Security Technologies (PV204)
Faculty of Informatics (FI)
Masaryk University (MU)
Team Emerald: @OTFlorian, @lsolodkova, @mvondracek (in alphabetical order).
| As this started as a cryptographic school project, authors do not provide any warranty of fitness for production use. |
|---|
The project aims to create a JavaCard applet and a PC application for secure channel communication. The user is provided with a smart card (Java Card) with pre-personalized 4-digit PIN and a paper with this PIN printed. If the user wants to use the card, they have to put it into the reader and type in the PIN.
Before any session, both card and a user (via implemented PC application) need to be mutually authenticated, and all subsequent data exchange between them needs to be protected by a secure channel. The PIN is never transmitted to the card or back. Therefore, they use it to establish an initial secret for the secure channel using a key exchange over an elliptic curve, which can then be used to derive session keys
| Detailed report is available under docs/ folder. |
|---|
Our protocol implements Password-Authenticated Key Exchange by Juggling (J-PAKE) with Schnorr Non-Interactive Zero-Knowledge Proof (ZKP) for key agreement and the secure channel offers following security properties:
- Key agreement (J-PAKE)
- Authentication (ZKP)
- Protection against brute-force attacks (J-PAKE, ZKP)
- Perfect forward secrecy (new keys each session)
- Integrity (HMAC)
- Protection against replay attacks (hash chain)
- Confidentiality (AES-CBC)
- Random IVs for AES-CBC (cryptographically secure random number generator)
- Separate keys for AES-CBC and HMAC
- Protection against PIN brute-force attack (card applet blocking, PC application termination)
- Protection against memory dump attack (PC application discards PIN after use)
- Messages protected including their metadata
Emerald Password Manager for Smartcards can communicate with the applet on smartcard over secure channel. User needs to authenticate using PIN. The application allows a user to save passwords to password manager inside the card. Authenticated user can later retrieve saved passwords from the card.
.\gradlew.bat run -q --console=plain./gradlew run -q --console=plainExamples of application output for correct PIN and incorrect PIN are avaialble in docs/ folder.
Our solution is tested with unit tests and end-to-end tests with APDUs. We have utilized Continuous Integration (Continuous Testing) via TravisCI. Code was also continuously checked with SAST tools from Code Climate. Tests can be executed locally as follows:
.\gradlew.bat check./gradlew checkJava SE Development Kit 8 is required to correctly build and run our solution. Dependencies are managed by Gradle.
Our project is divided into three modules written in Java language as follows:
applet: Java Card applet managing communication over our secure channel and providing messages to Sub-Applet Emerald Password Manager for Smart Cards. The top-level applet serves as a secure layver for generic Sub-Applets.emApplication: PC application for communication with Emerald Password Manager for Smart Cards on Java Card in smart card reader over our secure channel.emCardTools: Tools for communication with smart card reader used in the PC application and during end-to-end testing of the applet. These tools are integrated from crocs-muni/javacard-gradle-template-edu which was published under MIT license.
We use Gradle for build process, dependency management, testing, and also easy execution. Gradle configuration for Java Card project was also based on crocs-muni/javacard-gradle-template-edu, but was extended to better fit needs of our team.