SCalibur is a Java® middleware SDK that enables the integration of smart cards and tokens into applications. It supports all common e-ID protocols and is also suitable for complex trust models. Thanks to SCalibur, developers do not have to build up smart card know-how and can concentrate on their core tasks instead.
E-ID cards and machine-readable travel documents (MRTDs) are currently experiencing a worldwide boom. The data stored on these cards must be protected with authentication and encryption. Only authorized parties may have access to the data on the chip in a clearly defined manner. In addition, it must not be possible to forge or copy a card with the data stored on it.
The authentication and encryption mechanisms required for e-ID cards and MRTDs are usually provided by standardized security protocols. These include for example BAC, EACv1, EACv2 and PACE. These protocols use modern cryptographic methods including digital certificates.
SCalibur by cryptovision is a distributed smart card middleware SDK that supports all relevant e-ID protocols and enables their easy use. SCalibur provides the developer with powerful interfaces to control the protocol flow. Realized with Java, SCalibur is platform-independent and can be integrated into existing applications on any device.
With SCalibur, the customer does not have to worry about the details of the security protocols. Instead, developers can focus on business logic and user experience. The time to market is extremely short. Rapid prototyping is easy.
What is a distributed middleware?
If sensitive data is stored on smart cards or token, it must not be possible to read them out without permission. Instead, access must be clearly regulated and secured with authentication mechanisms. A number of protocols have been developed for this purpose, primarily by the Civil Aviation Organisation (ICAO) and the Federal Office for Information Security (BSI). In addition to a digital certificate, a reader also requires a private key to prove authorization. Instead of securely storing this key on the device itself – which is often not easily possible – the key remains on a secure central server and the protocol is carried out ” remote “.
- Windows 7/8.1/10
- Linux Ubuntu 14.04 LTS, RedHat 7, OpenSuse 13.2
- OS X Yosemite 10.10.3, El Capitan 10.11
- Oracle JDK 1.8
MODULES, BASICS, KEY FEATURES, COMPARISONS
- Low Level Interface: This interface can be used to achieve a higher control and to develop software that needs to be closer to the hardware and the card profile.
- High Level Interface: This interface can be used to comfortably and rapidly develop applications on a higher abstraction level (e.g. direct access to data groups).
- Standalone Terminal: This is a substantial part of the provided examples to demonstrate the usage of the middleware SDK and non-distributed use-cases with a graphical user interface.
- Use Case Examples: These are minimal working examples that help developers to build their own SCalibur-based applications.
- Detailed Documentation: The documentation consists of three documents (Getting started, Manual and Standalone Terminal Manual), as well as a comprehensive JavaDoc™ documentation for developers.
- Biometric Support: Includes fingerprint recognition with Match-on-Card (MoC) functionality and support for multiple fingerprint scanners.
SCalibur is an advanced distributed smart card middleware SDK supporting all relevant eID protocols and complex trust models.
Protocol Support Made Easy
Depending on the applications, an eID document needs to apply different security protocols like BAC, EACv1, EACv2, SAC or PACE. A developer using SCalibur does not need to know how the details of these protocols work. He can rather focus on developing the applications.
Runs on all Components of an eID System
SCalibur cares about protocol handling on all clients and servers involved in a transaction. It’s the one-stop-shop solution for all components of an eID system.
SCalibur is based on Java. This makes SCalibur platform-independent.
Integration of Biometrics
In addition to using PINs it is possible to use fingerprints to protect smart cards. SCalibur supports ISO compliant Match-on-Card
Integration of Hardware Modules
SCalibur supports contact as well as contactless card readers. Card readers with or without PIN pad or fingerprint scanners can be used. MRZ scanners, HSMs and SAMs can be used.
Ease to Use
SCalibur comes with example applications and extensive documentation. It is very easy to use, even for less experienced developpers.
SCalibur allows for minimizing time to market of your own implementations. Modular design easily allows you to integrate your own components. You can even extend SCalibur’s scope. Rapid prototyping is easily possible.
SCalibur is a Java(R) SDK and available for Windows, Linux and OS X.
- Supports all relevant eID security protocols (BAC, PACE (incl. PACE-CAM), EACv1, EACv2, SAC)
- Hides complex protocol details behind easy-to-use APIs
- Based on open standards
- Modular architecture
- Biometry support
- Java-based, runs on many platforms