The Smart Card with serious performance

Smart cards are credit card-sized physical devices embedded with advanced microchips that securely store, manage, and process sensitive data, enabling trusted authentication, secure transactions and access control.

MULTOS is the most robust, secure smartcard technology that delivers simplicity and innovation to major smart card deployments around the world.  Designed to meet a wide range of requirements including multi-functional, multi-application and high security, it is an ideal platform for many smart card implementations including:

  • identity
  • authentication
  • access control
  • digital credentials storage
  • loyalty
  • payments

Contactless Innovation

Contactless payment is rapidly emerging as the preferred method of payment worldwide. More than 50% of cards currently being issued around the world already have the contactless function.

MULTOS technology is widely used for contactless cards and other innovative contactless devices such as passive wristbands, contactless tags, and more capable active contactless payment devices. Contactless MULTOS products support the industry standard protocols, ISO 7816, ISO 14443 A or B.

Architecture

MULTOS consists of two unique technologies that deliver the secure architecture – the on-chip virtual machine that executes applications and the MULTOS security scheme that protects the chip, application code and application data.

MULTOS applications are developed in high-level languages such as ‘C’ or Java (or in low-level assembly language) and compiled into MULTOS Executable Language (MEL) bytecodes that are executed by the virtual machine. Any invalid instructions or attempted memory accesses are rejected by the virtual machine and all smart card application execution will stop. The execution-time checking ensures the complete safety of application execution and data – it is not possible for an application to access the data of another application on the smart card.

All MULTOS OS Implementations include the standard virtual machine and a standard set of primitive functions. There are a number of optional primitive functions, usually related to specific hardware features that may be present.

This ensures that applications are 100% compatible between different MULTOS and MULTOS step/one products from different vendors. All products undergo rigourous Type Approval to ensure compliance with specification and security of implementation.

Highly Secure

MULTOS has been at the leading edge of secure digital smart cards for over 25 years, and is renowned for achieving the highest levels of security compliance. As well as supporting traditional bureau personalisation, the MULTOS security architecture allows for applications and data to be securely loaded to a MULTOS device in an insecure environment – ideal for instant issuance, mobile payments and post issuance updates.

Our approach

  • Each MULTOS device contains a unique RSA key pair, generated and certified by the Key Management Authority. This key pair is securely loaded to the device when it is enabled.
  • The public part of the key  is used by data preparation software, in a secure environment such as a perso bureau, to encipher a packet of data called an Application Load Unit (ALU).
  • The ALU contains the application code and personalised data.
  • Only the target MULTOS device can decipher the ALU.
  • The load process does not require any external cryptographic device and a secure channel is not required as all the cryptographic processing is internal to the MULTOS device itself

MULTOS Platforms

MULTOS offers a range of platforms to suit customer needs.

Memory size: up to 160k
Advanced cryptography: RSA, ECC, 3DES, AES, SHA-1 & SHA-2
Highest certification: Common Criteria EAL6+ High – VM EAL7

A number of MULTOS platforms are also available with preloaded widely deployed applications.

Click here for more information on MULTOS Smart Cards.