Hard mask
The term hard mask means that the entire program code is largely held in ROM. This saves on space compared to a soft mask, since ROM cells are considerably smaller than EEPROM cells. The drawback is that you need to create a real exposure mask for the semiconductor production. This significantly increases throughput time compared to a soft mask. Hard masks are usually used for large quantities of items with largely standard chip card functionality. The opposite of a hard mask is a soft mask, where the main functions are in EEPROM.


Hardware protection
Chip cards can also be attacked physically. For this reason the chips are equipped with a series of technical refinements. You can protect the chip in all sorts of ways. Electronics with as complicated connections as possible, sealed surfaces, and special sensors that detect attacks all provide security. If you want to manipulate the chip, you must first remove the passivation layer which “seals” the chip. A sensor switch uses the measurement of resistance and capacity to establish whether this layer still exists and is intact. If it is damaged, the chip is switched off. Other types of sensors can be used to constantly monitor the clock rate, temperature or operating voltage.


Hash algorithm or Hash function
A hash algorithm is a procedure that compresses data by means of a one-way function. Hash functions return a fixed length output value for an input value of any length. They are supplied in such a way that changes to the input data are highly likely to have an effect on the calculated hash value. One example of a hash algorithm is SHA-1. The results of hash functions are hash values, also often called digital fingerprints.


Hash value
Also known as a fingerprint. Result of a hash function.


HBCI
Home Banking Computer Interface. German security standard for home banking, introduced by the German Central Credit Committee (ZKA). It is based on asymmetric and symmetric cryptography and renders the use of PIN and TAN (transaction numbers) superfluous.

Hexadecimal
Method of representing numeric characters using a base of 16 (0, 1, 2, 3, 4, 5, 6, 7, 8, 9, A, B, C, D, E, F), as opposed to the decimal system in which the number 10 is the base.


HF
High frequency: in the Megahertz range for contactless cards.


Hijacking
In Internet jargon, hijacking generally means the attempt to take over a domain or the contents of a domain or user account (e.g. email account, eBay or Amazon account).


HMAC
A Machine Authentication Code (MAC) based on a hash function.


Hologram
Holography is a method of displaying objects three-dimensionally. They are captured using laser or electron beams. A hologram contains all the information about the captured object including size, position, three-dimensional spatial arrangement and surface structure, and therefore shows considerably more detail than a normal photograph.


Hologram embossing
The process of mechanically embossing the hologram motif on to film (transferring the diffractive structure).


Hologram stripe
A holographic stripe that runs the whole length of a banknote, also called LEAD or Longlasting Economical Anticopy Device.


Hologram thread
Window security thread with a holographic surface; this belongs to the OVD group. OVD objects are images and/or colors that change depending on the viewing angle.

Home banking
Term used to describe banking transactions carried out at home with a PC and modem, for example. (see HBCI – Home Banking Computer Interface)


Home Banking Computer Interface (HBCI)
HBCI is used exclusively for payment transactions between customers and their banks. In the future, customers will be able to use the national standard developed by the savings organization’s information center for handling fixed deposit and deposit accounts or for setting up online building savings contracts, in addition to the usual banking transactions. This eliminates the complicated business of transaction numbers (TANs) hitherto used in home banking. The HBCI interface is capable of handling multiple banks and allowing bank transactions to be made across all online services. The HBCI standard exploits all the advantages of the digital signature. Encryption still follows the double track principle – at least initially: in the case of the highly complex RSA algorithm, the HBCI interface currently still works with software-based solutions, which are installed on the hard disk from a diskette, whereas chip cards can already be used for the less computing-intensive triple DES algorithm. The aim, however, is to combine both security procedures and integrate the RSA algorithm into the chip card.


HTTP
Hypertext Transfer Protocol. Protocol developed by Netscape for exchanging data on the World Wide Web.

Hybrid card
Compatibility with existing standards is a major requirement for the acceptance of a technology. This is currently ensuring the smooth transition (with parallel use) from magnetic stripes to chip cards. It requires all functional elements to be integrated in the card – the hybrid or dual interface card. This creates considerable demands in the production process. Finally, many elements including chip, magnetic stripe, embossing, optical data field, signature stripe, optical security features, etc. must all be transferred to a plastic rectangle that measures barely 86 by 55 mm and is only around 0.8 mm thick. Nowadays a hybrid card is also understood to mean a card for which the transfer can be made either with or without contact.


Hybrid process
Combination of symmetric and asymmetric cryptography. Here the data to be encrypted is encrypted using a symmetric algorithm; the encryption key is then itself encrypted (asymmetrically) with the recipient’s public key, and sent with the (symmetrically) encrypted data. The recipient uses his or her private key to decrypt the symmetric encryption key and with it the data. This process is recommended above all for large data volumes and when encrypting for multiple recipients.