The MULTOS specification is managed and directed by the MULTOS Consortium, whose members include payment organisations and leading technology companies. Keycorp, a founding member of this group, has encouraged and supported the development of the MULTOS step/one specification and our range of products have been issued globally. This provides the issuer with a complete range of products for EMV migration with seamless upgrade paths. MULTOS step/one for SDA (Static Data Authentication) or MULTOS for DDA (Dynamic Data Authentication).

Objectives of MULTOS step/one development

When the specification was being developed, there were a number of objectives that needed to be achieved:

• Provide an open platform approach to low-cost smartcard, maintaining all the benefits.
  
  
• Use a low-cost silicon platform (ie no need for RSA cryptographic capability, and much lower EEPROM).
  
  
• Compatibility with MULTOS at the card and perso system level.
  
  
• Multiple application
  
  
• Flexibility
  
  
• True interoperability between multi-sourced suppliers
  
  
• Off-the-shelf applications
  
  
• Re-use applications already developed for the MULTOS platform especially for EMV migration
  
  
• Easily develop new applications using C, Java or MULTOS assembly language
  
  
• Provide in-house key management for the card base

	MULTOS	MULTOS Step/one
Minimum memory size	8k	4k
RSA co-processor required
Platform management cryptography	Asymmetric (RSA)	Symmetric (Triple DES)
Platform Key management   Support for 3rd party Application Providers	MULTOS Key Management Authority	3rd party Card / Vendor Card Issuer
Security Evaluation Requirement	ITSEC E6 High or CC EAL6	None (CAST for Mastercard)
Card /Application personalization specifications	Freed Licensed	Licensed to MAOSCO Systems Members

Keycorp MULTOS step/one

So with these objectives in mind, Keycorp released a range of MULTOS step/one products utilising the Infineon 66Plus family of secure controllers. This allowed us to provide leading security (a hallmark of MULTOS) but at the same time offer great value for money and reducing the total cost of ownership to card issuers.

Our MULTOS step/one products are available in 4K and 8K EEPROM.

Benefits of the Keycorp MULTOS step/one products

• Compatible with MULTOS applications – choose from a range of off-the-shelf applications*
  
  
• Standard applications already pre-loaded in ROM. Keycorp offers standard EMV applications and other value-added applications pre-loaded to provide the lowest cost solution and fastest time to market.
  
  Includes M/Chip4, M/Chip2, MODS, VSDC, Welcome Real-Time XLS
  
  
• Personalisation is simplified with MULTOS compatibility. MULTOS step/one has also been configured to ensure personalisation time is extremely low (this translates to lower costs in the card manufacturer or bureau).
  

	MULTOS	MULTOS Step/one
Chip Transport Keys	Controlled by MULTOS  Key Management Authority	Flexible Diversified or non-diversified
Platform Management Keys		Flexible Card Vendor/Card Issuer specified Diversified or non-diversified
Card Blocking		Applications authorised to Block Card
Card Unblocking		Card Issuer can unblock card
Lock card content before issuing card		“FREEZE” command  locks card and removes platform management keys

Card Key Management

Keycorp has created a tool for the issuer to easily manage the card keys for their MULTOS step/one products, called Control Centre. This allows for full application loading and deleting certificates and enablement data information to be generated and managed prior to (and off-site) from the card manufacturer.

Click here for the Keycorp MULTOS step/one Brochure.