Glossary
S/MIME
Secure/ Multipurpose Internet Mail Extensions
SAM
Security Access Module. Authentication by calculating and comparing authentication algorithn results.
SBC
Smart Bank Card.
SBT
Signature-Based Transaction.
SCIA
Smart Card Industry Association.
Screen Printing
Method in which ink is forced through a design-bearing screen made of silk or other material onto the substrate being printed.
SCWS
Smart Card Web Server
SDK
Software Development Kit. A set of development utilities for writing software applications, usually associated with specific environments.
SDP
Service Delivery Points
SDRAM
Synchronous Dynamic Random Access Memory. A type of dynamic RAM memory chip that has been widely used in the latter part of the 1990s.
SECCOS
the Secure Chip Card Operating System
Secret Key
Encrypting algorithm that uses a single key for encrypting and signing data in contrast to Public Key. Key used both for ciphering and deciphering in symmetrical algorithms (also refereed to as secret keys).
Security Architecture:
A detailed description of all aspects of the system that relate to security, along with a set of principles to guide the design. A security architecture describes how the system is put together to satisfy the security requirements.
Security Countermeasures:
Countermeasures that are aimed at specific threats and vulnerabilities or involve more active techniques as well as activities traditionally perceived as security.
Semiconductor
Originally it is the material that is, due to its physical attributes, able to produce chips. According to state of stress it is either conductive or non-conductive.
SEPA
Single Euro Payment Area
SET
Secure Electronic Transaction. Payment protocol used for safe Internet trading via encryption certification of all parties involved in a payment transaction. The SET protocol was defined by Visa and Mastercard. Its purpose is to make bank transactions on open networks safer by implementing public key and secret key encryption resources and using key certification and management organisations (servers).
SHA-1
Secure Hash Algorithm 1. A hash algorithm developed by the National Institute of Standards and Technology and the National Security Agency. See Certificate, Digital Signature.
Shell
A module containing common application. Issuers can choose to load an application in shell mode onto MULTOS cards.
SIBS
Sociedade Interbancária de Serviços (Portugal)
SICAP
SIM card Application Platform.
Signaling System 7 (SS-7):
A protocol used by phone companies. Has three basic functions: Supervising, Alerting and Addressing. Supervising monitors the status of a line or circuit to see if it is busy, idle, or requesting service. Alerting indicates the arrival of an incoming call. Addressing is the transmission of routing and destination signals over the network in the form of dial tone or data pulses.
Signature Panel
The area of an ID card where the cardholder enters a signature.
Signed Applets
An applet that incorporates a digital signature to prove that it came from a particular trusted author. See also PKI, Java Card
Silicon Provider
Silicon chip maker for smart card
Smart card Same as IC card, or Chip card
SIM
Subscriber Identification Module. Smart card used specificly in the operation of GSM phones.
Sim Card
Subscriber Identity Module. Microcircuit card used in GSM cell phones. Originally intended for the purpose of user authentication, it has changed to perform other functions such as the ability to provide a web micro-navigator, and to control the screen and keyboard of the cell phone to perform the applications (applets) stored in the card.
Simple Network Management Protocol (SNMP):
Software used to control network communications devices using TCP/IP.
SimToolkit
Set of standardised controls used by the SIM smart card (in the GSMs) to dialogue with the phone and execute applications (mostly JavaCard).
Simulator
A computer program that runs on a personal computer, for example, that executes a program to eventually be executed on a smart card and provides tools to the smart card program developer to study and debug the smart card program. See also emulator.
Single Sign-on with Context Management
This permits a user to enter one name and password in order to access multiple applications; context management passes the patient identifier from one application to the other.
SKA
(secret key algorithm) A cryptographic algorithm that uses a single key that is shared by the sender and the recipient of the encrypted message. The single key is used for both encryption and decryption and must be kept a secret shared between them.
Skimming
Copying the magnetic stripe encoding from one card to another.
Smart Card
Microprocessor Card, Chip Card, IC Card. A plastic card with an embedded chip-containing module that is capable of memory storage and data processing.
Smart Card Editor
A program typically with a graphical user interface that enables you to see and change the contents of a smart card as well as send the smart card any command it supports.
Smart Card Forum
A smart card trade association. See www.smartcrd.com
Smartcard Console
The GUI tool that enables an administrator to manage Solaris Smartcard.
Smart Card
A mobile phone with added applications and PC connectivity.
SME
Small and Medium business Enterprises
SMS
Short Message Service. Short text messages are transmitted to and from a mobile phone, fax machine and/or IP address. Messages must be no longer than 160 alpha-numeric characters and contain no images or graphics. The message sent is received by a Short Message Service Center (SMSC), which must then get it to the appropriate mobile device.
SOAP
SOAP is a lightweight protocol for exchange of information in a decentralized, distributed environment. It is an XML based protocol that consists of three parts: an envelope that defines a framework for describing what is in a message and how to process it, a set of encoding rules for expressing instances of application-defined datatypes, and a convention for representing remote procedure calls and responses.
SoC
System on Chip
Soft Mask
Executable code typically written in machine language that is written into a smart card’s nonvolatile memory after the card is manufactured. Soft mask code can either correct errors in the smart card operating system stored in ROM or add additional capabilities to the smart card
Solaris Smartcard
Name of the software that enables the use of smart cards in a Solaris Operating System (OS
Southbridge
A chip that interfaces between the PCI Input/Output bus and the many individual interfaces on a computer, such as keyboard, mouse, and hard disk.
SPA
Smart Payment Association
Spam:
Spam:To crash a program by overrunning a fixed-site buffer with excessively large input data. Also, to cause a person or newsgroup to be flooded with irrelevant or inappropriate messages.
Special Information Operations (SIO):
Information Operations that by their sensitive nature, due to their potential effect or impact, security requirements, or risk to the national security of the United States, require a special review and approval process. (DODD S-3600.1 of 9 Dec 96).
SPI: Secure Profile Inspector
A network monitoring tool for Unix, developed by the Department of Energy.
SPOM
self-programmable. A one-chip microcomputer in which one integrated circuit contains all the electronic components of the microcomputer. Smart card chips are SPOM
Spoofing:
Pretending to be someone else. The deliberate inducement of a user or a resource to take an incorrect action. Attempt to gain access to an AIS by pretending to be an authorized user. Impersonating, masquerading, and mimicking are forms of spoofing
SPRTD
Smart Poster Record Type Description
SRAM
Static Random Access Memory. The RAM is static requiring a constant supply of power instead of being regularly refreshed to retain the contents. Access time to the SRAM is less than DRAM, but because the SRAM takes up more space on the chip it is more expensive.
SRES
Sign Response Calculated by a SIM.
SSL
Protocol intended to make the TCP-IP transport layer safer (authentication of a server/client link, ciphering and integrity). It originates in work conducted by Netscape (A. Frier, P. Karlton and P. Kocher). It is usually used to download bank card numbers on Internet.
SSO
Single Sign On
Stamp
Stamp. A MAC additionally containing input data.
Standard
A standard is a set of specifications defining the physical, electrical or logical properties of a device.
Start Bit
In an asynchronous communication protocol, the start bit signals the beginning of a new message and alerts the receiver to start collecting the bits of the message. The start bit typically serves only this heads-up function and is not part of the message itself.
STIP
Small Terminal Interoperability Platform
STK
SIM Toolkit.
Strong Cryptography
Encryption technology which can be subject to export controls. The criteria of the 'strong' cryptography depend on the government policy concerned by the export of product using such cryptography technique.
Substrate
Material upon which a plastic card is printed.
SVC
Stored-Value -Card: Term usually applied to prepaid cards with a predetermined value that is used until exhausted.
SVC - Stored Value Card
Electronic purse, cash card, prepaid card. A payment card that stores electronic cash (value), the value is decremented with each transaction.
Swallow
Swallow. To pull the smart card completely inside the reader so that the cardholder can’t remove the card from the reader during a transaction.
SWIM
The SIM (Smart card used specificly in the operation of GSM phones) and the WIM (WAP Identity Module) integrated on the same smart card.
Symmetric Algorithms
A cryptographic algorithm or protocol in which the same key is held by both parties and is used for both encryption and decryption. DES is a symmetric algorithm
Symmetric Cryptography
Symmetric systems use the same key to encipher and decipher. In the past, most encryption systems only used symmetric cryptography. The problem with symmetric cryptography, however, was that key distribution to recipients was difficult. Since symmetric cryptography uses the same key for enciphering and deciphering, one had to use creative and difficult means to prevent the unwanted from intercepting the key. If a third party were to intercept the key, they could then use it to decipher anything it was used to encipher.
Symmetric Key
Another term for the DES key described in the challenge-response authentication method.
SYN Flood:
When the SYN queue is flooded, no new connection can be opened.
Synchronous Protocol
A communication protocol that is premised on the existence of a common clock or synchronized clocks between the sender and the receiver of the data.
System Integrator
A business that installs hardware and software systems and thereby makes use of smartcard applications.
System Modeling
Mathematically-based techniques for the specification, development and verification of information systems (e.g., software and hardware).