GeGKOS   Engineering Samples Available
 
 
 

GeGKOS Applications

Gemalto is the pioneer in Healthcare applications, helping the major Healthcare organizations to set up their smart card infrastructure and smart card issuance systems in Algeria, France, Germany, Belgium, Slovenia, UK, Mexico, Puerto Rico and China.

 Fostered by the German Government, existing cards, based on aging memory card technology, will be replaced by the latest generation smart cards, based on Public Key Infrastructure (PKI) and compliant with the Gematik specifications. Furthermore the whole system will be upgraded to handle the new smart cards.

 Using its unique expertise in security, OS development and its first class manufacturing capability, Gemalto is developing a state-of-the-art HealthCare Card  (eGK) compliant smart card called GeGKOS.

 GeGKOS Onboard applications:

·         Gematik eGK compliant applications

·         Digital Signature law compliant application

·         GemAuthenticate in one sentence

 The GeGKOS complies with the German and international standards: 

·         Gematik eGK specifications

·         ISO 7816

·         EMV 2000

Gemalto? GeGKOS technology enjoys industry-wide support by providing a fast, flexible and cost effective smart card application environment.

 

GeGKOS Benefits

Compliant with the eGK specifications:

·         All the commands to build Point of Interaction (POI) or over the Internet applications are already available in the GeGKOS operating system.

 

The unique one-stop-shop solution:

 To support German insurance companies in focusing on their core activities, Gemalto GeGKOS system offers a one-stop-shop solution to ease the migration process.

 The GeGKOS solution consists of:

 ·         A highly secure public key smart card for strong electronic authentication

·         Advanced personalisation services for a black & white or colour cardholder picture

·         Operation of the whole photo-management process

·         Large roll-outs capacity though worldwide manufacturing plants, and the local smart card personalisation and services center in Filderstadt, Germany

·         eGK  compliant Smart card readers.

 

Interoperability & stability to protect your investment: 

·         The GeGKOS solution allows rapid card rollout thanks to its interoperability with the German and international standards and the through the support of Gemalto German partner program..
 

 

GeGKOS Technical Specifications

General Features

·         Commands for cryptographic operations, authentication and access control, compliant with ISO 7816-4, -8, -9

·         Personalisation command EMVCPS 1.0 compliant

·         Maximum APDU length allows 255 bytes data field plus APDU header

·         Support of the T=1 communication protocol

·         Support of communication baud rates up to 312 K baud (selectable by PPS commands)

·         Algorithms protected against all known attacks

·         High performance for CPU intensive operations such as signature creation, signature verification, on chip key generation

·         Creation of data structure for new applications after card issuance 

Certifications

·         Evaluation according to Common Criteria EAL4 augmented (planned in 2008)

·         Certification according to the German Digital Signature Law  (planned in 2008)

·         Compliant to the European Protection Profile for Secure Signature Creation Devices (planned in 2008) 

Cryptographic services

·         Asymmetric algorithms: RSA, with key lengths from 768 Bit up to 1984 Bit

·         Secure and fast onboard RSA key generation

·         Symmetric algorithms: Triple-DES (ECB, CBC), DES (ECB, CBC), MAC, Retail-MAC

·         Hash algorithms: SHA-256, RIPEMD-160, : SHA-1

·         Padding schemes: ISO, 0-Padding, PKCS#1, DINSIG, EMV-PIN

·         Alternative import of signature key pairs via a trusted channel during card production

·         Separate RSA keys available for Electronic Signatures, Client-Server-Authentication, negotiation of session keys and component authentication

·         Commands to create signatures and to verify signatures and certificates

·         Connectivity to external Public Key certification services

·         Possibility to retain the use of electronic signing until a certification authority issues the certificate for public use 

Secure messaging

·         Compatible with ISO 7816-4

·         For every command and every data object (files, keys) Secure Messaging may be defined independently