Page 1 of 1

Store AESKey in javacard

Posted: Mon Dec 28, 2015 5:33 am
by posey
In my java card application, I need to share some keys of type AESKey with different terminals. Because there is no structure like HashTable in Java Card, I think I could do something with byte arrays. But is this the best solution to cover my needs? Any other methods? I would be appreciated for any help.

Re: Store AESKey in javacard

Posted: Wed Dec 30, 2015 11:48 pm
by horse dream
Important security-relevant data like keys and PINs shall always be stored in designated objects from the Javacard API.
The smart card operating system will perform additional internal operations to protect the relevant values from leaking.

Re: Store AESKey in javacard

Posted: Wed Dec 30, 2015 11:53 pm
by btwtiger
You should be familiar with key derivation.
You can derive the key using the terminal ID and store the result in a transient array and then set the value of a transient key to that value. Of course you would need to delete the derived key immediately.