简体繁体 English

SIM卡与JCRE混淆

[英]SIM card and JCRE confusion

原文 2017-02-23 14:32:07 2 1 smartcard/ javacard/ ota/ sim-card

As far as I know, the SIM card is a Java Card and it shall implement the ETSI/3GPP specifications and the UICC configurations. 据我所知，SIM卡是Java卡，它应实现ETSI / 3GPP规范和UICC配置。

If the SIM is a Java Card - does it contains a JCRE from the Suns JCRE specification? 如果SIM是Java卡 - 它是否包含Suns JCRE规范中的JCRE？
If the SIM card has a JCRE - is it actually the OS of the card or there is another layer? 如果SIM卡有JCRE - 它实际上是卡的操作系统还是有另一层？ If there is, where can I read about it? 如果有，我在哪里可以阅读它？ Is there an option to interact with the JCRE with APDU and a card reader? 是否可以选择使用APDU和读卡器与JCRE进行交互？
Are the JCRE and the card manager the same entity or the card manager is a native applet? JCRE和卡管理器是同一个实体还是卡管理器是本机applet？ If those are different, when an OTA update via SMS received, does the JCRE handle it first and then forward it to the applet or the card manager is the receives it directly? 如果这些不同，当收到通过短信的OTA更新时，JCRE是否先处理它然后将其转发到小程序，或者卡管理员是直接接收它？

1 个解决方案

If the SIM is a Java Card - does it contains a JCRE from the Suns JCRE specification? 如果SIM是Java卡 - 它是否包含Suns JCRE规范中的JCRE？

Yes, a JCRE compliant to "Suns" JCRE specification anyway (Sun doesn't exist anymore, it's all Oracle now). 是的，JCRE无论如何都符合“太阳”JCRE规范（Sun现在不再存在，现在全部都是Oracle）。

2a. 2A。 If the SIM card has a JCRE - is it actually the OS of the card or there is another layer? 如果SIM卡有JCRE - 它实际上是卡的操作系统还是有另一层？

There could be multiple layers. 可能有多个图层。 Usually you'd also have native crypto libraries and a HAL - Hardware Abstraction (or Adaptation) Layer. 通常，您还拥有本机加密库和HAL - 硬件抽象（或适应）层。 If there is also another / native OS depends on the card (but I don't see any reason for it for SIM cards). 如果还有另一个/本机操作系统取决于卡（但我没有看到任何SIM卡卡的原因）。

2b. 2B。 If there is, where can I read about it? 如果有，我在哪里可以阅读它？ Is there an option to interact with the JCRE with APDU and a card reader? 是否可以选择使用APDU和读卡器与JCRE进行交互？

You'd have to consult the manufacturer of the operating system / chip for that. 您必须咨询操作系统/芯片的制造商。 And, if those are not available, your contact from the reseller. 而且，如果没有这些，请与经销商联系。

Are the JCRE and the card manager the same entity or the card manager is a native applet? JCRE和卡管理器是同一个实体还是卡管理器是本机applet？

The card manager is part of the Global Platform specs. 卡经理是全球平台规范的一部分。 Most Java Card comply with those. 大多数Java Card都符合这些要求。 The card can be native, byte code or a combination. 卡可以是本机，字节代码或组合。 Again, that's up to the manufacturer. 再次，这取决于制造商。

If those are different, when an OTA update via SMS received, does the JCRE handle it first and then forward it to the applet or the card manager is the receives it directly? 如果这些不同，当收到通过短信的OTA更新时，JCRE是否先处理它然后将其转发到小程序，或者卡管理员是直接接收它？

They are usually rather intertwined. 它们通常相互交织在一起。 I presume that the HAL (see above) handles the direct communication and the APDU buffer, but as long as the card complies to the respective standards, anything goes. 我认为HAL（见上文）处理直接通信和APDU缓冲区，但只要该卡符合相应的标准，任何事情都会发生。

As long as it is well described of course, if not then the manufacturer probably gets some stern talking to by a FIPS or Common Criteria certification body. 只要它被描述得很好，如果没有，那么制造商可能会得到FIPS或Common Criteria认证机构的严厉谈话。 But design documents are usually not published by the manufacturers. 但设计文件通常不是由制造商发布的。