Glossary Of Terms

Glossary


ABS (Acrylonitrile Butadiene Styrene) The plastic used to make molded (or injected) card bodies for certain cards (See PVC). ActiveX A set of technologies created by Microsoft that enables interactive content on Web sites. AIM (Automatic Identification Manufacturers) Abbreviation for Automatic Identification Manufacturer Trade Associations. See Tag, RFID. Algorithm A mathematical routine used to perform computations (often used for cryptography). Analog Information presented in the form of a continuously varying signal. See Digital. ANSI (The American National Standards Institute) Representative for the United States in the International Standards Organization (ISO). Antenna A conductive structure specifically designed to couple or radiate electromagnetic energy. In RFID systems, the antenna may be used to both transmit and receive electromagnetic energy. Anti-collision (or collision avoidance) A feature commonly used in contactless card systems to prevent conflicts between different signals competing for attention at the same time. See Contactless. APDU (Application Protocol Data Unit) The basic command unit for a smart card. An APDU contains either a command message or a response message, sent from the interface device to the smart card or from the card to the device. See ISO 7816-3 for more information. API (Application Programming Interface) A definition of calling conventions by which an application program accesses to other services such as the operating system, drivers, databases, or middleware layers. See CryptoAPI, PKCS. Applet A compact program that can be downloaded quickly and used by a remote computing device. Applets are not allowed to access certain resources on the remote device. See Java, Java Card ASCII (American Standard Code for Information Interchange) The de facto worldwide standard for the code numbers used by computers to represent all the upper and lower-case Latin letters, numbers, punctuation, etc. ASIC (Application-Specific Integrated Circuit) An integrated circuit that has been custom-designed for a particular device. ASP (Active Server Pages) A Microsoft server side implementation of VBScript. ATM (Asynchronous Transfer Mode) A technology for broadband transmission of high-capacity telecommunications signals. ATM (Automated Teller Machine) A device that can be placed in a public place allowing cardholders to conduct basic banking operations including cash withdrawal. ATR (Answer To Reset) A message that is returned by a smart card when it is powered up or when its reset pin is activated. The ATR indicates the card type, communication protocol and other basic information. See Session. Authentication The process whereby a card, terminal or person proves who they are. A fundamental part of many cryptography systems. External Authentication. The procedure used to authenticate the external world (e.g., terminal) to the card. Internal Authentication. The procedure used to prove that the card is genuine by means of an algorithm, a random value and a secret key. The authentication process can be further distinguished between passive authentication in which the same values are used each time (e.g., PIN) and active authentication in which an algorithm and variable values are used. Bandwidth The amount of data that can be sent through a connection. Usually measured in bps. A normal page of hypertext ranges from 6,000 to 20,000 bits (not counting graphics). Baud A unit of signaling speed. The speed in baud is the number of discrete conditions or signal elements per second. It is now largely obsolete and has been replaced by "bits per second" (Bps). Biometrics Authentication techniques based on the physical characteristics of a person such as fingerprints, hand geometry, retina scan or voice print. Bit (Binary Digit) A single digit number in binary numbering, in other words, either a 1 or a zero. See: Byte. Bps (Bits-Per-Second) Data transmission speed, the number of pieces of information transmitted per second. See Baud. Broadband Originally a term to describe a channel with more bandwidth than a PSTN channel. See Bandwidth, ATM. Browser A client program that uses HTTP to recover and view Web pages (e.g., Netscape Communicator and Microsoft Internet Explorer). Byte An 8-bit word, commonly used to represent a single character. CA (Certification Authority) The organization that issues certificates and takes liability associated with the validity of the holder's identity. Often financial and institutional organizations. See: Certificate , SSL, PKI, Registration Authority. CASE (Computer-Aided Software Engineering) Generic term for tools and techniques that are said to offer major productivity gains for analysts and programmers. Cardholder Generally the person to whom a nominative card is issued. The cardholder is usually the customer associated with the primary account (notably for bank cards). *CCITT (Comité Consultatif International Télégraphique et Téléphonique)* The French acronym that translates to the International Telegraph and Telephone Consultative Committee. This international body renamed itself ITU (International Telecommunications Union). CDMA (Code Division Multiple Access) Transmission technique that uses simultaneous transmission and reception of several messages, each with a unique identity. (e.g., CDMA can be used between a cell phone and a radio base station). Cellular Mobile Telephone System See Mobile Phone Network. *CE (Conformité Européenne) Approval* The mark placed on products that meet safety standards that apply to all the countries of the European Union. Products with CE approval can be traded freely throughout the EU without further modification or testing. Certificate A file, digitally signed by a Certification Authority. There are many different types of certificates (the most common being X 509 V3). CGI (Common Gateway Interface) A set of rules that describe how a Web Server communicates with another piece of software on the same machine, and how the other piece of software (the "CGI program") talks to the Web server. Checksum (also called Hash) A count of the number of bits in a transmission unit so that the recipient can make sure the correct number of bits arrived and that the message is intact. See SHA-1, Cryptography. Chip Card See Smart Card. Class A definition from which objects are instantiated. In Java, a class defines the constructors and the methods shared by all objects instantiated from it. It also defines the fields that every object will maintain. See Java, Method. Client A software program that is used to contact and obtain data from a server. A Web browser is a specific kind of Client. Close Coupling Contactless technology operating at a distance of approximately 1 cm. Closed Systems A system whose use is limited to the original application issuer(s). Common closed systems include campus cards, corporate badges, etc. Comp128 Authentication algorithm used in cryptographic commands (notably by the GSM MoU). Compression The removal of redundancy in a data file or signal to reduce data size. Confidentiality Guarantee that a message will be legible to no-one other than the intended recipient. Confidentiality is an essential role of cryptography systems. Contact Smart Card A smart card that operates by physical contact between the reader and the smart card's different contacts (in comparison to Contactless smart cards). Contactless Said of cards with no visible module; they communicates by means of a radio frequency signal. There is no need of physical contact between the card and a reader (in comparison to Contact smart cards). See Proximity, Vicinity. Cookie A special text file that a Web site puts on your hard disk so that it can remember something about you at a later time. Typically, a cookie records your preferences when using a particular site. CORBA (Common Object Request Broker Architecture) An architecture that includes an interface definition language, a language-independent way of publishing an object’s methods either at compile time, or at the time of invocation. Country Codes ISO 3166 defines two-letter, three-letter and numeric standard abbreviations for each country. (e.g., where ".uk" refers to United Kingdom). Coupler An electronic system used to read the smart card. It is the basis of a reader. Designed to be integrated in a machine (e.g., gaming machine, gas meter...). CQL (Card Query Language -) A subset of SQL implemented on a smart card. CRC (Cyclic Redundancy Check) A popular method of ensuring transmissions have not been garbled. CryptoAPI (Cryptographic Application Programming Interface) A Microsoft API that offers system-level access to common cryptographic functions. Cryptography The science of ensuring that messages are secure. Cryptographic systems are based on the concepts of authentication, integrity, confidentiality and non-repudiation. See Public Key, Secret Key, DES, RSA,). CryptoKI See PKCS #11. CSS (Cascading Style Sheets) An extension to HTML to allow styles, e.g. color, font, size to be specified for certain elements of a hypertext document. DCS (Digital Cellular System) 1800 See GSM 1800. DES (Data Encryption Standard) The most widely used secret key encryption algorithm (56-bit key). A strengthened version of DES called triple DES (or 3DES) is commonly used in bank cards. See Secret Key. DF (Dedicated File) Memory organization for microprocessor cards: A DF is a logical entity that holds a number of elementary files (EF). In multi-purpose cards each DF will normally correspond to a distinct application. See MF, EF. DHTML (Dynamic Hypertext Markup Language) An extension to HTML that allows objects to interact with one another. See HTML, W3C. Digital Cash See e-cash. Digital Signature A digital signature (not to be confused with a digital certificate) is an electronic rather than a written signature that can be used by someone to authenticate the identity of the sender of a message See certificates, RSA. Digital Said of systems whose information is represented in binary form. Compare Analog. DMI (Direct Method Invocation) A means of communicating between client applications and Java Card applets using object method calls. DMI is an application protocol built upon the standard smart card APDU communication data structures for transporting commands to card (method calls) and responses from card (method result). DMZ (De-Militarized Zone) A network added between a protected network and an external network in order to provide an additional layer of security. DNS (Domain Naming System) The name lookup the Internet uses to convert from alphabetic names such as www.idbureau.com to 32-bit binary IP addresses. See TCP/IP, Country Codes, Domain Name. Domain Name The unique name that identifies an Internet site. Domain Names always have 2 or more parts, separated by dots. The part on the left is the most specific, and the part on the right is the most general (e.g., www.idbureau.com). See TCP/IP, Country Codes, DNS. DPI (Dots Per Inch) Measurement of resolution. Dual Slot Said of a smart card reader than can accommodate two cards simultaneously (often one for the end-user and one to identify an authorized professional). e-Cash Digital money, typically in the form of downloadable "digital coins" that can be stored in a bank account, on a PC or on a smart card. e-Commerce (Electronic Commerce) Business that is conducted (up to and including payment) electronically (usually over the Internet). EAC (External Authentication Cryptogram) Signature computed by an external entity (typically a terminal / host for a smart card). EEPROM (Electrically Erasable Programmable Read-Only Memory) Special non-volatile memory whose contents can be erased and new data can be reloaded electrically. In smart cards EEPROM is typically used for application data and for certain filtered functions. See ROM, RAM, Flash Memory, FeRAM. EF (Elementary File) Memory organization for microprocessor cards: The smallest logical entity that can be secured in the operating system. File containing data. (See DF and MF). EFT (Electronic Funds Transfer) The electronic exchange of information between financial institutions, resulting in debits and credits. e-Mail (short for Electronic Mail) Messages, usually text, sent from one person to another over a LAN or over the Internet. Embedding The operation that consists in placing the module in the cavity of the card body. EMV (Europay - Mastercard - Visa) Set of specifications defining the main structures for an international debit/credit smart card. Encryption A cryptographic procedure whereby a legible message is encrypted and made illegible to all but the holder of the appropriate cryptographic key. See Cryptography, Key. e-Purse see e-wallet. e-Wallet A small portable device that contains electronic money. e-wallets are generally used for low-dollar transactions. Ergonomics Study of equipment design in order to reduce user fatigue and discomfort. ETSI (European Telecommunications Standards Institute) The E.U. organization in charge of defining European telecommunications standards. The most well known European telecom standard is GSM. See ITU, GSM. Extranet The extension of a company's Intranet onto the Internet, e.g. to allow selected customers, suppliers and off-site employees to access the company's data and applications over the Web. Generally an Extranet uses access through a firewall. See VPN. Fab (short for Fabrication) In the semiconductor industry, a facility that makes integrated circuits from semiconductor wafers. FAQ (Frequently Asked Questions) Documents that list and answer the most common questions on a particular subject. FCC (Federal Communications Commission) Regulatory body governing communications technologies in the US. FeRAM (Ferroelectric RAM) An emerging non-volatile memory technology (i.e., it does not lose its data if the power is shut off). FeRAM can read data thousands of times faster at far lower voltage than other non-volatile memory devices. Filtered Said of data or functions that are loaded into the memory of a smart card. Masked data and functions, by comparison, are hardwired into the card's chip. Firewall A program that protects the resources of one network from users on other networks. See Internet, Extranet, VPN. Firmware Low-level software that is similar to hardware features. This software operates by exchanging commands directly with an external device or with a specific software loaded in the product. Flash Memory A non-volatile memory device that can be reprogrammed more quickly than EEPROM. See Non-Volatile, FeRAM. Foundry A wafer production and processing plant. Usually referring to a facility that is available on a contract basis. GSM (Global System for Mobile Communications) A European standard for digital cellular telephones that has now been widely adopted throughout the world. Under the ETSI standard, GSM telephones contain a SIM smart card that identifies the individual subscriber. GSM 1800 (also DCS 1800 or PCN) network working at1800 MHz. Used notably in Europe, Asia-Pacific and Australia. GSM 1900 (PCS 1900) network working a frequency of 1900 MHz. Used notably in the US and Canada. GSM 900 (also GSM) Used in over 100 countries, particularly in Europe and Asia Pacific. See ETSI, ITU, VAS. GUI (graphical user interface) A graphics-based interface that uses icons, menus and mouse actions to manage interaction with the system. Hardwired Said of electronic circuits that perform fixed logical operations, rather than a stored program. See Masked, Filtered. Hash See SHA-1, Checksum. Hexadecimal (or hex for short) Base-16 numbers made of the digits 0..9 and A..F (e.g. 08CF hex =2255). Home Banking Retail banking operations conducted by customers using electronic payment terminals in their own homes. HTML (HyperText Markup Language) The coding language used to create Hypertext documents for use on the World Wide Web. See Hypertext, Web. HTTP (HyperText Transfer Protocol) The protocol for moving hypertext files across the Internet between a server and a browser. HTTPS (Hypertext Transfer Protocol Secure) HTTP transmission of Web pages using the SSL protocol for security. Hypertext Any text that includes words, phrases or images (forming a hyperlink) that can be selected to go to another page or data source. See HTML. Initialization First stage of the card issuing process. The goal of this process is to load all the data common to one application into the smart card's EEPROM. See personalization. Instantiation The mechanism in object-oriented systems whereby objects are created from a class description. Integrity Guarantee that a message has not been modified in transit. Integrity is an essential role of cryptography systems. Internet The set of inter-connected networks that use the TCP/IP protocols. The Internet now connects hundreds of thousands of independent networks into a vast global network. Different types of data can be sent over the Internet, including e-mail or Web pages. Interoperability The ability of products manufactured by different companies to operate correctly with one another. Intranet A network using the same protocol as the Internet (TCP/IP), but limited to a company's LAN or WAN. IP (Internet Protocol) See TCP/IP. IP address (Internet Protocol address) A unique number assigned by an Internet authority that identifies a computer on the Internet. The number consists of four groups of numbers between 0 and 255, separated by periods (dots). For example, 172.16.6.129 is an IP address. ISDN (Integrated Services Digital Network) A set of CCITT/ITU standards for digital transmission over ordinary telephone copper wire as well as over other media). In addition to higher bandwidth, ISDN offers extended services compared to PSTN. ISO (International Standards Organization) The main international standards organization. ISO works to ensure that chip makers, software developers and smart card companies comply with the same specifications. Standards for the smart card industry include: ISO/IEC 7816-1:1998 Physical Characteristics of IC cards. ISO/IEC 7816-2:1999 Position of Module and Contacts on IC cards. ISO/IEC 7816-3:1997 Exchange protocol with IC cards (i.e., communication between readers and cards). ISO/IEC 7816-4:1995 Command set for microprocessor cards. ISO/IEC 7816-5:1994 Numbering system and registration procedure for application identifiers. ISO/IEC 7816-6:1996 Inter-industry data elements. ISO/IEC 7816-7:1999 Inter-industry commands for Structured Card Query Language (SCQL). ISO/IEC DIS 7816-8 Security related inter-industry commands. ISO/IEC DIS 7816-9 Additional inter-industry commands and security attributes. ISO/IEC DIS 7816-10 Electronic signals and answer to reset for synchronous cards. ISO 14443 Proximity cards (contactless). ITSEC (Information Technology Security Evaluation Certification) A set of criteria adopted by Europe and Australia used to evaluate the security of software and computer components. ITU (International Telecommunications Union) Successor to CCITT. The international agency in charge of telecommunications coordination. See ETSI, CCITT. Java A network-oriented programming language invented by Sun Microsystems. Java was specifically designed so that programs could be safely downloaded to remote devices (e.g., Web pages, smart cards, etc.). See: Applet, Java Card, Certificate, Open OS. Java Card A set of specifications for running a subset of Java on a smart card. See Java, Open OS. JCF (Java Card Forum) An industry association devoted to the advancement of the Java Card specifications to serve the markets for Java card. JCRE (Java Card Runtime Environment) The run-time environment under which a Java Card executes. The JCRE is in charge of all the management operations, like loading and initializing the applications. It also keeps track of the current state of the card. Jini A distributed-computing product for the consumer market. The system enables devices that use Java to communicate and work with each other. JVM (Java Virtual Machine) An area (or dedicated hardware) on a remote computing device on which Java applets can be run. Most major browsers have a JVM. Key A value that is used with a cryptographic algorithm to encrypt (or sign data). The longer the key, the more secure the encryption. See Public Key, Secret Key, Cryptography. Key Escrow (or trusted third party) A scheme whereby an authorized body keeps a copy of all private keys, which can be revealed only upon court order. See Public Key. LAN (Local Area Network) A geographically limited network (generally within a building or small group of buildings) that is managed and owned by a single company. See WAN, VPN, Internet, Intranet. LDAP (Lightweight Directory Access Protocol) A software protocol that lets anyone locate organizations, individuals, and other resources such as files and devices in a network. Legacy System An information system that is outdated yet which still provides useful service (e.g., punch card system). Lifecyle The time between the issuance of a smart card and its cancellation or expiration. Linux A freeware computer operating system that is derived from UNIX. Mapping (also called memory map) A functional representation of the different blocks in the memory of a chip. Masked Said of data or functions that are permanently loaded into the chip on the smart card. See Filtered, Hardwired. Method In an object-oriented system, a method is piece of executable code that is associated with a class or an instance of a class. MF (Master File) Memory organization for microprocessor cards: This file is unique and obligatory. It has its own security attributes and may contain DFs and/or EFs. Memory Card A smart card containing a memory chip with read / write capability and in some cases hardwired security functions (some people do not consider memory cards as smart cards). MIME (Multipurpose Internet Mail Extension) The standard for attaching non-text files to e-mail. See Browser , Client , Server, S/MIME. Mobile Phone Network Wireless telephone system where each geographic area is covered by a base station. See Cellular Phone System. Module (also called micromodule) The unit formed of a chip and a contact plate, with fine connecting wires that is encapsulated in a drop of epoxy resin. The module is embedded in a cavity in the card body. Multi-application Said of a smart card that can accommodate more than one application while maintaining separate security conditions. Multos A smart card open operating system developed by MAOSCO, notably for financial transactions. See Open OS. Non-Repudiation Guarantee that a sender cannot falsely deny having sent a message. Non-repudiation is an essential role of cryptography systems. Non-Volatile Said of memory chips that do not lose their contents when the power is switched off. See Volatile, EEPROM, Flash Memory, FeRAM. Object In an object-oriented system, an object is either an array or a class instance. Every object is associated with a class. See Java, class. OCF (OpenCard Framework) The framework that provides programmers with an interface for the development of smart card applications in Java. OEM (Original Equipment Manufacturer) Said of a distribution arrangement whereby technology is marketed by a company other than the manufacturer. Off-Line A transaction during which no direct connection is made to a central computer facility. See On-Line. On-Line A transaction during which a direct connection is made to a central computer facility (usually via the public telephone network or computer networks). See Off-Line. Open OS (Open Operating System) An operating system that is not owned by a single card maker, such as Java Card, Smart Card for Windows or Multos. OTA (Over the Air) Transmission using microwave channels. This acronym is used in the world of wireless telecommunications. Padding One or more bits appended to a message in order to ensure that it contains the required number of bits or bytes. PC Card Standard architecture-independent extension device. These cards are typically used in laptop computers (formerly called PCMCIA). PCB (Printed Circuit Board) A non-conductive board on which chips and electronic components are connected by metallic pathways. PCMCIA (Personal Computer Memory Card International Association) (see PC Card). PCN (Personal Communications Network) A variant of the GSM wireless phone standard (sometimes called DCS 1800 or GSM 1800). PCS (Personal Communications Services) A variant of the GSM wireless phone standard (sometimes called GSM 1900). See GSM. PDA (Personal Digital Assistant) A handheld, wireless computer that serves as an organizer, electronic book or note taker. PDC (Personal Digital Cellular) A Japanese standard for digital mobile telephony in the 800 MHz and 1500 MHz bands. See Mobile Phone Network. Personalization Process during which a smart card is modified to contain the information for one person. Graphical personalization modifies the visual aspect of the card (holder's name, photograph) Electrical personalization modifies the information in the card's chip. Pilot Small-scale deployment of a smart technology solution in the final customer's environment. A pilot application allows issuers to determine whether the solution meets specific requirements. PIN (Personal Identification Number) The number or code that a cardholder must type in to confirm that he or she is the genuine cardholder. PKCS (Public-Key Cryptography Standards Informal inter-vendor standards developed in 1991 under the impetus of RSA. More information at: http://www.rsasecurity.com/rsalabs/pkcs/ PKCS #1: RSA Encryption Standard PKCS #3: Diffie-Hellman Key-Agreement Standard PKCS #5: Password-Based Cryptography Standard PKCS #6: Extended-Certificate Syntax Standard PKCS #7: Cryptographic Message Syntax Standard PKCS #8: Private-Key Information Syntax Standard PKCS #9: Selected Attribute Types PKCS #10: Certification Request Syntax Standard PKCS #11: Cryptographic Token Interface Standard PKCS #12: Personal Information Exchange Syntax Standard PKCS #13: Elliptic Curve Cryptography Standard PKCS #15: Cryptographic Token Information Format Standard. PKI (Public Key Infrastructure The software and/or hardware components necessary to manage and enable the effective use of public key encryption technology, particularly on a large scale. See Public Key, Cryptography. Plug or Plug-In Card Preliminary cutout for SIM cards. Plug-in (for a browser) A piece of software that adds features to a browser (or other software package). POP3 (Post Office Protocol 3) A protocol used to retrieve e-mail from a remote server over an Internet connection. See SMPT. Portal Said of a Web site that is the first place people see when they connect. a "Portal site" usually has a list of web sites, and a search engine. POS (Point Of Sale) POS terminals (in comparison to central terminal) are handheld or desktop devices that can conduct transactions with smart or mag-stripe cards. Pre-Paid Card A card permitting the holder to buy goods or services usually of a particular type up to the pre-paid value. Some pre-paid cards are reloadable, others are not. Proactive A proactive mechanism allows the card to initiate a transaction with the mobile equipment. Proactive commands are defined in GSM 11.11 and 11.14 standards. PROM (Programmable Read-Only Memory) A read-only memory that can be written to only once. See EEPROM, Non-Volatile. Protocol 1. On the Internet, see TCP/IP 2. A set of rules and procedures governing interchange of information between a smart card and a reader. The ISO defines several protocols, including T=0, T=1 and T=14. Proximity Contactless technology operating at a distance of approximately 10 cm. See Vicinity, Reading Distance. Proxy Server A server that acts as an intermediary between an individual user and the Internet.. PSTN (Public Switched Telephone Network) The conventional wire network allowing individual telephone subscribers to call one another. see ISDN. Public Key A cryptographic system that uses two different keys (public and private) for encrypting and signing data. The most well-know public key algorithm is RSA. See Digital Signature, Secret Key, Certification Authority. PVC (Polyvinyl Chloride) A type of plastic used to product of laminated card bodies for certain types of smart cards, notably those that require embossing, signature panels or overlays (See ABS). RAD (Rapid Application Development) An approach that relies on small teams using joint application development and iterative-prototyping techniques to construct interactive systems within several months. RAM (Random Access Memory) A volatile memory that is used as a scratchpad by the microprocessor in a smart card. Reading distance The distance between the antenna of a reader and a tag over which the read function can be effectively performed. See Proximity, Vicinity. Registration Authority The organization that receives individual users to verify their credentials prior to emission of a certificate. See CA, Public Key. RFID (Radio Frequency Identification) Automatic identification and data capture system comprising readers and tags. Data is transferred using modulated inductive or radiating electromagnetic carriers. See Tag, Reading Distance, Contactless. Roaming An arrangement whereby a mobile handset is be recognized by networks other than that of the issuer (notably for subscribers traveling abroad). See GSM. ROM (Read-Only Memory) Memory in which the information can be read but not written. Chip operating systems are normally masked into the ROM, which is also referred to as firmware. RSA (Rivest-Shamir-Adleman) The most widely used public key encryption algorithm, named after its creators. SAM (Security Access Module) A dedicated microprocessor unit that conducts active authentication with a memory or microprocessor card. SAT (SIM Application Toolkit) A data management application for SIM cards, part of which is resident in the SIM card. See GSM. Scratch Card A card that is produced with special ink that can be scratched away to reveal a number or message. SCW (Smart Card for Windows) Microsoft's operating system for smart cards. See Open OS. SDK (Software Development Kit) A set of development utilities for writing software applications, usually associated with specific environments. Secret Key A cryptographic system that uses a single key for encrypting and signing data. See Public Key, DES. Server A computer that provides a specific kind of service (e.g., Web pages) to client software (e.g. browsers) running on other computers. See: Client , Web, HTTP. Session Period of time between two card resets, or between power up and a power down. See ATR. SET (Secure Electronic Transaction) Mastercard and Visa's protocol for sending encrypted credit card numbers over the Internet. The merchant never gets to know the customer's card number, thus limiting fraud. SHA-1 (Secure Hash Algorithm 1) A hash algorithm developed by the National Institute of Standards and Technology and the National Security Agency. See Certificate, Digital Signature. Signed Applets A technique of adding a digital signature to an applet to prove that it came from a particular trusted author. SIM (Subscriber Identification Module) A smart card for GSM systems holding the subscriber's ID number, security information and memory for a personal directory of numbers thus allowing him to call from any GSM device. Smart Card Also called IC card, chip card or memory card (for certain types). A card formed of a plastic body with a chip (or module) embedded in a special cavity. SmartX An implementation of XML for smart cards. SmartX offers a complete framework to develop smart card applications. S/MIME (Secure Multipurpose Internet Mail Extensions ) The method for protecting and digitally signing e-mail whereby a message is encapsulated within a MIME envelope and encrypted with PKCS #7. SMPT (Simple Mail Transfer Protocol) The standard protocol used for Internet e-mail messages. See POP3, LDAP. SMS (short message service) A GSM service that sends and receives messages of up to 160 characters to and from a mobile phone. Sol@ (SIM Toolkit On-Line @pplication) Sol@ applies SIM Toolkit, OTA and SMS technology to deliver mobile Internet services over existing GSM infrastructures. SQL (Structured Query Language) A specialized programming language for sending queries to databases. See CQL. SSL (Secure Sockets Layer) A protocol designed by Netscape Communications to enable encrypted, authenticated communications across the Internet (e.g., sites beginning with https://). See: Browser , Server , Certificate , URL, Cryptography. Standard A standard is a set of specifications defining the physical, electrical or logical properties of a device. See ISO, ETSI, ITU, PKCS. T1 - T1C - T2 - T3 - T4 A digital carrier system introduced in the 1960s. T-series speeds include: T1: 1.544 megabits per second (Mbps) T1C: 3.152 Mbps T2: 6.312 Mbps T3: 44.746 Mbps T4: 274.176 Mbps. See: Bandwidth , bps, Broadband. Tag Term for a transponder commonly used by AIM. A contactless electronic device that can communicate with a reader by means of a radio frequency signal. A tag is not really a "smart card" but rather a "smart device.". TCP/IP (Transmission Control Protocol/Internet Protocol) The protocol used on the Internet to transfer packets. This protocol can also be used on a LAN (to implement an Intranet). See IP. TDMA (Time Division Multiple Access) A technology for digital transmission of radio signals between, for example, a mobile telephone and a radio base station. Terminal Any device that can communicate with a smart card (e.g., reader, coupler…). Certain terminals can operate in standalone mode, while others must be connected to a central information system to access an application. See POS. Transponder An electronic transmitter/responder, commonly referred to as a Tag. TTP (Trusted Third Party) See Key Escrow. UML (Unified Modeling Language) A language used for modeling object-oriented systems. UML is particularly well suited for projects in C++ and Java. URL (Uniform Resource Locator) An address in a standard format that identified files on the Internet. (usually beginning with http://) The most common way to access a URL is with a browser. See: Browser , Web. VAS (Value-Added Service) Services offered to telecom customers extending beyond the scope of voice transmission. See GSM. Vicinity Contactless technology operating at a distance of approximately 50 cm. See Proximity, Reading Distance. Visa Open Platform A comprehensive system architecture allowing fast development of globally interoperable smart card systems. ("Open Platform" is a variant of this architecture that is not restricted to the banking industry). VOIP (Voice Over Internet Protocol) A technology for transmitting ordinary telephone calls over the Internet. Volatile Memory A memory device (e.g., RAM) that does not retain stored information when power is switched off. See Non-volatile. VPN (Virtual Private Networking) A system to deliver corporate information over a shared public infrastructure. The remote user session is handled through a firewall using encrypted communications. See Intranet, Extranet. W3C (World-Wide Web Consortium) The consortium that defines the HTML and CGI standards. Wafer A disc of semiconductor material. The chips used in smart cards are delivered to the card maker in wafers. WAN (Wide Area Network) Private network that links networks in different areas (often a collection of LANs). See LAN, Internet, VPN. WAP (Wireless Application Protocol) Protocol used to view a Web page on the display of a mobile phone (visit http://www.wapforum.org/ for more information). See WIM. Web (short for World Wide Web) The collection of hypertext sites on the Internet (not to be confused with the Internet itself). WHQL (Windows Hardware Quality Lab) The Microsoft Lab that determines which vendors can use the "Designed for Microsoft Windows" logo. WIM (WAP Identity Module) A SIM card that is specifically developed for the Internet. See WAP. WML (Wireless Markup Language) A subset of HTML for use on wireless devices. See WAP. WWW (World Wide Web) see Web. XML (Extensible Markup Language) A specialized markup language that can be used to define many different document types, each of which uses its own element type names. See SmartX. XOR The XOR algorithm is a very simple form of encryption that offers little protection against intrusion.