Applying Time Metrics

Home	About Gamma	Tour our Web Site	Events	White Papers	Services	Visitors' Book	How to contact us
			IMS	Internal Control	ISMS	Smart Cards	Common Criteria

APPLYING ICS TIME METRICS TO GLOBAL PLATFORM SMART CARDS

David Brewer

William List

Gamma Secure Systems Limited

Diamond House, 149 Frimley Rd

Camberley, Surrey GU15 2PS, UK

William List & Co.

46 Snakes Lane
Woodford Green, Essex 1G8 0DF, UK

* PUBLISHED AT THE e-Smart 2004 CONFERENCE, 21-23 SEPTEMBER 2004, SOPHIA ANTIPOLIS, FRANCE © 2004 GAMMA & W^mLIST&CO. Personal use of this material is permitted. However, permission to reprint/republish this material for advertising or promotional purposes or for creating new collective works for resale or redistribution to servers or lists, or to reuse any copyrighted component of this work in other works must be obtained from both Gamma and W^mLIST&CO.

The fundamental principle of the time metrics is that an effective internal control system will detect an event in sufficient time to do something about it before some undesirable impact arises. Our eSmart 2004 paper applies this principle in the context of GlobalPlatform smart cards, and explains how a risk treatment plan (RTP) can be developed in the usual "tell it like a story" manner to determine the optimum mix of on-card and off-card security controls.

The usual questions are "what happens if a security control fails and how do I find out?" The time metrics expose the time constraints: "how quickly can I found out, and how much time do I have to repair the damage?" These are particularly pertinent questions when for example the lifetime of a payment card is usually three years but that of a passport will be ten.

See the presentation below and/or download the full paper.

<blockquote> <p> Your browser does not support inline frames or is currently configured not to display inline frames.</p> </blockquote>


Gamma is an ISO/IEC 27001:2005 and BS EN ISO 9001: 2000 registered company, certified for the provision of information security consultancy. BSI certificate numbers IS 85916 and FS 30710. Please send comments to webmaster@gammassl.co.uk or complete our Visitors'Book. Gamma Secure Systems, Diamond House, Frimley Road, Camberley, Surrey, GU15 2PS, UK Tel: +44 1276 702500 - Fax: +44 1276 692903. Copyright © Gamma Secure Systems Limited 2004

	Page last updated: 25 September, 2004