Jim Rees

WebCard: a java card web server

Webcard is a Java application that implements a TCP/IP stack and HTTP server and runs on a Schlumberger Cyberflex Access smartcard. In this report, we describe the architecture and implementation of Web-card and the constraints and assumptions that influenced its design. Complete sources for the application and its supporting environment are available.

The LITTLE WORK project

Supporting software has not kept pace with the micro-miniaturization of microprocessor-based machines. The predominant operating system on such machines is MS-DOS, with no support for distributed computing. The goal of the LITTLE WORK project is to use off-the-shelf components to develop a mobile computing environment that is identical to that encountered in the office environment. Components identified as critical building blocks are the computer, the operating system, the file system, and communication. Each is examined. Development of a prototype machine is described.<<ETX>>

Implementation of a Provably Secure, Smartcard-Based Key Distribution Protocol

We describe the implementation of the Shoup-Rubin key distribution protocol. This protocol stores long-term keys on a smartcard and uses the cryptographic capability of the card to generate and distribute session keys securely. The designers of the protocol provide a mathematical proof of its security, using techniques pioneered by Bellare and Rogaway. Combining this theoretical strength with our implementation on tamper resistant hardware results in practical and powerful middleware functionality, useful in applications that demand strong authentication and confidentiality.