GlobalPlatform technical documentation
This document assists service providers with the development of applications supporting interaction with third-party Broker Applications. A framework and an API are defined, which enable the use of functions provided by such third-parties, like user verification or proxy communication with remote servers, instead of implementing them in each applet. The document also provides suitable details on the usage of this framework in the context of the Consumer Device Cardholder Verification Method (CDCVM) use case.
This update of the amendment introduces new implementation options S8 and S16, where S8 mode corresponds to the legacy SCP03 protocol and S16 mode introduces stronger cryptographic strength with 16-byte challenges and cryptograms and 16-byte (non-truncated) C-MAC and R-MAC. S16 mode is introduced based on recommendations from the GlobalPlatform Security Task Force. It also extends the class byte values for INITIALIZE UPDATE and EXTERNAL AUTHENTICATE commands.
The aim of this document is to list the security functions that SHOULD be considered during the evaluation of a Secure Element product based on the GlobalPlatform (GP) Card specification. The document addresses GP configurations and GP amendments. It ensures the minimum security scope, the different claimed configurations shall match a predefined list of security features.
Receive the latest news including technology releases from GlobalPlatform