Global Platform - Ram Content - Draft

RAM Content - Contents in Secure Elements

Manjula

Overview

• • • • • • • Secure Element Types Executable Load Files (Package) Executable Modules (Applets) Application Instances Security Domains Secure Channels SIM-USIM-CSIM-ISIM

Secure Element Types

• UICC • Embedded SE • MicroSD

Executable Load Files

• Executable Load (ELF) File aka Packages • ELF contains a one or more Executable Modules. • To install an application, we should first put a ELF which contains the Executable Module related to that application to the Secure Element. • Actual on-card container of one or more application's executable code (Executable Modules). It may reside in Immutable Persistent Memory or may be created in Mutable Persistent Memory as the resulting image of a Load File Data Block (- from GP 2.2 spec)

Executable Modules

• Executable Module (EM) aka Applets • An Executable Module can be instantiated to one or more application instances. • Contains the on-card executable code of a single application present within an Executable Load File (- from GP 2.2 spec)

Application (Instance)

• Instance of an Executable Module after it has been installed and made selectable (- from GP 2.2 spec) • Application Instance is identified by AID.

– AID (5 to 16 bytes) = RID (5bytes) + PIX (up to 11 bytes) – RID : Registered Application Provider – PIX : Proprietary Identifier eXtension

• TAR – Toolkit Application Reference - is used to uniquely identify a second level application (e.g.: Toolkit Application). A second level application may have several TAR values assigned.

Security Domains

• On-card entity providing support for the control, security, and communication requirements of an off-card entity (e.g. the Card Issuer, an Application Provider or a Controlling Authority) • Privileged applications with Security information and key sets.

Security Domains…

• ISD (Issuer Security Domain) or Card Manager

– The primary on-card entity providing support for the...