180 likes | 300 Views
HCE and BLE UNIVERSITY TOMORROWS TRANSACTIONS LONDON, 20 TH MARCH 2014. Host Card Emulation– NFC Killer?. INTRODUCTION TO HCE. What is Host Card Emulation?.
E N D
HCE and BLE UNIVERSITYTOMORROWS TRANSACTIONSLONDON, 20TH MARCH 2014
Host Card Emulation– NFC Killer? INTRODUCTION TO HCE Please Copy and Distribute
What is Host Card Emulation? NFC Controllers have always had the ability to exchange ISO14443 frames between the Handset’s main processor and an external ISO 14443 reader Handset Application HOST CARD EMULATION exposes that capability to applets running in the handset via APIs NCI NCI NCI (NFC Forum NFC Controller Interface Specification) provides a standard way of accessing that capability NFC Controller UICC HCI/SWP ISO 14443 Please Copy and Distribute
Contactless Payments Everything that’s going on in NFC with Banks, MNOs and TSMs is to enable banks to extend their reach into the MNO’s chips with the same degree of security as that into chips in single-issuer bank cards.... And it’s commercially and technically challenging Cryptogram Verification UDK ATC Transaction Details Offline Data Authentication Cryptogram ATC S-UDK UDK Digital Signature L-PUB Cert PUB Cert PRI L-PRI • If we restrict or limit the usefulness of the keys in the phone, we limit the liability associated with their compromise; We can accept a greater vulnerability for those limited use keys yet still achieve an acceptable overall exposure Please Copy and Distribute
How does it work? Online Cryptogram Verification 1) Issuer retains the static keys and counter and provides access to them over the phones network connection (GSM, 3G, WiFi) S-UDK 7) Issuer verifies cryptogram but using limited use key rather than static key ATC UDK PRI 5) Terminal conducts transaction as normal 2) Cardholder periodically contacts issuer and requests download 6) Terminal verifies signature using certificates as normal Transaction Details 3) Issuer generates limited use keys from the static keys and counter, and downloads them to the phone’s handset Offline Data Authentication Cryptogram S-UDK Digital Signature L-PRI 4) Cardholder opens application, waves phone at reader L-PUB Cert Please Copy and Distribute
Implications of HCE for Issuing Banks • Most Issuing Banks currently have or are developing, mobile banking applications. • You can do many things with those but cannot pay for things in stores. • These already have a mechanism for authenticating the customer to the bank, and for securely exchanging information over web service protocols. • HCE provides a mechanism to allow these apps to be used for in store purchasing. It allows banks to provide mobile proximity payment capability without needing to negotiate with MNOs or TSMs. • Probably best not to put a real Card Number in the phone, though Please Copy and Distribute
Tokenisation Token PAN ISSUING BANK Real PAN PAYMENT NETWORK TOKEN SERVICE PROVIDER RULES ENGINE • Channel • -Time DATABASE • Real PAN - Token PAN ACQUIRER MERCHANT Please Copy and Distribute
Implications of HCE for Retailers Before HCE, POS terminals could only communicate with apps in secure elements. HCE allows us to bypass the app in the secure element to talk to the payment kernel We can also bypass the payment kernel by using a reader “pass-through mode” to send data directly over the contactless interface Until recently there was no point in doing this as we could only communicate with an app in the secure element, which was expensive to build and certify However, with HCE a POS can now communicate directly with a retailer handset app to support a richer sales experience over contactless than just payments. Point Of Sale Terminal Handset Operating System Retailer POS Application Handset App PCD NFC Chip Secure Element Payment Kernel Payment App Please Copy and Distribute
Bluetooth Low Energy – NFC Killer? Introduction to ble Please Copy and Distribute
BLE Promises Please Copy and Distribute
BLE Technology • BLE is Bluetooth for devices powered by small batteries • mostly off; limited range (<50m) • Devices are peripherals or central hosts or can be both • BLE devices can Discover each other • infrequently broadcast short “It’s Me!” data bursts • Measure received signal strength to indicate distance • BLE devices can Connect to each other • Devices can be paired using pre-shared key or passcode • Paired devices can encrypt communications • BLE devices can Exchange Data with each other: • Get value of attribute # 123 • Set value of Attribute # 123 • Notify me when the value of attribute #123 changes Please Copy and Distribute
Discovering Devices D6 BE 89 8E 40 09 32 A9 F0 93 0C D8 02 01 06 20 D1 54 1E A5 Advert D6 BE 89 8E 40 24 FE 4F D7 E4 F5 D5 02 01 06 1A FF 4C 00 02 15 B9 40 7F 30 F5 F8 46 6E AF F9 25 55 6B 57 FE 6D 4F FE E4 D7 B6 26 5A 10 23 A5 SCAN REQUEST D6 BE 89 8E 83 0C D5 3B 22 8C BA 1C 32 A9 F0 93 0C D8 C8 40 DA 40 A5 SCAN RESPONSE D6 BE 89 8E 44 20 32 A9 F0 93 0C D8 04 08 73 42 32 11 06 A6 DA 37 DE C1 9A FC 80 94 4A D8 A8 02 62 C2 BE 02 0A 00 DC EE 65 10 A5 • Battery lifetime decreases with more frequent advertisements • Battery lifetime decreases with more data in advertisements • Reliability of signal strength indication improves with more frequent advertisements • Latency (noticing when the tag appears or disappears) improves with more frequent advertisements • Received Signal Strength decreases when objects (and people) get in the way Please Copy and Distribute
Connecting Devices CONNECT SERVICE DISCOVERY CHARACTERISTIC DESCRIPTION DISCOVERY CHARACTERISTIC DISCOVERY • Example: • The device supports the Health Thermometer Service • The Service has a Characteristic with a Description of “Temperature Measurement” • The Service has a Characteristic with a Description of “Temperature Type” • The “Temperature Measurement” Characteristic has a Value of “68 Fahrenheit” • The “Temperature Type” Characteristic has a Value of “Body” Please Copy and Distribute
Exchanging Data SET GET NOTIFY Client Server • Each Attribute has a unique “Handle”: think of it as one row in a table • Data is exchanged by reading or writing to the Attribute with a particular handle • Data can be protected by assigning access rights specific to each handle. Please Copy and Distribute
BLE Services • Data Connections to sensors • Heart Rate Monitors • Fitness Trackers • Temperature Monitors • Motion Sensors • Based on Presence • Find Me • Device Leashing • Beacons Client Confidential
Apple’s iBeacon HDR RSSI 16-byte Proximity UUID Major Minor Tx • Transmits Advertising Packets Only (no reception) • Proximity UUID identifies the Merchant; Major (up to 65535) and Minor (up to 65535) together identify a unique Beacon within a Store • Transmitted Signal Strength (Tx) from Beacon and Received Signal Strength Indicator (RSSI) at phone together indicate range (Close, Near, Far Away) • Apps are notified when the phone enters or leaves regions • If the retailer app knows where the beacons are, it knows where you are Please Copy and Distribute
PayPal Beacon • Extends PayPal Here to simplify purchases • Beacons at doorways to detect entering the store • Connections used to authenticate user • Avoids use of WiFi or Mobile Network I’m Here! Connect & Request Token Token + Store Data + Signature Encrypted Data Encrypted Response Who is in my store? ID + ID + £xx.xx Please Copy and Distribute
For more information • Please contact: • USA and Latin America: lanny.byers@chyp.com • Rest of the world: nick.norman@chyp.com • Visit: http://www.chyp.com • Read: http://tomorrowstransactions.com • Listen: http://www.chyp.com/media/podcasts • Follow: @chyppings Please Copy and Distribute