EDN Access

 

July 3, 1997

SMART-CARD ICs provide
unimpeachable data security

David Marsh, Contributing Technical Editor

Today's contact-type smart-card ICs provide an extremely high level of security, and contactless types offer supreme user conven-ience. Newly introduced combined-contact/contactless types aim to bond both features.

Get ready to lighten your wallet. A new generation of smart cards is set to replace your current roll of phone cards, credit cards, bank cards, and the other pocket plastic you need just to get around in the world. Very soon, one card will handle your home finances, get you on a plane, let you into the office, and log you on to your corporate intranet. The keys to this scenario are mixed-signal semiconductor processes and shrinking device geometries that combine high-security digital hardware with radio-frequency transponder technology.

Where money is involved, security is paramount. French banks adopted smart cards more than 10 years ago because magnetic-stripe cards are relatively open to fraud. Reliability considerations limit data capacity in magnetic-stripe cards to about 140 bits, and it doesn't take a genius to tamper with that information. By comparison, even the simplest smart-card IC is extremely difficult to tamper with. So, now banks in France, Germany, Spain, Portugal, Finland, and South Africa rely on smart cards with IC intelligence from Motorola.

In the last 10 years, SGS-Thomson alone shipped over 1 billion smart-card ICs for applications including phone cards, subscriber cards, health records, social-security cards, and system-identification modules for cellular phones. Mass-transit systems from Finland to Korea rely on contactless smart cards from Philips.

As new applications unfold, semiconductor manufacturers are busy working on ways to make the new contactless smart cards as secure as contact-based cards. This move is difficult because contact-based smart cards are using longer encryption keys together with mutual authentication techniques that take network pressure off the service provider's back system. This design feature offers a look at today's representative smart-card ICs, concentrating on ICs that use "public-key" cryptography. The box, "Developments for the smart-card industry," gives you references for industry standards and developments such as the ISO 7816 series, the PC/SC specification, the EMV specification, and the Java Card Forum.

Smart-card categories and cost

Some IC vendors argue that a smart card isn't smart unless it has an onboard processor. According to the world's largest smart-card maker, Gemplus, "A smart card is a credit-card-sized plastic card with a special type of IC embedded in it. The IC holds information in electronic form and controls who uses this information--and how" (Reference 1). Adopting Gemplus' definition, you can divide smart-card ICs into two main categories: intelligent-memory ICs and µP-based ICs. Intelligent-memory ICs are functionally either counters or data carriers, and µPs can host multiple applications. Counters suit debit cards such as phone cards and electronic tickets; data carriers suit secure storage such as bank cards, subscriber cards, health records, and mobile phones.

Each smart-card-IC category further subdivides into electrically contactable and contactless (RF identification, or RFID) ICs. Smart cards with contacts are today's standard for static and high-security applications--for example, system-identification modules in cellular phones and automatic teller machines in banks. Contactless smart cards suit ticketing in mass-transit systems, where there isn't time for users to insert a card into a reader. The trend in smart-card-IC design is toward cryptographic coprocessors for security and combined-contact/contactless designs for ultimate application flexibility. See Table 1 and Table 2 for examples of all types of smart-card ICs.

You can choose among smart-card- IC categories according to your application needs and cost. For example, a simple intelligent-memory counter IC for a phone card can cost as little as $1. When you make enough calls, its value is exhausted and you throw it away. Global System for Mobile communications (GSM) cellular phones use data-carrier smart-card ICs mounted in standard-format smart cards or in miniature system-identification modules (SIMs). The smart-card IC secures the user's personal identification number (PIN), system access data, and end-user data-like phone-book entries. Mounted in a standard-format smart card, a data-carrier IC such as Xicor's X76F640 costs less than $5 (10,000 qty).

A basic µP-based smart-card IC costs around $6; more powerful multi-application devices cost $10 or more. Hybrid cards with contacts and RF circuitry are very new, and you can expect to pay more for their potential. Smart-card-IC pricing is especially sensitive because purchasers typically buy in very high volumes. To get realistic figures, you'll need to talk directly to competing vendors. You'll find that companies such as Texas Instruments typically deal directly with the big smart-card makers, and Xicor targets low-volume users who need quantities of up to 10,000 pieces.

Simple intelligent memory?

Designed for telecomm debit-card use, Siemens' SLE 5536 is an intelligent-counter/memory IC that illustrates most secure smart-card-IC concepts. Philips' PCF223x and SGS-Thomson's ST133x families are broadly similar and use cryptographic card-authentication techniques. The SLE 5536 IC comprises 221 bits of EEPROM, a 16-bit mask-programmed ROM, a control/security logic block, and an authentication processor. The user EEPROM comprises a 64-bit identification data area and a 40-bit counter chain. The 133-bit feature EEPROM divides into 129 bits for data and authentication keys and 4 bits for counter backup flags. The mask-programmed ROM contains a manufacturer's code. When the IC leaves the fabrication plant, all memory is in issuer mode, protected by a secret "transport" code. When the smart-card manufacturer matches the transport code, the IC's memory is ready for programming.

The SLE 5536 IC's preloaded five-stage counter operates as a five-digit octal counter. The most significant counter stage represents 4096 units/bit, with subsequent stages representing 512, 64, 8, and 1 unit/bit. In use, the debit operation programs bits in the respective counter stages. When there aren't sufficient bits left in a counter stage, an erase-with-carry operation writes 1 bit into the next stage and erases all bits of the lower stage. Dedicated-count stage bits limit the maximum count to 21,064 count units. Each of the four higher counter stages has 1 backup bit that provides a simple "antitearing" mechanism.

Antitearing mechanisms prevent count data corruption if the read-erase operation doesn't complete, which is especially important if cards are used in low-cost open card readers. For example, in the SLE 5536 IC design, backup bits are set with the carry bit in the relevant counter stage and reset simultaneously with the less significant counterstage erase operation. If the card reader finds a set backup bit the next time the user inserts the card, the card reader can correctly complete the unfinished transaction.

Secret and public keys

According to the EMV '96 Integrated Circuit Card Specification for Payment Systems, a symmetric cryptographic algorithm "uses the same secret key for both the originator's and recipient's (data) transformation. Without knowledge of the secret key, it is computationally infeasible to compute either the originator's or the recipient's transformation" (Reference 2). This move requires that the unique secret key embedded in the smart-card IC match a partner key on the service provider's system. The principal advantage of symmetrical data-encryption algorithms, such as the DES (Data Encryption Standard) algorithm, is computational efficiency.

The principal limitations are ultimate security and application flexibility, because service providers must manage and distribute potentially vast numbers of secret keys (each partner in a secret-key system must know the identity of all valid participants). Philips notes that with modern network structures, a 2000-participant system could demand almost 2 million secret keys.

Cryptographic processors accelerate math so that it is possible to use "public keys" together with "asymmetric" data-encryption algorithms, such as the RSA (Rivest, Shamir & Adleman) algorithm. With the public-key approach, each card IC has a unique secret identity, but the key that matches that identity is truly public--you could print it in a newspaper. Managing public keys between network and service providers isn't an issue. The cryptographic processor encrypts and decrypts messages using the private key and the public key, which together form a "digital signature." The private key does not traverse the network, which increases security and takes pressure off the network and the service provider's back system.

Our example SLE 5536 IC uses a dedicated "authentication" (cryptographic) processor to secure its data transactions. The smart-card manufacturer first programs the SLE 5536 IC with card-identification data, initial counter value, and either one or two authentication keys. Two authentication keys will support two applications (in this case, two phone companies). When the smart-card manufacturer programs a "personalisation" bit in counter stage five, the IC switches from issuer mode to user mode. The identification data area is now write-protected, the counter can only decrement, and the authentication keys become secret--that is, truly private to the IC.

The IC's authentication processor and the card-reader terminal engage in a mutual authentication procedure (Figure 1). The terminal first reads the card's identification data and counter value. The terminal then issues a "challenge" data stream--typically a 16-bit random number. The IC's authentication processor combines the terminal's challenge data and the card's identification data, counter value data, and secret key. The terminal reads the result and compares it with a result that the terminal computes locally using a general key, which is securely stored in the terminal. The relationship between the secret key and the general key is such that the terminal can determine that the card is valid without ever knowing the card's secret key. When the transaction completes, the terminal needs only to upload relevant billing data to the service provider's back system.

The SLE 5536 IC can optionally use extended authentication, or "cipher block chaining," to ensure that every subsequent authentication procedure is valid, by updating a memory block. Because the IC's counter value forms part of the authentication data stream, extended authentication independently verifies the counter's decreasing value. Most smart-card ICs also have physical security mechanisms that protect against signal analysis. In the SLE 5536 design, minimum and maximum clock frequencies guard against static probing and signal scanning. Voltage monitors inhibit out-of-specification operation for both supply and signal levels. Even the IC layout has hidden signal lines and contacts that prevent physical or optical probing. A metallisation layer screens the IC's entire surface.

Micros for the e-purse

By partitioning memory, providing multiple passwords, and supporting se-cure communications, one µP-based smart card can replace the roll of magnetic-stripe cards that most of us need for today's cashless transactions. Combined with cryptographic co-processors, µP-based smart-card ICs will form the basis for the true "electronic purse," or e-purse. Very soon, µP power, public-key technology, and low-cost PC-card readers will facilitate secure personal financial transactions over the Internet.

Cryptographic-coprocessor capabilities vary in the number of key bits they can process, with more key bits providing better security. New co-processor designs handle 1024- and 2048-bit keys. The limiting factors to key length are acceptable response time, available RAM to hold intermediate results, and IC die size. Acceptable response times lie under 2 sec, compared with the 40 to 80 sec that early smart-card ICs take to compute a 512-bit key using the RSA algorithm. For example, Motorola's forthcoming MSC0510 IC resolves a 512-bit key in less than 300 msec. ISO-7816 limits smart-card-IC die size to 25 mm2 to avoid the die's cracking when cards flex in everyday use. Trade-offs between silicon area and cryptographic-coprocessor performance limit the coprocessor silicon area to approximately 10% of total die size.

Hitachi, Motorola, Philips, Siemens, and SGS-Thomson predominantly use 8-bit µP cores coupled with dedicated hardware cryptographic coprocessors. Announced in May, the "Smart-xa" family from Philips uses a 16-bit processor core that is upwardly compatible with the 8-bit 80C51. The 16-bit architecture suits the Java programming language, which requires substantial real code to run its virtual code. Java is being strongly promoted as the smart-card application-de-velopment language of choice (again, see box, "Developments for the smart-card industry"). The first Smart-xa family member will be the 83W8616 IC, available later this year.

In the Smart-xa IC family, the µP core provides two virtual machines, separated by a "firewall" (Figure 2). The protected machine manages access privileges to memory space, so that one application can't interfere with another. The idea is to allow the user machine to run multiple applications in a protected environment--analogous to secure operating systems such as Windows NT. Early in 1998, the 83W8516 IC will couple the 16-bit processor core with Philips' third-generation "Fame-x" cryptographic coprocessor.

"Fame-x" stands for Fast Accelerator for Modular Exponentiation-extended--a reference to the mathematical technique that underlies public-key algorithmic computation. The Fame-x coprocessor computes a 2048-bit key in 1.82 sec with a 5-MHz clock frequency, or a 1024-bit key in 805 msec.

In conjunction with smart-card-maker Gemplus, Texas Instruments is developing a 32-bit RISC processor IC, based on the ARM7 core, that will use software for its data transformations. The Texas/Gemplus project is Esprit project 8670 ("Cascade"), and volume IC production will start in early 1998.

Contactless smart cards suit access-control applications, typically for mass-transit systems. Because access-control systems must process large numbers of users very quickly, there isn't time to insert a card in a reader. Instead, an RF transponder in the card-reader terminal reads the codes embedded in your card. The card's IC is self-powering, working at approximately 2.7V dc. A simple antenna in the smart card connects to a voltage-regulation circuit, powering the modulator/demodulator that provides duplex communication between card and reader. The antenna can be printed or etched, or it can be a wire-coil embedded in the card body.

The biggest contactless smart-card access system today is "Mifare," which stands for "Mikron's fare-collection system," developed by Philips-subsidiary Mikron. More than 30 installations worldwide use Mifare. The largest rollout is in Seoul's public-transportation system, where Mifare processes some 2 million transactions daily, with a 99.99% success rate. Cards are rechargeable at any of the 1700 card-reloading stations that have replaced former token-selling booths. According to systems-integrator Intec, some 80% of cards issued are reloaded.

Mikron's MF1 S50 contactless smart-card IC operates at 13.56 MHz (an ISO-14443 standard frequency). Effective baud rate is 106 kbaud, and operating distance is 100 mm with a credit-card-size antenna. The MF1 S50 IC has an 8-kbit EEPROM that can be organised into 16 sectors with two keys per sector, which makes the IC useful for cards that support multiple applications. Data-transmission integrity relies on a 16-bit cyclic redundancy check (CRC), together with parity check, bit counting, and channel monitoring mechanisms. Security mechanisms include mutual three-pass authentication, data encryption, and a unique 32-bit serial number. The control and arithmetic unit permits increment/decrement for recharging the card. Anticollision logic resolves multiple card identities, even when cards are stacked (the worst-case scenario). A typical ticketing transaction takes less than 100 msec.

This year, Philips, Siemens, and SGS-Thomson will release smart-card ICs that combine ISO-7816-compatible contacts with ISO-14443-compatible contactless technology. Motorola is also working on contactless technology. This new class of smart-card ICs holds the most promise for future smart-card application development and will be the key to the universal smart card. First-generation products build on existing µP-based contact ICs, so far without including cryptographic coprocessors. Philips' MF1 P60 IC combines an 80C51 µP core with the company's Mifare RF interface. Siemens' SLE44R42S IC is another 80C51 hybrid that combines Siemens' smart-card design with RF technology licensed from Philips Mikron.

SGS-Thomson is working with smart-card-inventors Innovatron to produce a range of contact/contactless smart-card ICs. The company's first example is the ST16RF42 IC. Built using a 0.9-µm CMOS process, the ST16RF42 IC has an 8-bit ST6 µP core, a 2-kbyte the EEPROM, 16 kbytes of user ROM, 1.5 kbytes of system ROM, and 384 bytes of RAM. To support two applications, you can configure both the user ROM and EEPROM into two sectors. A memory access-control matrix governs access between the sectors.

In contact mode, the ST16RF42 IC supports clock frequencies to 5 MHz and supply voltages from 2.7 to 5.5V dc. In contactless mode, the 13.56-MHz RF interface provides 106-kbaud communications at up to 100 mm from the card reader. The communication protocols are NRZ (nonreturn to zero) with 10% amplitude modulation from card reader to IC and Manchester coding with 30% load modulation from IC to card reader. Security features include memory partitioning and access control, test programs in ROM, and a double-metal layer that covers the IC interconnects to prevent probing.

Want to know more?

See the box, "For more information...," in which you'll find contact details and Web-site addresses for smart-card-IC vendors. To obtain more information from the smart-card makers, check out Gemplus' excellent Web site at www.gemplus.fr, or its mirror US site at www.gemplus.com. Gemplus offers background information on smart-card technology, including articles that discuss data-encryption techniques. Gemplus also includes many links to other smart-card sites, including other vendors, associations, and forums. Schlumberger also has an informative Web site, located at www.slb.com/et. In addition, you can also find more interesting material at Innovatron's Web site at www.cardshow.com.

References

  1. "Welcome to Smart Cards," Gemplus Web site, www.gemplus.fr.

  2. "EMV'96 Integrated Circuit Card Specification for Payment Systems, Version 3.0," Europay International SA, MasterCard International Inc, and Visa International Service Association, www.visa.com.
Developments for the smart-card industry

The most widely accepted smart-card-IC standards are the ISO-7816 series, which are revised continually. For example, a new draft considers using 3V-dc supplies. The mandatory sections include parts 1, 2, and 3. ISO-7816 part 1 defines the physical characteristics of the card, part 2 defines the contact system, and part 3 defines data-transmission protocols. Data transmission is synchronous for intelligent-memory cards and asynchronous for µP cards. ISO-7816 part 4 (1995) defines interindustry commands for data exchanges, with part 6 defining the data elements to use. ISO-7816 part 5 outlines the numbering system and registration procedure for application identifiers. Like the ISO-7816 series, contactless smart-card standards are evolving, with the ISO-14443 series describing physical characteristics, operating distances, and frequency allocation. Typical operating distances from card to reader are 100 mm, and operating frequency is 13.56 MHz.

The PC/SC specification is a joint venture that aims to couple PC and smart-card technologies to provide secure personal financial networking. The PC/SC Workgroup comprises CP8 Transac, Gemplus, Hewlett-Packard, IBM, Microsoft, Schlumberger, Siemens-Nixdorf, Sun, Toshiba, and Verifone. The PC/SC specification partitions system components into three main categories--the interface device (card reader) and device-handler software, the service-provider software to handle the smart card, and the operating-system components to manage the system.

Smart cards and interface devices conform to ISO-7816 specifications. The most likely interface device will be a PS/2-style keyboard, because the reader electronics add little extra cost and don't tie up scarce PC I/O resources. Other possible interface channels include RS-232C devices, internal pc boards, and Universal Serial Bus (USB) devices. To learn more about the PC/SC specification, see "PC/SC Technical Overview" by Hewlett-Packard's Phillippe Sarlin at www.smartcardsys.com. You'll find the entire specification documentation at this Web site.

The EMV'96 specification is a collaboration involving Europay, MasterCard, and Visa to make smart cards interoperable throughout their networks. The EMV'96 specification builds on ISO-7816 specifications and covers areas such as a card "session," how characters are transmitted between the card and reader, the "answer to reset" string, transmission protocols, data elements and files, commands for financial transactions, static and dynamic data authentication, and secure messaging. You can download "cardspec.pdf" in Adobe Acrobat reader format from www.visa.com. See also Visa's "Integrated Circuit Card (ICC) Specification" at the same Web site for more information.

The Java Card Forum is a software-development forum that promotes Java as the embedded smart-card operating-system language. Foundation partners are Sun (which invented Java), Gemplus, and Schlumberger, the two largest smart-card makers. The Java Card Forum's objectives are to promote the Java Card API (application programming interface) as an industry-standard platform for smart cards and allow the exchange of technical information between participants. Sun's subsidiary, JavaSoft, introduced the Java Card API last October. Interested parties include IBM, Informix, Integrity Arts, Motorola, Oracle, Racom, and Visa. You can check out Sun's Java Web site at java.sun.com.
For more information...
When you contact any of the following manufacturers directly, please let them know you read about their products on EDN's website.
Hitachi
Maidenhead, UK
+44 1628 585000
www.hitachi-eu.com		 Motorola Smart-Card Operations
East Kilbride, UK
+44 1355 565447
www.mot-sps.com/csic/SMARTCRD/		 NEC Electronics France
Paris, France
+33 1 30 67 58 00
Philips Semiconductors
(for contact smart cards)
Hamburg, Germany
+49 40 5613 3351
www.semiconductors.
philips.com/identification		 Philips Semiconductors
(for contactless smart cards)
Graz, Austria
+43 31 24 2990
www.semiconductors.
philips.com/identification		 SGS-Thomson Microelectronics
St Genis Pouilly, France
Fax +33 4 50 40 28 60
www.st.com
Siemens Semiconductors
Munich, Germany
+49 89 636 24362
www.siemens.de/ec/ecb		 Texas Instruments
Paris, France
+33 1 30 70 11 65
www.ti.com		 Xicor
Witney, UK
+44 1993 700544
www.xicor.com
Looking ahead

As smart-card use grows, consumers will want more convenience, together with unimpeachable security. More convenience will mean using one card for all transactions, knowing what the current card value is at a glance, and being able to recharge the card when it's getting low on credit. Unimpeachable security is more difficult to define, but consumer confidence is the real issue. Familiar concepts such as fingerprints are far more accessible to the high street than asymmetric algorithms and 2048-bit keys.

In the immediate future, the "electronic purse," or e-purse, will use public-key-security techniques coupled with memory management that isolates cohabitant applications. You'll be able to download new applications for additional service providers at public terminals--even at home over the Internet. All smart cards will be rechargeable for credit, easing implementation costs, administration, and environmental concerns. To work in conventional terminals and in ticketing applications, the electronic purse will combine contact and contactless technology with equal security in either mode. Miniature LCDs will display the card's current value and warn users before credit runs out.

Semiconductor manufacturers are looking at how to implement biometric techniques to secure smart-card data. Biometric techniques include fingerprint and voice-print identification. Estimates suggest that biometric techniques will be economically feasible within the next five years. Affordable home banking via your PC will arrive a lot sooner; expect product announcements within the next 12 to 18 months.

To combine multiple new features within the 25 square mm of silicon that card-flexure considerations permit, manufacturers will scale down from today's 0.9- to 0.6-µm fabrication to 0.35- and 0.25-µm geometries. One challenge with shrinking fabrication geometries is retaining the level of ESD protection that today's smart-card ICs enjoy--typically 4 kV. Tomorrow's smart card will be far more able than current-generation products but must also match today's proven product ruggedness.

  You can reach Contributing Technical Editor David Marsh via the Internet at 101453.2302@compuserve.com.

| EDN Access | Feedback | Table of Contents |
Copyright © 1997 EDN Magazine, EDN Access. EDN is a registered trademark of Reed Properties Inc, used under license. EDN is published by Cahners Publishing Company, a unit of Reed Elsevier Inc.

Table 1--Representative intelligent-memory smart-card ICs

Manufacturer Part EEPROM Power (V dc) Comments Package
Contact-type ICs          
Philips Semiconductors PCB2032/2042 256 bytes 4.5 to 5.5 Bytewise addressing, 32 bytes irreversibly write protected Wafer, module
PCF2236 88 bits 4.5 to 5.5 33, 352 count units, antitearing protection, authentication processor Wafer, module
SGS-Thomson Microelectronics ST1305 180 bits 4.5 to 5.5 Issuer and user modes, transport code Module, die
ST1331-36 family 272 bits 4.5 to 5.5 Authentication signature generation, antitearing flags Module, die
Siemens Semiconductors SLE 44xx family 416 bits to 1 kbyte 4.5 to 5.5 Security code, transport code, irreversible chip coding Module, die
SLE 5536 221 bits 4.5 to 5.5 Authentication, antitearing flags, security logic, >20,000 count units Module, die
Xicor X24026 256 bytes 2.7 to 5.5 Active current <1 mA, standby <50 µA, 100-year data retention Module, die, card
X76F041 512 bytes 1.8 to 3.6 or 4.5 to 5.5 64-bit password, 4´128-byte arrays Module, die, eight-pin DIP/SOIC
X76F640 8 kbytes 2.7 to 5.5 2x64-bit passwords, antitamper password retry counter Die, module, eight-pin SOIC, card
Contactless-type ICs     Operating
range (mm)		    
Philips Mikron HT2 ICS20 256 bits 1000 Multimode operation, password, encryption Module, die
MF1 L10 384 bits 100 Encryption, authentication, value counter Module, die
MF1 S50 8 kbits 100 Anticollision, authentication, encryption, 16-sector memory Module, die, card
Siemens Semiconductors SLE 44R35 1 kbyte 80 16-sector memory supports multiple applications Module, die
Table 2--Representative µP smart-card ICs
Manufacturer Part CPU type Cryptographic coprocessor On-chip memory Power (V dc) Maximum supply current Package Comments Development support
EEPROM (bytes) User ROM (bytes) RAM (bytes) Operating Standby
Contact-type ICs
Hitachi H8/3102/3103 8-bit (H8) NA 8k/16k 16k/20k 512 3 or 5 ±10% 10 mA 100 µA Wafer, die, module Low standby power for GSM phone SIMs Emulator, C compiler
H8/3111 8-bit (H8) 576 bits 8k 14k/20k 800 3 or 5 ±10% 10 mA 100 µA Wafer, die, module Security level suits banking applications Emulator, C compiler
Motorola MC68HC05SC21-
SC48 family		 8-bit (68HC05) NA 1k to 8k 3k to 16k 128 to 240 3 or 5 ±10% 5 to 10 mA 1 to 50 µA Module, die, SMDs IC family suits pay TV, GSM phones, banking Emulator, C compiler
MSC0501 8-bit (68HC05) 1024 bits 4k 20k 896 3 or 5 ±10% NS NS Module, die, 44-QFP Computes a 512-bit key in <300 msec Emulator, C compiler (due Q4 1997)
NEC µPD789810 8-bit (78K/OS) NA 256 6k 128 1.8 to 5.5 NS NS Wafer, die Random number generator, security hardware Emulator, C compiler
Philips Semiconductors 83C855 8-bit (80C51) 1600 bits 2k 20k 512 4.5 to 5.5 25 mA 5 mA Wafer, die 512-bit RSA decryption in 1.8 sec at 5 MHz Windows-based emulator/development system from Ashling Microsystems (due Q1 1998)
83W858 8-bit (80C51) 2048 bits 8k 20k 672 2.7 to 5.5 25 mA 200 µA Wafer, module die Fast-page-mode EEPROM programming  
83W8516 8/16-bit (80C51) 2048 bits 16k 20k 800 2.7 to 5.5 NS NS Wafer, module Two virtual machines, fire-wall protected 16-bit core  
SGS-Thomson Microelectronics ST16SF42-48 family 8-bit (ST6) NA 2k to 8k 16k 384 2.7 to 5.5 7 mA 20 µA Module, die Hardware memory protection Emulator, assembler/linker, C compiler
ST16CF54B 8-bit (ST6) 1024 bits 4k 16k 512 4.5 to 5.5 NS NS Wafer, die B-level upgrade to 512-bit ST16CF54A Emulator, assembler/ linker
ST19CF68 8-bit (ST9) 1024 bits 8k 24k 960 3 or 5 ±10% NS NS Module, die Enhanced CPU Emulator, assembler/ linker, C compiler
Siemens Semiconductors SLE 44CxxS family 8-bit (80C51) NA 1k to 16k 7k to 15k 256 2.7 to 5.5 10 mA 100 µA Module, die, SMD Hardware and software security mechanisms Emulator, card emulator, simulator
SLE 44CR42S/80S 8-bit (80C51) 540 bits 4k/8k 14k 606 2.7 to 5.5 10 mA 100 µA Module, die, SMD CMS chip-management system Emulator, card emulator, simulator
Texas Instruments TMS370C08E06 8-bit (TMS370) NA 8k 16k 384 3 or 5 ±10% NS NS Die Compatible with GSM 11-11/ 11-12 for SIMs Simulator, emulator, C compiler
Contact/contactless-type ICs
Philips Mikron MF1 P60 8-bit (80C51) NA 8k 17k 256 2.7 to 5.5 2 mA
(typ at 4 MHz)		 250 µA typ (at 1 MHz) Module, die Mifare and ISO-7816 compatible (On request)
SGS-Thomson Microelectronics ST16RF42 8-bit (ST6) NA 2k 16k 384 2.7 to 5.5 NS NS Module Hybrid version of ST16SF42 Emulator, assembler/ linker
Siemens Semiconductors SLE 44R42S 8-bit (80C51) NA 8k 14.75k 256 2.7 to 5.5 10 mA max 150 µA max Module, die 2x4-kbyte EEPROM blocks, Mifare interface Emulator, card, emulator simulator
Note: NA=not applicable; NS=not specified.