What is a Smart Card Operating System (AKİS)?

A smart card operating system is a suite of software, protected by various cryptographic functions, designed to manage the card’s hardware, data storage, processing power, and communication capabilities.

A smart card operating system is a software-based OS designed for the operation of a smart card (or an integrated circuit). Despite their small size, smart cards possess data storage, processing power, and communication capabilities. These cards, which are frequently used for security purposes, can also be utilized for many applications such as identity authentication, payment transactions, or access control.

The smart card operating system is the embedded software that manages the card’s hardware. With this OS, a smart card gains the ability to store and process data, as well as features for cryptographic functions and communication protocol management for card security. However, at this point, the operating system generally needs to be lightweight and efficient due to the limited resources available. For example, smart card operating systems are used in EMV (Europay, Mastercard, and Visa) cards and telecommunication devices like SIM cards. The OS is of high importance for ensuring the card’s functionality and security. Smart cards are widely used in many sectors, including banking, identity verification, transportation, healthcare, and telecommunications.

A smart card operating system performs the following fundamental functions:

1. Security: It provides security features such as data encryption, authentication, and access control. This ensures that the data on the card is protected against unauthorized access.
2. Data Management: It manages operations such as reading, writing, deleting, or updating data on the card. These operations are performed securely, and data integrity is maintained.
3. Application Management: It allows multiple applications to run on the same card. It ensures a secure separation between these applications, allowing each to operate in its own designated area.
4. Communication Protocols: It enables the smart card to communicate with readers and other devices. It supports standard protocols such as ISO/IEC 7816 and ISO/IEC 14443.

Popular Smart Card Operating Systems

1. Java Card: An operating system that supports a subset of the Java programming language and is widely used in smart cards. It allows applications to run independently of the platform.
2. MULTOS: An operating system designed for applications requiring high security. It is particularly used in banking and payment systems.
3. GlobalPlatform: An operating system that offers standards for the management of card applications and possesses broad compatibility.
4. Proprietary OS: Some manufacturers develop and use their own proprietary operating systems. These are customized to meet specific needs.

Use Cases

• Bank and Credit Cards: Used for secure payment transactions and identity authentication.
• Identity Cards: Used in national identity cards, passports, and driver’s licenses to ensure the secure storage of personal information.
• SIM Cards: Used in mobile communications, SIM cards perform authentication and data storage functions on GSM networks.
• Transit Cards: Used in public transportation systems for payment and access control.

Smart card operating systems are critically important for maximizing the functionality and security of the card. Each operating system can be customized and developed according to specific application and security requirements.

AKİS: A Card Technology with a Domestic Operating System

AKİS (Akıllı Kart İşletim Sistemi, or Smart Card Operating System) is a smart card OS developed by TÜBİTAK (The Scientific and Technological Research Council of Türkiye) Bilgem. The AKİS operating system is designed to provide a secure and flexible environment for developing and deploying applications on smart cards. It is based on the Java Card platform and supports a wide range of smart card applications, including payment systems, identification systems, and access control systems.

The AKİS operating system is compliant with the GlobalPlatform specification, which is the industry standard for smart card operating systems. It also includes a range of security features, such as secure key storage and secure messaging, to help protect against unauthorized access and fraud.

The AKİS infrastructure, a powerful tool for developing secure smart card applications, is the platform actively used in Türkiye’s national identity cards, passports, and e-signature infrastructures, and it is utilized in a wide variety of applications both in Türkiye and in other countries. Authorized by the Presidency of the Republic of Türkiye, TÜBİTAK aims to expand the use of AKİS to ensure a domestic and national security infrastructure in government institutions and critical organizations.

Through the Domestic and National Identity Verification System Project, coordinated by the Presidency, the use of cards with the domestic smart card operating system was first introduced on campuses affiliated with the Presidency. Expansion and development efforts aimed at creating the infrastructure for a nationwide, centralized, and unified security system—including sea and air ports as well as military bases—are still ongoing today.

Card technologies that feature an operating system offer higher security than other smart card technologies (such as MIFARE DESfire, HID seos, Legic, etc.). At this juncture, smart cards featuring the AKİS operating system, developed by TÜBİTAK and minted by the Turkish State Mint, come to the forefront. These domestically developed cards have become a national alternative to other card types, both in terms of cost and security features.