( 951 KB )
You do not have the required access level. To download this file, see below for more information.
This document specifies the Calypso HCE Application product.
A Calypso HCE application is a software application containing data organized as a Calypso file structure, and implementing the Calypso features with a good level of compatibility with existing Calypso Prime applications and using the NFC HCE interface provided by the Android operating system since its version 4.4 (“KitKat”).
Since HCE applications do not offer the same level of security to store information as do secure elements such as smartcards, cloning, reversal of data to an earlier state, and modification of
data stored in a portable object should be considered possible in an HCE application.
However, contrary to cards, mobile phones are connected objects. It is possible to lower the risk by regular connections of the mobile phone to the remote system responsible for overseeing the security of the applications deployed.
Therefore, in order achieve a good compatibility with Calypso Prime Revision 3 systems with an acceptable level of security to prevent fraud, the scope and purpose of this document is:
- to specify the specific cryptographic data and mechanisms that shall be implemented in Calypso HCE applications, and
- based on the Calypso Prime Card Application Specification (Revision 3.2), which is assumed to be known, to specify the differences for Calypso HCE applications.
Benefits & Services:
Public documents : There is no constraint on the document diffusion. Reproduction is authorised and diffusion by e-mail is possible. It is not necessary to login to download public documentation.
Restricted documents : Diffusion is restricted to the designated persons. The information contained in these documents is not public and must be kept confidential. The original recipient is fully responsible for its re-transmission, which may only concern people involved in the project, on a need-to-know basis. You must login to download restricted classified documents (e.g. Card Specifications). Access can be requested by completing the application form for registration.
Confidential documents : Diffusion of the document is strictly restricted to the individually authorised persons. The original recipient is fully responsible for its re-transmission, which may only concern people involved in the project, on a need-to-know basis. These persons must not reproduce or transmit the document again without prior authorisation from the original recipient. It must be stored in a secure place, or encrypted (for electronic documents whose access is not secure). It can only be exchanged in a sealed envelope, or in encrypted form (if electronic version). Therefore, it is stored encrypted on the Calypso File Repository. Access can be requested by completing the application form for registration and completing the subsequent NDA.