This lecture discusses the design of a new authentication and key distribution three party protocol to serve as a foundation for WWW based transactions. Instead of having a radically new design it builds heavily on the KryptoKnight protocol family developed at IBM. However, an important design consideration has been that it can be implemented with existing smart card technology. Specifically the applicability of the Dutch Chipper and ChipKnip cards has been examined. The result is an ABK(t) type protocol that runs with any card that supports either the ISO7816 internal authenticate command or the En726 read stamped or protected read instructions. Secondly strengths and weaknesses concerning implementing the protcol for Java enabled web browsers will be disccussed. Particularly Java's promise of cross platform portability will be investigated. Intended Audience: anyone interested in the design of cryptographics protocols or the application of Java for secure systems.

Bastiaan Bakker, born 13th of January 1972, is currently employed by LifeLine Networks, a provider of EDI messaging services for the health care sector in the Netherlands. For completion of his study in computer engineering at the Delft Technical University, he performed his graduation assignment at NTEX Datacommunications. Here he first investigated the security strenghts and weakeness of Java 1.0 and 1.1. Based on the results he designed and implemented in Java a three party protocol for mutual authentication based on the security features of contemporary smart cards. Together with some friends he founded the hacker magazine 't Klaphek, successor of the (in)famous Hack-Tic magazine. Besides publishing articles about Internet and smart card security in 't Klaphek he has given several lectures about these subjects, for instance at the Hacking In Progress event and at NLUUG.