Ambimat GroupAmbimatAmbiSecureeSIM InitiativeEngineering BlogAhmedabad · India · Est. 1981
ASAmbiSecureHardware-rooted security
Contact
Service · JavaCard

JavaCard Applet Development

We provide the full cycle of custom JavaCard / JCOP applet development — from requirements analysis to compiled CAP files and source code, with QA, functional specification documentation, and post-implementation support.

JavaCard 3.0GlobalPlatform 2.3JCOP 3.1PIVFIDO2 CTAPWebAuthn
Request engagement Applet matrix
AmbiSecure JavaCard development service — applet engineering from spec to CAP
Why work with us

We have already shipped the applets you are about to spec.

Full development cycle

Requirements analysis, functional specifications alignment, solution design, applet development with testing GUI, QA testing, functional specification documentation, post-implementation support.

Standards we know

JavaCard 3.0, GlobalPlatform 2.3, JCOP 3.1; NIST SP 800-73-3 PIV (parts 1-4); GSM standards; FIDO U2F, FIDO2 CTAP, W3C WebAuthn; ISO/IEC 7816 and industry-specific standards.

Toolchain coverage

We work in Eclipse with JCOP Tools, the JavaCardOS Development Kit, and the Oracle Java Card Development Kit — whichever your chip vendor prefers.

Cryptography portfolio

RSA, ECC, AES, DES/3DES, SHA-2, HMAC, ECDSA. Secure Channels / Messaging. Multi-factor implementations. Applet countermeasures against fault and side-channel attacks.

Use case range

Loyalty, ID and club cards, PIV, FIDO Web Authentication applets, payment, OpenPGP, eID. Bespoke applets for closed-loop ticketing and secure messaging.

Delivery quality

Compiled CAP file plus source. Unit tests. Integration test GUI. Functional spec doc. Issue triage during integration. The applet that ships, not the demo that compiles.

Engagement model

How a JavaCard project actually runs.

From your spec to a CAP file your factory can load, with the documentation auditors expect.

01

Discover

Spec, target chip, certification target, host integration.

02

Design

Functional specification, AID layout, security model, APDU command set.

03

Develop

Applet code, testing GUI, unit tests, IDE-of-your-choice.

04

Validate

QA testing, functional specification documentation, security review.

05

Support

Integration support, post-implementation patches, certification dossiers.

What we deliver

The line items in a JavaCard engagement.

Source codeJava source for the applet, tests, and supporting classes; CAP file build scripts
CAP fileSigned CAP file ready for SCP03 load by your personalisation line or by our Multi-Card Applet Loading Tool
Functional specificationAPDU command set, AID layout, key derivation model, lifecycle states
Test suiteUnit tests inside the JCVM simulator; integration tests against a real chip
Test GUIOperator-friendly tool to walk the applet through its functional flows
DocumentationArchitectural overview, security model, integration notes, certification-friendly evidence
Connected reading

Where this fits in the bigger picture.

Product: JavaCard Applet Platform

The applets we have already shipped, ready to start from.

View product →

Service: Tool-Chain Development

The personalisation tooling that surrounds applet delivery.

View service →

Solution: JavaCard Deployment

How an applet ships from spec to user.

View solution →

Have a JavaCard applet to write?

Tell us your chip, your spec, and your certification target. We will scope the engagement and tell you what is reasonable.

Talk to engineering