This version of GlobalPlatform Card API includes an additional Java Card package: “org.globalplatform.ext”. This new and optional package provides classes and interfaces extending classes/interfaces of org.globalplatform. It will allow API evolution based on improved API extensibility introduced with Java Card v3.1. This package contains class “GPRegistryEntryExt”, which adds support to retrieve the LFDBH of ELFs and to query if an ELF was DAP-verified upon load. It also allows to query the associated SD of an Application. Support for the new anti-relay mechanism introduced in ISO 14443-4 is added to class “GPSystem”.

The Cryptographic Service Provider (CSP) is a cryptographic abstraction layer that aims to simplify security evaluations and to eliminate the need for composite certification for applications that use a CSP for their cryptographic and security-related needs. So-called Client Applications are typically Java Card Applets operated on a CSP-enabled Secure Element platform utilizing CSP services.

This document defines the security guidelines that a Client Application must meet to gain the certification benefits.