Last updated: 08 February 2022

Want to know more about smart cards?

Then you're in the right place.

Smart card

 

In this dossier, you'll discover critical facts about smart cards:

  • What is a smart card?
  • Smart card markets, size, and value
  • A short history of smart cards
  • What are the features and benefits of smart cards?
  • Smart card use cases: payment, I.D.s, mobile telephony, health...
  • The crucial role of standards
  • What is a multiple application card?
  • What is the cost of a smart card?

Let's dive right in.

 

What is a smart card?

Let's start with a definition: a smart card is a small portable computer, usually the size of a credit card, without a display and a keyboard.

It integrates a microprocessor, some memory, and some apps. 

The circular metal contact is vital to connect to the chip below and activate the card electrically.

It's used with a contact or contactless card reader (POS for payments, at the ATM, or even on your mobile phone).

Why? 

The card reader (or mobile phone) brings the 3V or 1.8 voltage to activate the chip.

 

30 to 50B smart cards in circulation today

In the form of credit cards and SIM cards, smart cards are the most common form of I.T. processing power on the planet. 

It is estimated that between 30 to 50B smart cards are in circulation today.

The smart card has a microprocessor or memory chip with the processing power to serve many different applications when coupled with a smart card reader.

In the last three decades, these tools, more than any other technology, have quietly taken us all into a virtual world.

  • Smart credit cards mediate daily transactions worth trillions of dollars.
  • SIM cards facilitate billions of conversations that connect our social and economic worlds.
  • As an access-control device, smart cards (company badges, university I.D.s) make personal and business data available only to the appropriate users.
  • As a National eID card, smart health card, residence permit, or electronic passport, smart card technology offers more robust identification and authentication tools for both authorities' and citizens' benefits.
  • This technology contributes to road safety as a driver's license or a tachograph card.
 

Close to 10B smart cards shipped in 2021

According to the 04 February 2022 Eurosmart's forecasts, smart card markets will probably be slightly below 10 billion units in 2021. 

The overall market was stable in 2021 and reflected a mature market.

Signals of the 2022 recovery are linked to the pandemic.

2021 market share 

  1. Telecom (SIM cards) accounts for 50% of the total market,
  2. Payment and banking cards for 34%,
  3. Government (eIDs and e-passports) and healthcare for 5%,
  4. Device manufacturers for 5%: mobile phones, tablets, navigation devices, and other connected devices, including an embedded secure element without SIM application,
  5. Others for 11%: cards issued by operators, for transport, toll or car park services; cards for pay-TV; physical and logical access cards, and industrial IoT.

Significant trends in 2021 (updated)

  • The device manufacturer segment (OEM) was somewhat dynamic, with a +4% growth in 2021. 
  • The government and the healthcare segments also visibly grew in 2021 with a +13% increase. The demand for new I.D.s and passports was high. The 2021 numbers are still lower than the 2019 ones.
  • According to Eurosmart, financial services (+1,6%) were impacted by market drops in smart credit cards, retail, and co-branded cards but boosted by contactless. 72% of cards shipped in 2021 were contactless.
  • Industrial IoT (SIMs) experienced an +18% growth.
  • The contactless interface has become the leading choice for financial services and governments. Covid-19 boosted contactless payments, positively impacting the contactless market.
  • Lower demand for smartphones but increased need for connectivity stabilized the market in 2021. Eurosmart recorded a 4% decrease.

A $21B market in 2023

According to Markets and Markets' recent research report, the smart card market value is expected to reach $21.57 billion by 2023.

Currently, smart cards and card readers account for more than 75% of the market.

The related market for software comprises management system software and databases. In addition, consulting, support, and maintenance services are also crucial.

The Asia Pacific is forecast to take the largest share of the market, as reported by the same study.

  • Gemalto (now part of THALES), Giesecke and Devrient, and IDEMIA (formerly Oberthur Technologies and Morpho) are prominent players in these markets.
  • Major smart card microprocessor vendors are Infineon Technologies, NXP Semiconductors, Samsung, and STMicroelectronics.

The Mordor Intelligence market study, excluding readers and services, sizes the smart card market at USD 8.14B in 2019 and 11.50B by 2025.

What is the history of smart cards?

Roland Moreno patented the memory card in 1974.

By 1977, three commercial manufacturers, Bull CP8, SGS Thomson, and Schlumberger, started developing smart card products. 

In March 1979, Michel Hugon from Bull CP8 was the first to design and develop a microprocessor-based card combining a processor and local memory. He invented the computerized smart card.

  • 1979: early developments for the banking sector
  • 1995: first SIM cards
  • 1999: first national eID card (Finland ID)
  • 1999: first smart cards for transport
  • 2001: The Department of Defense first issued Military CAC credentials for physical access control and secured logical authentication
  • 2003: Micro-SIM launched
  • 2003: Chip and PIN cards began to be issued in the U.K.
  • 2005: first ICAO-compliant electronic passport (Norway passport)
  • 2010: Smart credit cards arrived in the U.S.
  • 2012: Nano-SIM introduced
  • 2018: first biometric contactless payment card, eSIM, launched (thickness is <1 mm or 0.039 in)
  • 2019 First 5G SIM available
  • 2021 First voice payment card launched

Smart card technology

 

About smart cards and Green I.T. technologies

Smart card technology is an ideal Green I.T. tool. 

It is a very familiar portable object with a long life cycle (3 to 10 years) and a light carbon footprint.

A realistic estimation of a credit card carbon footprint is about 150 grams of CO2eq.(equivalent to less than 1 mile done by car per card manufactured).

There's more.

It has a low electric consumption (only seconds and when in use) and can be available en masse and at a very reasonable cost per unit.

At Thales, we encourage using organic or non-toxic alternative materials such as polylactic acid and recycled PVC for eco-friendly banking cards and polycarbonate for I.D. or health cards.

We also promote innovative climate-conscious programs such as the remarkable one from Doconomy and the fight against marine plastic pollution.

Visit our page on Parley Ocean Plastic and American Express.

 

Smart card dimensions and major standards

The ISO/IEC 7810 ID-1 standard defines, in particular, the usual size of an I.D. card.

The ID-1 size is 85.60 × 53.98 mm (3 3⁄8 in. × 2 1⁄8 in.) and rounded corners with a 2.88–3.48  mm radius.

This format is used for PET, PVC, eco-friendly PLA, polycarbonate, or even full metal cards.

  • It is used for I.D.s, driver's licenses, and health cards in many countries.
  • Credit card dimensions (with or without a chip) are the same, with a thickness of 0,03 inches or 0,76 mm.
  • SIM cards have different formats: Standard SIM (15 x 25mm), Micro SIM (12 x 15mm), Nano-SIM (8.8 x 12.3mm), embedded SIM or eSIM (5x6 mm and 1 mm thick).

ISO/IEC 7816 is an international standard related to electronic identification cards with contacts, especially smart cards, managed jointly by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC).

ISO/IEC 14443 defines the standard for contactless cards.

 

What are the features of a smart card?

Smart cards provide ways to securely identify and authenticate the holder and third parties who want access to the card. For example, a cardholder can use a PIN code or biometric data for authentication.

They also provide a way to securely store data on the card and protect communications with encryption.

To know more about encryption, visit our dossier on the history of cryptography.

Smart cards provide a portable, easy-to-use form factor.

 

What are the benefits of a smart card?

Smart cards contain unique features that benefit both consumers and issuing organizations.

Smart cards provide:

  • Security (the physical layout of the chip is designed to be tamper-resistant, and a large portion of the operating-system code is dedicated to self-protection.)
  • Confidentiality (the card and its data are with you, and YOU decide what to do with them.)
  • Portability (you carry it in your wallet or phone.)
  • Convenience (a consequence of all the above)

Smart cards offer more security and confidentiality than other financial information or transaction storage vehicles, making them a perfect solution for e-commerce transactions.

As they include a tamper-resistant microprocessor, they have substantial processing power to protect the information, and encrypt and execute instructions from specific programs. Here's where smart cards have a massive advantage over magstripe cards.

Can you imagine a portable vault? 

You have it.

A smart card is a safe place to store valuable information such as private keys, account numbers, passwords, or personal information.

It's also a secure place to perform processes that one doesn't want to be exposed to the world, for example, performing a public key or private key encryption. 

The benefit of the smart card is that you can verify the PIN or fingerprint securely offline.

Smart card technology

Different types of smart cards, from left to right:

  • online authentication access (with the U.S. DoD smart badge - military CAC),
  • secure transaction with an EMV card (with a biometric sensor), 
  • strong identification with your national I.D. card.

What are the types of smart cards?

To begin with, magnetic stripe cards are definitively not smart cards.

Memory vs microprocessor

Smart cards come in two varieties: memory and microprocessor.

Memory cards store data and can be viewed as a small USB memory stick with optional security. On the other hand, a microprocessor card can add, delete, and manipulate information in its memory on the card.

Like a miniature computer, a microprocessor card has an input/output port operating system and a hard disk with built-in security features such as encryption capabilities.

Contact vs contactless

Smart cards have two different types of interfaces: contact and contactless. 

Contact smart cards are inserted into a smart card reader, making physical contact with the reader.

However, contactless smart cards have an antenna embedded inside the card that enables communication with the reader without physical contact. You tap and pay.

Contactless is easy and convenient. It's a significant trend everywhere now due to the recent pandemic.

 

The COVID-19 outbreak has accelerated contactless payments thanks to their hygienic benefits, as Forbes revealed (11 May 2020). 

The standard for contactless smart card communications is ISO/IEC 14443 and allows for communications up to 10 cm (3.9 in).

A combi card combines the two features with a very high level of security.

Do you want to know why contactless is safe?

 

How are smart cards used?

The use of smart cards has expanded each year to include applications in various markets and disciplines.

The information age has introduced various security and privacy issues for advanced smart card security applications in recent years.

Here are some smart card examples:

Information Technology

Businesses, the government, and healthcare organizations continue to move towards storing and releasing information via networks, Intranets, extranets, and the Internet. 

These organizations are turning to smart cards to make this information readily available to those who need it while at the same time protecting the privacy of individuals and keeping their informational assets safe from hacking and other unwanted intrusions.

In this I.T. area, smart cards enable:

  • Secure login and authentication of users to P.C.s and networks,
  • Secure B2B and B2C e-commerce,
  • Storage of digital certificates, credentials, and passwords,
  • Encryption of sensitive data.

Mobile Telecommunications

Using the Global System for Mobile communications (GSM) standard for mobile phones, subscribers use smartcard technology as SIM cards.

The smart card is inserted (removable SIM) or integrated (eSIMM2M SIM) into the mobile handset or the M2M module.

Read more on What is an eSIM card?

Developers use the STK to define how the SIM card interacts with other applications.

Read more on  What is a SIM toolkit?

 
The card stores personal subscriber information and preferences that can be PIN code protected and transported from phone to phone. The SIM cards enable:
  • Secure subscriber authentication,
  • International roaming across networks,
  • Secure mobile value-added services.
SIM cards have been regularly evolving to deliver each new generation promise, from 2G to 5G (5G SIM).
 
Wireless providers benefit from reduced fraud thanks to the security offered by smart cards.
 
With the advent of mobile services such as mobile commerce, Internet browsing, and information services, wireless providers rely on smart cards to act as the security mechanism to protect those services and ensure trust.
 
With the 5G rollout, security becomes even more critical. 

Commercial Applications

Smart cards also benefit many business applications in B2B and B2C environments. In addition, the smart card's portability and ability to be updated make it a technology well-suited for connecting the virtual and physical worlds and multi-partner card programs.

For online banking payments, new display cards are available. They come with an LCD and optionally with a keypad.

The cards store information, money, and applications that can be used for:

  • Banking/payment
  • Loyalty and promotions
  • Access control
  • Identification
  • Ticketing
  • Parking and toll collection

The EMV payment standard had a powerful impact on smart payments worldwide. 

 

 Is a bank card a smart card? Yes, in most countries, credit and debit cards integrate a microprocessor with the EMV standard.

 
No matter which payment method is used, EMV affords the added security of credit cards remaining in the cardholder's possession throughout the entire transaction.
 
With EMV, the computer chip inside the credit card is an active part of the transaction, unlike the magstripe, which is passive.

As of late 2015, all major U.S. payment brands moved from magnetic stripe cards to the global standard for payments, chip-based EMV cards.

 
In India, the Reserve Bank of India set the EMV migration deadline for bank cards for 31 December 2018.
 
Over 11 billion EMV payment cards are in circulation worldwide as of early 2022, according to EMV Co. 
 
Learn more on EMV in 3 minutes with our EMV chip web dossier.
 
There's more.
 

Multiple applications can be stored on the card, enabling partnering on card programs and providing added convenience to the cardholder. (Payment, loyalty, transport, eID, electronic signature...)

Biometrics can be added to the payment cards. Read our December 2020 dossier: the case of the biometric banking card.

In Spain, Portugal, and Latin America, over 9 million university students use a Student Smart Card, developed by Banco Santander in 279 universities. 

The University Card is an I.D., an access card, a payment card, and a wallet.

Digital money issued by Central Banks soon could leverage payments offline  (smartphones and other offline devices such as banking cards), as evidenced by our recent studies. These new digital currencies could be accessible to the general public.

This is not the case for private crypto-currencies.

Smart card for health

The Algerian health program uses smart health cards for patients (here in a reader) and smart USB tokens (with a chip) for health professionals. Discover the benefits of health cards in universal health care systems.
 

Electronic I.D.s 

An electronic I.D. (e-ID) card fulfils various roles: it acts as a traditional means of identification, as a travel document, and finally, as a passkey to citizens' data.

Many international regulations and standards have been established on e-ID, most of which are applied by States.

The public has become accustomed to computerized smart cards through their use in the banking system, and as a result, their reliability is no longer questioned.

National ID cards are now also being used to access an array of services that were previously difficult to synchronize.

The e-ID card (aka computerized National identity cards) can be used for identification, authentication, and electronic signature. Thus, this system enables several previously complex information paths to be simplified.

It can be used as:

  • A representation of sovereign authority certifying that the holder is in a legitimate legal position to their national jurisdiction.
  • A means for citizens to access services and exercise their rights and duties to the public authorities.
  • A genuine seal of authenticity that the citizen can use to authenticate their actions regardless of the exchange formats and media used, since the data used to ensure security and trust also guarantee the legal validity of any transactions certified in this way.

Health and health insurance cards

Health cardsincluding a microprocessor, also act as a significant component of an I.T. system. 

They identify the holder and their affiliation to an organization and verify their rights. 
 
These cards are widely used. Every French and German citizen has a smart card for health insurance.
 
Unlike paper documents, which can easily be forged, these tamper-proof devices are challenging to reproduce or unlawfully manipulate.
 

Electronic and biometric passports

Migration to electronic passports has been in progress since 2005. 

 
Over 1,2 billion e-passports are now in circulation, and more than 150 states have started issuing this new type of travel document in 2021.

The electronic passport integrates smart card technology with a microprocessor that stores a digital version of the I.D. photo and all the I.D. data on the paper passport's first page.

Electronic passport

Is my passport an electronic one?

Yes, the symbol printed at the bottom of the front page indicates that the U.S. passport contains a microprocessor. They were first issued in 2006. 

The ICAO (International Civil Agency Organization) 9303 standards have been vital for the international deployment of biometric identification and electronic data storage in so-called machine readable travel documents (MRTDs).

 

Why are other countries ahead of the U.S. in applying smart card technology?

Card issuers in different countries build their business case to justify smart cards' issuance for various reasons. 

In the U.S., the fraud liability shift (EMV liability shift) ran into effect in late 2015 for POS devices and will apply in April 2021 for Automatic Fuel Dispensers. 

In June 2021, over 77% of all credit card payments (card present) were done with an EMV card chip. 

This figure is to be compared with 95%+ in Canada, Latin America, Europe, Africa, and the Middle East.

New markets will further help make smart cards widespread in North America. 

 

Why are interoperability and standards crucial to the widespread adoption of smart cards?

Even though hundreds of smart card pilots exist worldwide, users may not take a card from one country or scheme and use it in another.

An industry-wide trend toward interoperability and open platforms is emerging, enabling developing cards and applications that will work together in open environments.

To do this, the industry must examine the business and technical issues surrounding the need for standardized interfaces between cards, terminals, and slots, which is the key to securing dramatic growth for the industry.

The International Organization for Standardization (ISO) has developed standards for smart cards. 

These standards were developed for use by multiple industries.

Individual industries are now developing proprietary versions of these ISO standards to support specific smart card applications.

Members of the Forum and others design many standards to support and promote smart card standards.

 

What is a multiple application card?

A multiple application card is a smart card that can support different applications on the card itself, reducing the number of cards in the wallet. 

For example, the Blue from American Express chip currently offers two applications: extra security when shopping online using a P.C. smart card reader and an online wallet and a ticketing application that verifies a Cardmember's ticket order.

Blue uses a multiple application operating system, and American Express plans to add other applications to the card's smart chip.

We can find other examples with the Estonian ID card (Identity, transport, voting...), the Malaysian ID card (Identity, micro-payment, transportation, driving license, health care, welfare...), the Portuguese ID card (identity, welfare, tax, healthcare, voting), the Belgian and Finnish ID (I.D. and health)...

 

Added value with multiple applications

Meanwhile, Visa's multiple application card strategies provide applications that add value to Visa's core credit and debit payment products. 

A key component of Visa's multi-application offering is the flexible Open Platform technology.

In addition to providing added application security through 'firewalls' on the chip, the Open Platform allows downloading new applications without reissuing the card.

Another multi-application program was conducted at Florida State University, where 40,000 smart cards were deployed, which featured students' identification, dormitory security, banking, and a wide range of stored value functions for food, payphone, photocopying, transportation, and vending services.

 

What is the cost of an average smart card?

Trying to respond to this question is like asking the cost of a car without defining whether it is a Volkswagen or a new Rolls Royce.

Let's be clear: the price of a smart card depends upon its capacity.

 

Why is reloadability essential to the development of smart cards vis-a-vis disposable cards?

There are markets for both disposable and reloadable cards.

Disposable cards work well for an event and as a collectable card.

If the card is a multiple application card supporting, for example, debit and credit and stored value, the customer would not want to throw this type of card away. 

It would be more appropriate if the stored value application is reloadable. This process is sometimes called "post-issuance."

 

The Smart Card Alliance

The Smart Card Forum represents a diverse group of industries and government groups, many of whom have seemingly competing interests.

Is it possible that such a diverse group can work together productively?

Today, even competing entities agree that where new technologies are concerned, industry-wide efforts are required to build workable infrastructures and develop compatible, interoperable, multi-use systems.

This effort cannot be accomplished, on any meaningful scale, by individual players acting in their interests. 

To date, the Forum has been highly successful in fostering communications across industries and the public sector and in encouraging various trials that demonstrate the viability of smart card-based payment and information systems.

 

Now it's your turn

What do you think?

If you've something to say on smart cards, a question to ask, or have found this article interesting; please leave a comment in the box below. We'd also welcome any suggestions on how it could be improved or proposals for future papers.

We look forward to hearing from you.