Monday, 12 September 2011

CIPURSE Specification, Secure Transit Fare Collection ready to Download

The Open Standard for Public Transport (OSPT) Alliance has announced the first public availability of the CIPURSE open security standard specification, Version 1.0, for reading and evaluation. The OSPT also has extended an invitation to all stakeholders in the public transit ecosystem to participate in the Alliance, and is offering three levels with varying benefit packages.

Full membership in the OSPT Alliance is designed for organisations that plan to develop commercialized CIPURSE products based on this open standard. Full members receive all benefits offered by the OSPT Alliance, which includes an implementation license and software development kit (SDK). The annual fee for full membership is EUR 5,000.

Associate membership is open to transit agencies, industry associations involved in transit, and universities and research institutions with an interest in public transportation.

There is no fee to join as an associate member.

Organisations interested in obtaining a copy of the specification for evaluation may now download the documentation from the OSPT Alliance website. The CIPURSE specification will enable technology suppliers to develop and deliver innovative, more secure and interoperable transit fare collection solutions for cards, stickers, fobs, mobile phones and other consumer devices, as well as infrastructure components. Unlike systems based on proprietary technologies that limit choices, are potentially less secure and cost more to acquire, deploy and maintain, products that conform to the CIPURSE standard will include advanced security technologies, help ensure compatibility with legacy systems, and be available in a broad variety of form factors.

The CIPURSE open security standard addresses the need by local and regional transit authorities for future-proof fare collection systems with more advanced security than currently in use. The standard defines an authentication scheme, a secure messaging protocol, four minimum mandatory file types and a minimum mandatory command set to access these file types. It also specifies encryption keys and access conditions. CIPURSE builds upon existing, proven, open standards - the ISO 7816 smart card standard, as well as the 128-bit advanced encryption standard (AES-128) and the ISO/IEC 14443-4 protocol layer - to provide a platform for securing both new and legacy transit fare collection applications, and has the potential to be used within existing application frameworks around the world. At the same time, because it is an open standard, it promotes vendor neutrality, cross-vendor system interoperability, lower technology adoption risks, higher quality and improved market responsiveness, all of which result in lower operating costs and greater flexibility for transport system operators.

Medical Records on USB for Travellers

Advanced Health & Care (AHC), is supplying InterHealth, a specialist medical charity involved in humanitarian relief with Crosscard a personal electronic medical records card.

Roll out is planned to take place over the next few months on a trial basis.

Crosscard is available to private GP and occupational health provider patients and allows people travelling abroad to carry their medical records on a credit sized USB device. The card stores the data in two areas - an emergency area which contains information that is publicly available and a protected area which can only be accessed by entering a password. The cards will enable travellers to securely access and share their medical records anywhere in the world without requiring access to the internet.

3UK Not Invited to the Party

Mobile operator 3UK, the UK's smallest operator has complained to the European Commission that it has been left out of the mobile payment venture between the UK's leading operators Vodafone, O2 and Everything Everywhere. 3UK claims its exclusion will reduce competition in the mobile payments market. The MPayment venture was set up in June this year and 3UK did, at the time, voice that it was not happy at not being invited to join, 3UK can however offer access to the ventures service and underlying technology on the same terms as the founding partners.

Trident Microsystems selects Cryptography Research for Pay TV security

Cryptography Research, Inc. a division of Rambus Inc. has announced that Trident Microsystems, Inc. a provider of set-top box (STB) and TV semiconductor solutions, has integrated CRI's CryptoFirewall security technology into Trident's new TSC100 family of STB System on Chip (SoCs). The advanced security measures provide a hardware foundation for conditional access and rights management systems in set top boxes using the Trident TSC100 family of STB SoCs.

The Trident TSC100 family, unveiled at IBC 2011, is part of Trident's new generation of high-performance set-top box system-on-a-chip (SoCs) designed for the worldwide satellite, cable and IPTV markets. Trident has integrated CRI's CryptoFirewall security core to provide conditional access companies and operators with robust hardware-level protection against tampering and emulation. The CryptoFirewall core is an on-chip, hardware-based security block that protects cryptographic keys and computations from attack. Successfully deployed in over 100 million devices, CryptoFirewall has helped eliminate signal theft in some of the world's highest-threat environments. The CryptoFirewall core can prevent the theft of pay TV broadcast signals, simplify compliance with content owners' anti-piracy requirements, and streamline product development.

ISACA Leader Welcomes London City University's new Cyber and Security Sciences Centre

ISACA leader Professor John Walker welcomes the creation of a new Centre for Cyber and Security Sciences at London City University, and says the centre will assist greatly in bolstering new influxes of security professionals to the IT industry.

According to Professor Walker, CISM, CITP, FBCS, a security leader with the not-for-profit IT security association, there is now a pressing need for new blood in the IT security ranks, largely thanks to the growth in reliance on IT by UK organisations. Centres like the new one at London City University will help encourage new professionals to enter the industry.

"LCU has a solid track record for innovation. Before it was made a university in 1966, it was an institute, and it created one of the UK's first technical optics departments in 1904. In 1909, it saw its first students qualifying for University of London BSc degrees in engineering as internal students," he said.

After 1909, the institute was involved in aeronautics education. Two years ago, in 2009, the university's School of Engineering and Mathematical Sciences celebrated the centenary of aeronautics at the site. "I have high hopes that in a century's time, the university will be celebrating the 100th anniversary of the Cyber and Security Sciences Centre, although I suspect that the role of IT security professionals will have changed more than a little by then," Walker said.

NXP Wins Award

The China Anti-counterfeiting Technology Association, Ministry of Public Security, has presented its Blue Shield Award to NXP Semiconductors during the sixth ID, Smart card & Ticket Security & Anti-counterfeiting Technology Summit in Beijing. The award recognises the foreign enterprise that has made the most significant impact on the development of the Chinese market in the security and anti-counterfeiting industry.

NXP is participating in the Chinese ePassport project as well as supporting the Chinese banking industry in migrating to IC cards.

NXP's product portfolio includes contactless, dual interface and contact based smart card IC solutions. Its SmartMX family of secure ICs provides EAL5+ level Common Criteria certification.

Note to Subscribers

If you would prefer to receive your News On Line email in plain text, please send an email with "Plain Text" in the subject line.

If you are a subscriber to our Daily News On Line service or Monthly Newsletter you are entitled to access restricted pages on our website news archive. For the username and password please send an email with "Subscriber Password" in the subject line. lesley.dann, Subscriptions Administrator, Smart Card Group.

To Unsubscribe Email Us at or click Unsubscribe

Important Information

From time to time, this news service may include industry forecasts and forward looking statements made by the companies concerned. Readers should be advised that Smart Card News Ltd cannot be held responsible for decisions and/or actions taken by readers of our news service, based on the information provided. This news is only to be distributed to persons/companies who have a contract with Smart Card News Ltd. Unless your company has gained a licence and/or written permission from Smart Card News, the contents of this news page are not to be forwarded to any other person or server. Any replication by any means without prior permission is illegal and action may be taken. If you receive this online news from a forwarded source please contact the team at Smart Card News Ltd. It is illegal to replicate this online news.

Tel: +44 (0)1903 734 677