The Design And Implementation Of Javacard Applet Access Control Management System

The development of Java card technology brings a wide variety of applications and markets for Java card applets. Java card applets need to interact with various external equipment applications, and because of the security, it is necessary to control the access authorization between the external applications and Java card applets. For example, NFC mobiles have an access control enforcement that can be used to determine the access authority of client applications to SIM card applications. The access control mechanism that the module realized comprises three elements:a client application, a Java card application and access control rules. The access control rules consist of a client’s digital certificate fingerprint and the AID of a Java card application. The access control enforcement on the terminal decides whether to establish channels for the requesting client according to access the rules.According to Java Card Applets access control mechanism, this paper designs an access control management system based on the functions of Java card applications management realized by operators’ Trusted Service Management platform. The management system realizes downloading and management functions of Trusted Service Management platform. In particular, it needs to realize the management of the three elements comprising the access control mechanism. The designed system includes the management of clients’ digital certificate and the generation, and updating and downloading of java card application access control rules.This work focuses on the design and implementation of the access rules management module and the digital certificate management module. This system embeds the functions of the organization, updating, and allocation of access rules data. It also embeds the functions of client digital certificate requesting, generating, issuing, and canceling on Trusted Service Management platform. We implement generation, management, and distribution of access control rules, making/ensuring legal and in order the distribution of Java card applets access conditions and the access from terminal applications to Java card applets. Experimental results show that our designed system can effectively improve the security of mobile payment applications.