TLS-Tandem: A Smart Card for WEB Applications

Abstract: This demonstration shows a WEB application offering multimedia contents, whose access is fully controlled by a smart card according to an innovative context, named TLS-Tandem. Credentials required by the WEB site, and used by the smart card (certificates, private keys), are distributed via AJAX facilities.

“…Most of them support a virtual machine such as JVM or .NET. We used an open technology, detailed in [5][6] and running TLS stack, more precisely the EAP-TLS protocol that provides a transparent encapsulation of TLS. At the end of the pure TLS handshake, keys identifiers of cryptographic algorithm selected for the secure TLS channel, and associated key values (the keys-block), and made available for the proxy software, which afterwards fully manage HTTPS encryption and decryption process.…”

An OpenID Provider Based on SSL Smart Cards

“…Most of them support a virtual machine such as JVM or .NET. We used an open technology, detailed in [5][6] and running TLS stack, more precisely the EAP-TLS protocol that provides a transparent encapsulation of TLS. At the end of the pure TLS handshake, keys identifiers of cryptographic algorithm selected for the secure TLS channel, and associated key values (the keys-block), and made available for the proxy software, which afterwards fully manage HTTPS encryption and decryption process.…”

An OpenID Provider Based on SSL Smart Cards

A Generic Proxy for Secure Smart Card-Enabled Web Applications

LLCPS: A new security framework based on TLS for NFC P2P applications in the Internet of Things