级了标准，最近一次是在2004年。 EMVco的目标是要保证各金融机构和零售商的标准保持1998年版向后兼容。 除了一些国家坚持的EMV标准如美利坚合众国已取得EMV兼容的销售点设备和发放借记卡和信用卡部署的重大进展。一般来说，在国家支付协会的协调下，确保同MasterCard国际组织，Visa国际组织，American Express和JCB 共同制订详细的实施计划的标准一致，使各利益相关者参与。 EMV卡的支持者声称它提供了一个支付系统的范例。在有些国家的银行目前不提供单卡支持多个帐户类型的服务的情况系，这个声明可能是有道理的。虽然一些银行在这些国家正在考虑发行一张卡，使其作为一个借记卡和信用卡，商业卡，但这仍然相当困难。在所谓的EMV概念下界定的消费者如何选择支付手段成为销售点。 至于银行感兴趣的是介绍智能卡的标准化的好处是能够显着减少欺诈行为，特别是伪造，丢失和被盗。目前许多国家正在经历欺诈行为，再加上无论是国家法律对消费者或银行或是否有商业案例的金融机构赋予的欺诈风险。一些批评者宣称，实施EMV储蓄是远远低于成本的。因此许多人认为，美国支付行业将选择等待目前的EMV的生命周期以便实施新的非接触式技术。 非接触式接口智能卡在支付和票务应用方面变得越来越普遍，如大众交通。Visa和MasterCard已同意在美国部署一个易于执行的版本（ 2004-2006 ）。在全球范围内，