GLOBALPLATFORM FINALIZES DEVICE APPLICATION SECURITY MANAGEMENT (DASM) SPECIFICATION

23 April 2008

GlobalPlatform, the international smart card specification organization, has finalized its Device Application Security Management (DASM) Specification for terminals, including mobile phone handsets and EFT-POS devices, based of GlobalPlatform device technology*. This specification defines how multiple actors within a device environment – such as issuers and third party application providers – can safely and confidentially exchange and manage secure data when dynamically downloading applications either pre or post issuance.

The DASM Specification is a suite of three documents. The first – the DASM Concepts and Descriptions Specification – was launched in May 2007 and defines the roles and responsibilities of different actors and specifies the data that needs to be shared in the application download process. The final two documents, which have just been published on the GlobalPlatform website, are:
• The DASM Key and Certificate Management Specification – This document details the keys, signature scheme and certificate infrastructure that must be applied to ensure that all actors active within the device environment are verified as trustworthy.
• The DASM Provisioning Specification – This document specifies the data format required to install an application and set up a security configuration on GlobalPlatform systems.

Gil Bernabeu, Technical Director at GlobalPlatform and Technical Advisor for the Standardization and Technology Department at Gemalto, comments: “The launch of these final two documents in the DASM Specification completes the first phase in GlobalPlatform’s development of a full standardized solution for provisioning applications in multi-actor GPD/STIP device environments. The main beneficiaries of this specification will be device owners and application providers who wish to download applications to a terminal, while retaining exclusive control over their own secure applications in a multi-application scenario.”

Become a bobsguide member to access the following

1. Unrestricted access to bobsguide
2. Send a proposal request
3. Insights delivered daily to your inbox
4. Career development