Small Machine Operating System (SMOS)
MCS Small Machine Operating System (SMOS) is a multi-application operating system with a built-in virtual machine and dual card managers – GlobalPlatform and proprietary. The same application can be installed on different IC platforms, securely executed within active firewalls and protected with the latest countermeasures against timing, fault injection, logical and side-channel attacks.
Common Criteria IT Security Certification
In 2012, a version of our operating system – SMOSCC – achieved Common Criteria (CC) Evaluation Assurance Level (EAL) 4+ security certification. The certification was a confirmation of the secured implementation of our product by an independent authority and it validated our team’s strict development practice.
Our competencies extend to the PC and firmware domains where development tools were created to complement the SMOS products:
- Assembler - Command line tool that converts Small Machine assembly language code to Small Machine bytecode.
- Debugger - Emulates the Small Machine virtual machine and executes card applets. Features assembly view, step function, breakpoints and resource windows.
- Virtual smart card reader – Software driver that creates a virtual PC/SC interface between application software and SMOS emulation. This facilitates COS and applet validation process against test or production software.
- Integrated development environment (IDE) - Software development environment that combines assembly language editor, assembler, debugger and script player functions. Features include project management, code auto-complete, test logs, etc.
- APDU script player - Executes APDU command scripts for testing purpose. Features include cryptography, branch and reporting functions. Interfaces with Windows PC/SC and proprietary smart card readers.
- Certificate generator - Generates certificates to load and delete card applets dynamically, and retire cards. Certificates are derived from issuer keys and are applicable to a specific card or card scheme.
- Applet Loader - Easily loads applets onto or deletes them from SMOS cards, or retires SMOS cards.
Unlike other conventional smart cards, our next-generation COS allows the cardholder to decide which applications go into his smart card, similar to how mobile devices and digital wallets work. The cardholder shall own the card, literally, in every aspect. In partnership with application providers, an opt-in business model provides savvy cardholders with the means to install essential card applications for convenience, back-up, replacement and other purposes that we would not have thought of, or introduce new ones for added services.
To achieve this, we believe our next-generation COS needs to be an open system, yet secured. It will apply the relevant standards, such as GlobalPlatform for administrative and application management; JavaCard virtual machine to execute third-party applications; native applications which comply with specifications by EMVCo, ICAO, ISO/IEC, FIPS, etc. with smaller memory footprint and faster performance; and ISO/IEC 7816 contact interface, ISO/IEC 14443 contactless interface and ISO/IEC 18092 near-field communication to serve as many use-cases as possible.
Cardholders will be assured of the product’s security by virtue of certification by independent authorities, like the Common Criteria, EMVCo, PCI-DSS, FIPS 186 and others of the future.