Archives
  Columns
  Features
  Print Archives
1994-1998
  Special
  BYTE Digest
  Michael Abrash's Graphics Programming Black Book
  101 Perl Articles
  About Us
  How to Access BYTE.com
  Write to BYTE.com
  Advertise with BYTE.com

Newsletter
Free E-mail Newsletter from BYTE.com
 
    
  HOME   ABOUT US   ARCHIVES   CONTACT US   ADVERTISE   REGISTER
Visit the home page Browse the four-year online archive Download platform-neutral CPU/FPU benchmarks Find information for advertisers, authors, vendors, subscribers Request free information on products written about or advertised in BYTE Submit a press release, or scan recent announcements Talk with BYTE's staff and readers about products and technologies

ArticlesSmart-Card Transactions

June 1996 / International Features / A Computer in Your Wallet / Smart-Card Transactions

Transactions processed by smart cards start with the selection of an application and the reading of the corresponding data on the card's EEPROM. Then the application identifies itself so that the terminal knows which application is to be run. A transmitted application-file locator tells the terminal which files and records to read. If the application contains a public-key certificate, the terminal verifies the public key through static authentication.

Then the terminal decides whether a transaction should be processed with the card issuer's host computer on-line or is safe enough to continue off-line. This decision is made by the terminal's built-in risk management system. The t erminal then requests either an on-line or an of f-line authenticator from the card. At the same time, the card makes its own risk evaluation and selects either an off-line or on-line mode.

The card can overrule the terminal's decision to process off-line, but it cannot overrule an on-line transaction. If the card returns an off-line authenticator, as requested by the terminal, the transaction is successfully completed. Otherwise, the terminal contacts the card issuer's host computer, which returns a cryptogram to check the card's authentication and transmit the data.

The OSes of older smart cards often cause problems when the card is pulled out of the reader before the session is completed. Newer OSes organize data transmission as a series of database transactions. If a transaction is aborted before completion, the card rolls back all the data to its original state. If a session is aborted during the transmission of the data-reception proof, the terminal resends t he proof until acceptance, or the card deletes the update. Thus, users can't lose electronic money due to an interrupted session.

Up to the International Features section contentsGo to previous article: Smart-Card TransactionsGo to next article: Future NotebooksSearchSend a comment on this articleSubscribe to BYTE or BYTE on CD-ROM  
Flexible C++
Matthew Wilson
My approach to software engineering is far more pragmatic than it is theoretical--and no language better exemplifies this than C++.

more...

BYTE Digest

BYTE Digest editors every month analyze and evaluate the best articles from Information Week, EE Times, Dr. Dobb's Journal, Network Computing, Sys Admin, and dozens of other CMP publications—bringing you critical news and information about wireless communication, computer security, software development, embedded systems, and more!

Find out more
BYTE.com Store

BYTE CD-ROM
NOW, on one CD-ROM, you can instantly access more than 8 years of BYTE.
 
The Best of BYTE Volume 1: Programming Languages
The Best of BYTE
Volume 1: Programming Languages
In this issue of Best of BYTE, we bring together some of the leading programming language designers and implementors...

Copyright © 2005 CMP Media LLC, Privacy Policy, Your California Privacy rights, Terms of Service
Site comments: webmaster@byte.com
SDMG Web Sites: BYTE.com, C/C++ Users Journal, Dr. Dobb's Journal, MSDN Magazine, New Architect, SD Expo, SD Magazine, Sys Admin, The Perl Journal, UnixReview.com, Windows Developer Network