Card Project has significant experience in the design and creation of electronic ticket systems for public transport. In particular, the company has a thorough knowledge of the CALYPSO system. Our experience in the contactless smart card field has been further enhanced through projects like the National health insurance card, electronic passports, NFC mobile devices and so on. Card Project has installed HSM devices which permit the remotely managed sale of travel tickets, where all security aspects are transferred from the local device to the HSM server. Specifically, through the use of own HSM, NFC applications have been developed which allow smartphones to validate smart cards. The following is a list of ready to use products which can be highly personalized:
At the heart of Card Project services is the personalization and management of the HSM Hardware Security Module crypto server.
An HSM is a hardware device specially designed to carry out encrypting procedures and offer logical and physical protection of cryptographed keys from unauthorised use.
With such devices, it is possible to implement security solutions from a single centralized position, using a wide range of cryptographed algorhythms, respecting all emerging standards whilst also maintaining high levels of operating efficiency.
HSM devices are easy for companies to use with any application, from identity management, web services, PKI services and multi-level password access.
Card Project supplies and personalizes HSM servers with web services in order to allow the addition of further applications to the National health insurance card, digital I.D card or electronic passport. Dedicated data structures can be added to the CNS card (starting from the DF2 directory “other applications”) which are then managed through the applications developed for each customer’s needs.
In such a context, Card Project is responsible for the design and creation of the entire card management system: from the file system definition (which will be integrated on the user’s card in order to contain all data necessary to service management), to the setting up of the servers able to manage card data storage up-dating from a remote source.
Remote card up-dating requires the presence of a software system able to deal with on-line requests as well as those from a hardware component (HSM) and which manages cryptographic and security operations.
Card Project is able to develop and create remote applications which read the card and supply information on service status as well as initiating the file system and up-dating content, obtaining the necessary credentials through a centralized security service which guarantees the full traceability of operations carried out.
Card Project is able to design and personalize multi-system inter-operable solutions and has developed numerous tools which can read, verify and update saved travel card data on Mifare, MITT and Calypso technology. This inter-operability between systems requires the design and creation of a specific smart card profile (data model), which adapts itself to the specifics of the system it will operate on. Through Card Project web services, the card can be read and written from an on-line access point and is usable on any browser that allows service access following login and password verification. The tools that have been developed permit analysis, validation and up-dating of travel cards specifically for Mifare, Mifare Ultralight, Calypso and MITT technology. In order for the solution to be mobile, both for TPL operators and users, Card Project has developed Android platform applications dedicated to Smart Card management allowing reading and writing in a fully secure environment through HSM, stored data on transport cards using portable NFC devices, smartphones or tablets (Mobile Integrated Transport). One application allows the passenger, who has bought an electronic ticket (single/multi-ticket/season ticket) to visualize information such as validity and number of journeys remaining, with technical staff and ticket controllers also able to verify, validate, recharge and modify data on the card.