Secure access module

From Wikipedia, the free encyclopedia
Jump to: navigation, search
A Secure Access Module
Secure Access Module

A Secure Access Module (or Secure Application Module) is based on SmartCard ICs and is used to enhance the security and cryptography performance in devices, commonly in devices needing to perform secure transactions, such as paying terminals.It can be used for cryptographic computation and secure authentication against smart cards or contactless emv cards.

SAM in a HVQFN housing

Physically a SAM can either be a SIM card and plugged into a SAM slot in a reader or a fixed integrated circuit in an e.g. HVQFN housing to be directly soldered on the PCB.

Generally a reader system consists of a microcontroller and a reader IC to communicate over the RF interface with a contactless smartcard. The microcontroller takes the part of controlling the reader IC, like the protocol handling, command flow and data interpretation. By integrating a SAM into the reader system, the SAM handles all the key management and cryptography in a secure way. The entire system enables an authentication and encryption of the contactless communication as well as between the SAM and host system.

SAM can be deployed in any of the following applications:

  • Generate application keys based on master keys
  • Store and secure master keys
  • Perform cryptographic functions with smart cards
  • Use as a secure encryption device
  • Perform mutual authentication
  • Generate session keys
  • Perform secure messaging

A SAM can be used in segments of Access Management, Public Transport, Payment systems, POS, etc.

Further reading[edit]