Giters

alan-turing-institute / SIMple-ID

SIM-based QR-code authentication for basic and feature phones

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

SIMple ID: QR codes for authentication on basic and feature phones

This repository contains a Java Card 3.0.4+ applet which generates and displays QR codes for authentication using (almost*) the standard SIM ToolKit (STK) API. The itention is to permit low-cost, basic and feature phones (e.g., Jio) to offer SIM-secured authentication modes based on QR codes.

You can also read our paper and watch a short demonstration video.

Requirements

Tested with:

  • Taisys SIMoME
  • TTfone TT240 Smart-Feature Phone (JioPhone sold in the UK)
  • PCSC card reader e.g. Gemalto IDBridge CT30
  • OpenJDK 11
  • Debian bullseye and OSX X 10.15.7
  • Python 3.9.10
  • The pycrypto and pyscard libraries
pip2 install --user pycrypto pyscard

Recommended:

  • FF to 2FF smartcard converter, or equivalent for your development device, for example.

Build

Ensure you have OpenJDK 11, the ant build tool and configure JDK 11 as your Java environment:

 sudo apt install openjdk-11-jdk ant
 sudo update-alternatives --config java

or

brew install openjdk@11 ant
export JAVA_HOME=$(/usr/libexec/java_home -v 11)

Clone this repository:

git clone https://github.com/alan-turing-institute/SIMple-ID.git
cd SIMple-ID

Clone the Javacard SDK and sim-tools dependencies:

git submodule update --init --recursive

Then run ant to build the Java Card applet, QRSTK.cap.

Install

Load and install the STK applet. It is vitally important that you replace KIC1 and KID1 with the specific keys for your Java Card. These are provided at the time of purchase and enable the Over The Air (OTA) security needed for loading STK applets to your card.

python2 sim-tools/shadysim/shadysim_isim.py --pcsc \
      -l ./bin/QRSTK.cap \
      -i ./bin/QRSTK.cap \
      --kic KIC1 \
      --kid KID1 \
      --instance-aid f07002CA44900101 \
      --module-aid f07002CA44900101 \
      --nonvolatile-memory-required 0fff \
      --volatile-memory-for-install 0fff \
      --access-domain 00000010 \
      --enable-uicc-toolkit \
      --enable-uicc-file-access \
      --max-menu-entry-text 20 \
      --max-menu-entries 06

To uninstall the STK applet, again replace KIC1 and KID1 with your card keys and then run the following.

python2 sim-tools/shadysim/shadysim_isim.py --pcsc -d f07002CA44\
      --kic KIC --kid KID

Credits and Gratitude

  • This work was supported, in whole or in part, by the Bill & Melinda Gates Foundation [INV-001309].
  • We are very thankful for @mrlnc's HelloSTK2 repository which made getting STK to work on the sysmoISIM-SJA2 less of a headache!

About

SIM-based QR-code authentication for basic and feature phones

License:MIT License

Languages

Language:TeX 88.6%Language:Java 8.3%Language:Python 2.6%Language:Batchfile 0.5%