Как использовать смарт-карту на работе

With the COVID-19 pandemic, demand for and usage of contactless credit and debit cards has increased, although coins and banknotes are generally safe and this technology will thus not reduce the spread of the virus.

Contactless smart card readers use radio waves to communicate with, and both read and write data on a smart card. When used for electronic payment, they are commonly located near PIN pads, cash registers and other places of payment. When the readers are used for public transit they are commonly located on fare boxes, ticket machines, turnstiles, and station platforms as a standalone unit. When used for security, readers are usually located to the side of an entry door.

• Novosibirsk (Russia). Transport fare collection terminal CFT
• An electronic ticket machine used to read prepaid cards and issue tickets in Mumbai

The first main advantage of smart cards is their flexibility. Smart cards have multiple functions which simultaneously can be an ID, a credit card, a stored-value cash card, and a repository of personal information such as telephone numbers or medical history. The card can be easily replaced if lost, and, the requirement for a PIN (or other form of security) provides additional security from unauthorised access to information by others. At the first attempt to use it illegally, the card would be deactivated by the card reader itself.

Other general benefits of smart cards are:

• Portability
• Increasing data storage capacity
• Reliability that is virtually unaffected by electrical and magnetic fields.

• Contains a tamper-resistant security system (for example a secure cryptoprocessor and a secure file system) and provides security services (e.g., protects in-memory information).
• Communicates with external services through card-reading devices, such as ticket readers, ATMs, Dip reader, etc.
• Smart cards are typically made of plastic, generally polyvinyl chloride, but sometimes polyethylene-terephthalate-based polyesters, acrylonitrile butadiene styrene or polycarbonate.

• EEPROM only.
• EEPROM, ROM, RAM, and microprocessor.

Contact smart cards

Illustration of smart-card structure and packaging

4 by 4 mm silicon chip in a SIM card, which was peeled open. Note the thin gold bonding wires and the regular, rectangular digital-memory areas.

Smart-card reader on a laptop

Contact-type smart cards may have many different contact pad layouts, such as these SIMs.

The ISO/IEC 7810 and ISO/IEC 7816 series of standards define:

• physical shape and characteristics,
• electrical connector positions and shapes,
• electrical characteristics,
• communications protocols, including commands sent to and responses from the card,
• basic functionality.

Because the chips in financial cards are the same as those used in subscriber identity modules (SIMs) in mobile phones, programmed differently and embedded in a different piece of PVC, chip manufacturers are building to the more demanding GSM/3G standards. So, for example, although the EMV standard allows a chip card to draw 50 mA from its terminal, cards are normally well below the telephone industry’s 6 mA limit. This allows smaller and cheaper financial card terminals.

Contactless smart cards

Contactless smart cards communicate with readers under protocols defined in the ISO/IEC 14443 standard. They support data rates of 106–848 kbit/s. These cards require only proximity to an antenna to communicate.
Like smart cards with contacts, contactless cards do not have an internal power source. Instead, they use a loop antenna coil to capture some of the incident radio-frequency interrogation signal, rectify it, and use it to power the card’s electronics. Contactless smart media can be made with PVC, paper/card and PET finish to meet different performance, cost and durability requirements.

A hybrid smart card, which clearly shows the antenna connected to the main chip

Hybrid cards implement contactless and contact interfaces on a single card with unconnected chips including dedicated modules/storage and processing.

The CCID (Chip Card Interface Device) is a USB protocol that allows a smart card to be interfaced to a computer using a card reader which has a standard USB interface. This allows the smart card to be used as a security token for authentication and data encryption such as Bitlocker. A typical CCID is a USB dongle and may contain a SIM.

Купить считыватель смарт карт

Считыватели смарт-карт поддерживают большое кол-во смарт-карт, все смарт-карт ридеры продаваемые в компании Secure-Market.ru гарантировано совместимы со смарт-картами Рутокен, Jacarta и eToken. Если у вас другая смарт-карта и вы сомневаетесь подойдет ли вам карт-ридер, то вы сможете вернуть купленный в нашей компании ридер в течении 14 дней, при условии сохранения товарного вида, упаковки. Если считыватель смарт-карт куплен за наличный расчет, то нужен будет еще и кассовый чек.

In a number of cases these cards carry an electronic wallet as well as fare products, and can be used for low-value payments.

Contactless bank cards

Starting around 2005, a major application of the technology has been contactless payment credit and debit cards. Some major examples include:

• ExpressPay – American Express
• MasterCard Contactless (formerly PayPass) – MasterCard
• Visa Contactless (formerly payWave) – Visa
• QuickPass – UnionPay
• JCB Contactless (formerly J/Speedy), QUICPay (not compatible with EMV Contactless/ISO/IEC 14443) – JCB
• RuPay Contactless — RuPay
• Zip – Discover

In general there are two classes of contactless bank cards: magnetic stripe data (MSD) and contactless EMV.

A quickly growing application is in digital identification cards. In this application, the cards are used for authentication of identity. The most common example is in conjunction with a PKI. The smart card will store an encrypted digital certificate issued from the PKI along with any other relevant or needed information about the card holder. Examples include the U.S. Department of Defense (DoD) Common Access Card (CAC), and the use of various smart cards by many governments as identification cards for their citizens. When combined with biometrics, smart cards can provide two- or three-factor authentication. Smart cards are not always a privacy-enhancing technology, for the subject carries possibly incriminating information about him all the time. By employing contactless smart cards, that can be read without having to remove the card from the wallet or even the garment it is in, one can add even more authentication value to the human carrier of the cards.

A memory card reader is a device, typically having a USB interface, for accessing the data on a memory card such as a CompactFlash (CF), Secure Digital (SD) or MultiMediaCard (MMC). Most card readers also offer write capability, and together with the card, this can function as a pen drive.

Smart cards serve as credit or ATM cards, fuel cards, mobile phone SIMs, authorization cards for pay television, household utility pre-payment cards, high-security identification and access badges, and public transport and public phone payment cards.

Smart cards may also be used as electronic wallets. The smart card chip can be «loaded» with funds to pay parking meters, vending machines or merchants. Cryptographic protocols protect the exchange of money between the smart card and the machine. No connection to a bank is needed. The holder of the card may use it even if not the owner. Examples are Proton, Geldkarte, Chipknip and Moneo. The German Geldkarte is also used to validate customer age at vending machines for cigarettes.

These are the best known payment cards (classic plastic card):

• Visa: Visa Contactless, Quick VSDC, «qVSDC», Visa Wave, MSD, payWave
• Mastercard: PayPass Magstripe, PayPass MChip
• American Express: ExpressPay
• Discover: Zip
• Unionpay: QuickPass

EMV cards can have either contact or contactless interfaces. They work as if they were a normal EMV card with a contact interface. Via the contactless interface they work somewhat differently, in that the card commands enabled improved features such as lower power and shorter transaction times. EMV standards include provisions for contact and contactless communications. Typically modern payment cards are based on hybrid card technology and support both contact and contactless communication modes.

The subscriber identity modules used in mobile-phone systems are reduced-size smart cards, using otherwise identical technologies.

Smart-cards can authenticate identity. Sometimes they employ a public key infrastructure (PKI). The card stores an encrypted digital certificate issued from the PKI provider along with other relevant information. Examples include the U.S. Department of Defense (DoD) Common Access Card (CAC), and other cards used by other governments for their citizens. If they include biometric identification data, cards can provide superior two- or three-factor authentication.

Smart cards are not always privacy-enhancing, because the subject may carry incriminating information on the card. Contactless smart cards that can be read from within a wallet or even a garment simplify authentication; however, criminals may access data from these cards.

Cryptographic smart cards are often used for single sign-on. Most advanced smart cards include specialized cryptographic hardware that uses algorithms such as RSA and Digital Signature Algorithm (DSA). Today’s cryptographic smart cards generate key pairs on board, to avoid the risk from having more than one copy of the key (since by design there usually isn’t a way to extract private keys from a smart card). Such smart cards are mainly used for digital signatures and secure identification.

The most widely used cryptographic algorithms in smart cards (excluding the GSM so-called «crypto algorithm») are Triple DES and RSA. The key set is usually loaded (DES) or generated (RSA) on the card at the personalization stage.

Turkey implemented the first smart card driver’s license system in 1987. Turkey had a high level of road accidents and decided to develop and use digital tachograph devices on heavy vehicles, instead of the existing mechanical ones, to reduce speed violations. Since 1987, the professional driver’s licenses in Turkey have been issued as smart cards. A professional driver is required to insert his driver’s license into a digital tachograph before starting to drive. The tachograph unit records speed violations for each driver and gives a printed report. The driving hours for each driver are also being monitored and reported. In 1990 the European Union conducted a feasibility study through BEVAC Consulting Engineers, titled «Feasibility study with respect to a European electronic drivers license (based on a smart-card) on behalf of Directorate General VII». In this study, chapter seven describes Turkey’s experience.

In 2002, the Estonian government started to issue smart cards named ID Kaart as primary identification for citizens to replace the usual passport in domestic and EU use.
As of 2010 about 1 million smart cards have been issued (total population is about 1.3 million) and they are widely used in internet banking, buying public transport tickets, authorization on various websites etc.

SmartRider smart card (Transperth)

In Sweden, as of 2018–2019, smart cards have started to be phased out and replaced by smart phone apps. The phone apps have less cost, at least for the transit operators who don’t need any electronic equipment (the riders provide that). The riders are able buy tickets anywhere and don’t need to load money onto smart cards. The smart cards are still in use for foreseeable future (as of 2019).

In Japanese amusement arcades, contactless smart cards (usually referred to as «IC cards») are used by game manufacturers as a method for players to access in-game features (both online like Konami E-Amusement and Sega ALL.Net and offline) and as a memory support to save game progress. Depending on a case by case scenario, the machines can use a game-specific card or a «universal» one usable on multiple machines from the same manufacturer/publisher. Amongst the most widely used there are Banapassport by Bandai Namco, E-amusement pass by Konami, Aime by Sega and Nesica by Taito.

Smart cards can be used as a security token.

Some disk encryption systems, such as VeraCrypt and Microsoft’s BitLocker, can use smart cards to securely hold encryption keys, and also to add another layer of encryption to critical parts of the secured disk.

Smart cards are also used for single sign-on to log on to computers.

• Tracking student attendance
• As an electronic purse, to pay for items at canteens, vending machines, laundry facilities, etc.
• Tracking and monitoring food choices at the canteen, to help the student maintain a healthy diet
• Tracking loans from the school library
• Access control for admittance to restricted buildings, dormitories, and other facilities. This requirement may be enforced at all times (such as for a laboratory containing valuable equipment), or just during after-hours periods (such as for an academic building that is open during class times, but restricted to authorized personnel at night), depending on security needs.
• Access to transportation services

Smart cards are widely used to encrypt digital television streams. VideoGuard is a specific example of how smart card security worked.

A contactless smart card is a card in which the chip communicates with the card reader through an induction technology similar to that of an RFID (at data rates of 106 to 848 kbit/s). These cards require only close proximity to an antenna to complete a transaction. They are often used when transactions must be processed quickly or hands-free, such as on mass transit systems, where a smart card can be used without even removing it from a wallet.

Like smart cards with contacts, contactless cards do not have a battery. Instead, they use a built-in inductor, using the principle of resonant inductive coupling, to capture some of the incident electromagnetic signal, rectify it, and use it to power the card’s electronics.

Smart cards have been advertised as suitable for personal identification tasks, because they are engineered to be tamper resistant. The embedded chip of a smart card usually implements some cryptographic algorithm. However, there are several methods of recovering some of the algorithm’s internal state.

Differential power analysis

Smart cards can be physically disassembled by using acid, abrasives, or some other technique to obtain direct, unrestricted access to the on-board microprocessor. Although such techniques obviously involve a fairly high risk of permanent damage to the chip, they permit much more detailed information (e.g. photomicrographs of encryption hardware) to be extracted.

Eavesdrop on NFC communication

Компания «Аладдин Р.Д.» представляет широкий ассортимент смарт-карт ридеров для использования со смарт-картами JaCarta и eToken, а также с любыми другими смарт-картами. Смарт-карт ридеры соответствуют международным стандартам CCID (Circuit Card Interface Device), ISO 7816-1/2/3, 2/3 BUS I2C, Extended i2C Memory Cards, EMV, CAC, Microsoft PC/SC, JIS X6303/6304, FIPS201, USB 2.0.

Смарт-карт ридеры для компьютеров и ноутбуков

Для работы со смарт-картой на компьютерах и ноутбуках мы предлагаем целый ряд смарт-карт ридеров ASEDrive, разработанных с использованием новейших японских технологий (Athena Smartcard Solutions). Отличительными особенностями этих устройств являются высокая надёжность, эргономичность и увеличенный срок службы.

Помимо традиционных внешних смарт-карт ридеров с USB-интерфейсом, считыватели смарт-карт могут представлять собой:

• компактные смарт-карт ридеры;
• комбинированные смарт-карт ридеры с биометрическим сканером отпечатков пальцев.

Все смарт-карт ридеры линейки ASEDrive оптимизированы для работы с инфраструктурой открытых ключей (PKI).

Смарт-карт ридеры для мобильных устройств

Для комфортной работы со смарт-картами на смартфонах и планшетах операционных систем Apple iOS и Android предлагается ряд универсальных смарт-карт ридеров, отличающихся стильным дизайном и высоким качеством исполнения. Доступны следующие модели:

• универсальный смарт-карт ридер с разъёмом Lightning;
• беспроводной смарт-карт ридер;

Возможно подключение смарт-карт ридеров не только к мобильным устройствам, но и компьютерам и ноутбукам.

Смарт-карт ридеры (также считыватели смарт-карт) – это универсальные устройства для работы с контактными микропроцессорными смарт-картами, предназначенные для считывания и записи информации (данных).

• Подключение к ПК, ноутбукам и мобильным устройствам
• Возможность встраивания в электрооборудование (терминалы и т.п.)
• Нанесение логотипа Вашей организации
• Выбор цвета и варианта исполнения корпуса

ASEDrive IIIe

ASEDrive IIIe Bio Combo Swipe

Значения индикаторов считывателя

Индикаторы работы считывателя и смарт-карты расположены на передней части корпуса считывателя:

Левый индикатор показывает текущее состояние считывателя, правый — смарт-карты.

Состояния индикаторов и их значения представлены в таблице:

Картридер чтение смарт карты

Уточните наличие у менеджера по телефону +7(495)739-86-99.

Cтандарты ISO 7816, EMV, Misrosoft PC/SC. Интерфейс: USB 2.0. SAM-слот.

Мобильное устройство чтения/записи контактных смарт-карт ID-1 (полный размер). Стандарты: ISO 7816. Интерфейс: USB 2.0

Складной ридер контактных смарт-карт ID-1. Поддерживает стандарты ISO 7816, EMV, Misrosoft PC/SC. Интерфейс: micro-USB.

Мобильный терминал для смарт-карт ACR890 «Все в одном» — это высокотехнологичный мобильный терминал для смарт-карт

Настольный ридер контактных смарт-карт ID-1. Поддерживает стандарты ISO 7816, EMV, Misrosoft PC/SC. Интерфейс: USB 2.0

Устройство чтения/записи контактных смарт-карт ID-1 вертикальной загрузки с обновляемой прошивкой и прижимным типом контактной площадки.

Настольный ридер контактных смарт-карт ID-1. Поддерживает стандарты ISO 7816, EMV, Misrosoft PC/SC. Интерфейс: USB 2.0 Type C

Smart cards have been advertised as suitable for personal identification tasks, because they are engineered to be tamper resistant. The chip usually implements some cryptographic algorithm. There are, however, several methods for recovering some of the algorithm’s internal state.

Differential power analysis involves measuring the precise time and electric current required for certain encryption or decryption operations. This can deduce the on-chip private key used by public key algorithms such as RSA. Some implementations of symmetric ciphers can be vulnerable to timing or power attacks as well.

Smart cards can be physically disassembled by using acid, abrasives, solvents, or some other technique to obtain unrestricted access to the on-board microprocessor. Although such techniques may involve a risk of permanent damage to the chip, they permit much more detailed information (e.g., photomicrographs of encryption hardware) to be extracted.

Считыватель для смарт-карт Рутокен SCR 3001 является устройством для чтения и записи смарт-карт.

Считыватель совместим с операционными системами: Windows, macOS и Linux.

Внешний вид считывателя представлен на иллюстрации:

• Keyboards with a built-in card reader
• External devices and internal drive bay card reader devices for personal computers (PC)
• Laptop models containing a built-in smart card reader and/or using flash upgradeable firmware.

PKCS#11 is an API designed to be platform-independent, defining a generic interface to cryptographic tokens such as smart cards. This allows applications to work without knowledge of the reader details.

Подключение считывателя к компьютеру

Подключите считыватель к USB-порту компьютера.

Работа со считывателем в ОС Windows

Чтобы проверить работу считывателя:

• Откройте Диспетчер устройств.
• Рядом с пунктом Устройства чтения смарт-карт щелкните по галочке. Откроется список подключенных устройств.
• Два раза щелкните по верхней строке Устройство чтения смарт-карт Microsoft Usbccid (WUDF). Откроется окно со свойствами считывателя.
• Перейдите на вкладку Сведения.
• В раскрывающемся списке Свойства выберите пункт ИД оборудования. В поле Значение отобразится строка » USBVID_0A89&PID_0069&REV_0511″.

Определение версии прошивки считывателя

Чтобы определить текущую версию прошивки считывателя:

• Откройте Диспетчер устройств.
• Рядом с пунктом Устройства чтения смарт-карт щелкните по галочке. Откроется список подключенных устройств.
• Два раза щелкните по верхней строке Устройство чтения смарт-карт Microsoft Usbccid (WUDF). Откроется окно со свойствами считывателя.
• Перейдите на вкладку Сведения.
• В раскрывающемся списке Свойство выберите пункт ИД оборудования. В поле Значение указана версия прошивки считывателя (на иллюстрации версия прошивки 5.11).

Работа со считывателем в ОС Linux

Чтобы проверить работу считывателя, подключите его к компьютеру и введите команду:

Если в результате выполнения команды отобразится название модели считывателя Aktiv Rutoken SCR 3001 Reader, то значит он работает корректно.

Если в результате выполнения команды отобразились строки «Scanning present readers. Waiting for the first reader. «, то необходимо внести в конфигурационный файл info.plist запись о считывателе.

Для изменения файла info.plist необходимы права администратора.

Чтобы внести изменение в конфигурационный файл info.plist:

• Найдите этот файл на компьютере. Путь до файла:/usr/lib/pcsc/drivers/ifd-ccid.bundle/Contents
• Откройте файл info.plist в любом текстовом редакторе.
• Найдите массив ifdVendorID и добавьте в него строку 0x0A89 .
• Найдите массив ifdProductID и добавьте в него строку 0x0069 .
• Найдите массив ifdFriendlyName и добавьте в него строку Aktiv Rutoken SCR 3001 Reader .
• Сохраните изменения в файле info.plist.
• Отключите считыватель от компьютера.
• Перезагрузите систему.
• Подключите считыватель к компьютеру и снова проверьте работу считывателя.

Чтобы определить версию прошивки считывателя, подключите его к компьютеру и введите команду:

В результате в строке bcdDevice отобразится версия прошивки считывателя (на иллюстрации версия прошивки 5.11).

Подключение смарт-карты к считывателю

Вставьте смарт-карту в считыватель. Корректный способ представлен на иллюстрации:

Обратите внимание на положение чипа смарт-карты.

Access control card readers are used in physical security systems to read a credential that allows access through access control points, typically a locked door. An access control reader can be a magnetic stripe reader, a bar code reader, a proximity reader, a smart card reader, or a biometric reader.

Access control readers are classified by functions they are able to perform and by identification technology:

The advantage of using barcode technology is that it is cheap and easy to generate the credential and it can easily be applied to cards or other items. However the same affordability and simplicity makes the technology susceptible to fraud, because fake barcodes can also be created cheaply and easily, for example by photocopying real ones. One attempt to reduce fraud is to print the barcode using carbon-based ink, and then cover the bar code with a dark red overlay. The barcode can then be read with an optical reader tuned to the infrared spectrum, but can not easily be copied by a copy machine. This does not address the ease with which barcode numbers can be generated from a computer using almost any printer.

1-to-1 and 1-to-many are the two possible modes of operation of a biometric reader:

Wiegand card technology is a patented technology using embedded ferromagnetic wires strategically positioned to create a unique pattern that generates the identification number. Like magnetic stripe or barcode technology, this card must be swiped through a reader to be read. Unlike the other technologies, the identification media is embedded in the card and not susceptible to wear. This technology once gained popularity because it is difficult to duplicate, creating a high perception of security. This technology is being replaced by proximity cards, however, because of the limited source of supply, the relatively better tamper resistance of proximity readers, and the convenience of the touch-less functionality in proximity readers.

Proximity card readers are still referred to as «Wiegand output readers», but no longer use the Wiegand effect. Proximity technology retains the Wiegand upstream data so that the new readers are compatible with old systems.

A reader radiates a 1″ to 20″ electrical field around itself. Cards use a simple LC circuit. When a card is presented to the reader, the reader’s electrical field excites a coil in the card. The coil charges a capacitor and in turn powers an integrated circuit. The integrated circuit outputs the card number to the coil, which transmits it to the reader.

A common proximity format is 26-bit Wiegand. This format uses a facility code, sometimes also called a site code. The facility code is a unique number common to all of the cards in a particular set. The idea is that an organization will have their own facility code and a set of numbered cards incrementing from 1. Another organization has a different facility code and their card set also increments from 1. Thus different organizations can have card sets with the same card numbers but since the facility codes differ, the cards only work at one organization. This idea worked early in the technology, but as there is no governing body controlling card numbers, different manufacturers can supply cards with identical facility codes and identical card numbers to different organizations. Thus there may be duplicate cards that allow access to multiple facilities in one area. To counteract this problem some manufacturers have created formats beyond 26-bit Wiegand that they control and issue to organizations.

1/8/16/1 gives as facility code limit of 255 and 65535 card number

1/12/12/1 gives a facility code limit of 4095 and 4095 card number.

Wiegand was also stretched to 34 bits, 56 bits and many others.

There are two types of smart cards: contact and contactless. Both have an embedded microprocessor and memory. The smart card differs from the proximity card in that the microchip in the proximity card has only one function: to provide the reader with the card’s identification number. The processor on the smart card has an embedded operating system and can handle multiple applications such as a cash card, a pre-paid membership card, or an access control card.

The difference between the two types of smart cards is the manner with which the microprocessor on the card communicates with the outside world. A contact smart card has eight contact points, which must physically touch the contacts on the reader to convey information between them. Since contact cards must be inserted into readers carefully in the proper orientation, the speed and convenience of such a transaction is not acceptable for most access control applications. The use of contact smart cards as physical access control is limited mostly to parking applications when payment data is stored in card memory, and when the speed of transactions is not as important.

• ISO/IEC 7810:2003 Identification cards — Physical characteristics
• Multi-application Smart Cards. Cambridge University Press.
• «4th Asian Transport Revenue Collection Forum». Asia Pacific Smart Card Association. 2010. Archived from the original on 2018-07-23. Retrieved .
• «Smartcard Alliance FAQ on contactless bank cards». Archived from the original on 2013-02-02. Retrieved .
• ISO/IEC 14443-2:2001 Identification cards – Contactless integrated circuit(s) cards – Proximity cards – Part 2: Radio frequency power and signal interface
• ISO/IEC 14443-4:2008 Identification cards – Contactless integrated circuit cards – Proximity cards – Part 4: Transmission protocol
• «MyKad website». Archived from the original on 2019-07-12. Retrieved .
• Power Analysis Attacks. Springer.

A false smart card, with two 8-bit CMOS microcontrollers, used in the 1990s to decode the signals of Sky Television.

ASEDrive III Mini