Interleaving Commands: A Threat to the Interoperability of Smartcard Based Security Applications
Although smartcards are widely used, secure smartcard interoperability has remained a significant challenge. Usually each manufacturer provides a closed environment for their smartcard based applications including the microchip, associated firmware and application software. While the security of this "Package" can be tested and certified for example based on the Common Criteria, the secure and convenient interoperability with other smartcards and smartcard applications is not guaranteed. Ideally one would have a middleware that can support various smartcards and smartcard applications. In the authors' ongoing research they study this scenario with the goal to develop a way to certify secure smartcard interoperability in such an environment.