Atmel AVR Design Contest 2006

DESIGN IDEAS
- CMOS IC Makes Low-Cost Digital Potentiometer

- Power Management In The ST62

- Automatic Power-Off Circuit Saves Battery

- Simple PC Smart Card Reader Enhancement

- Digital Position Encoder Does Away With ADC

- Single-Supply RS-232 Transmission Without Level-Translator ICs

- µC Controls Charge Pump As Background Task

- Clock Multiplier Circumvents PLL

- Drive Smart Cards With A Low-Cost MCU's UART

- Wireless “Battery” Energizes Low-Power Devices

- Harvest Energy Using A Piezoelectric Buzzer

- Drive A Single-Coil Latching Relay Without An H-Bridge Circuit

DESIGN CONTESTS
- The Mobile Phonebook

- The CheckPoint Charlie

- The Lord Of The Keys

- MoneyPenny

- Enigma

- Bye Bye Standby

- Flower Power

ARTICLES
- Mobile Phone Book: M16C/62P Based Data Backup System

- Internet Password Manager

- RFID Payment Terminal

- Tecnología NFC Para Aplicaciones De Proximidad Seguras

- The Green Standby

- Flower Power

CONTACT
- E-mail

ABSTRACT

Security breaches from computer viruses, spyware, hacker attacks and equipment theft are costing businesses millions of dollars a year, according to different surveys around the world.

In today’s complex and ever changing world, the need for security is paramount. This is especially true when securing Internet access to restricted web pages, to ensure that only previously qualified people can gain entry. So for this reason, more and more web pages rely on login schemes that prompt the user to enter a registered username and a valid password.

Unfortunately, the human brain is not particularly good at remembering long strings of mixed numbers and letters, so most people either try to use the same login information for all their web access, or use weak passwords that can be easily recovered with just a little social engineering. The more usernames and passwords users have to remember, the more likely the business is going to have problems with unauthorized access – a fact highlighted in many reports covering security issues.

The following application is designed to avoid the latter situation. It is able to store many usernames and passwords inside a Java Card™ smart card, which is considered one of the most secure methods to store confidential information. Whenever a dialog box appears in an application or web browser requesting a username and password, these security features can be found on the externally attached device, which will then automatically complete the username and password fields for the user, as if he or she were typing them in.

The project is built around the Atmel AVR ATmega168 microcontroller and has an LCD display and numeric keypad with alphanumeric entry capability to show and enter information respectively. It plugs in to the computer through a USB interface managed completely by software. In addition, no driver installation is necessary on the host computer, and it works independently from any web browser and operating system, so that it can be used with Windows, MacOS and Linux computers using any web browser, such as Internet Explorer, Netscape, FireFox, etc.

<< Previous | Next >>

Abstract • Introduction • What is a smart card? • Communication model • APDU protocol • TPDU protocol • Answer To Reset • What's all this Java Card stuff, anyhow? • Java Card Applet • User's guide • Hardware design • Block diagram • Schematic • USB interface • Using AVR-USB for free • Theory of operation • Human Interface Device (HID) • Firmware design • Alphanumeric keypad • Flowchart • References

© 2006 Carlos Cossio. All Rights Reserved.