Mobile Threat Catalogue

Smartcard File Access


Threat Category: USIM / SIM / UICC security

ID: STA-28

Threat Description: Smartcard file systems have detailed permissions on files and directories. The command access permissions determine the security procedures to access a file. Access permissions can be confusing to smartcard operating systems with complex interactions.

Threat Origin

A Review of Smartcard Security Issues 1

Exploit Examples

Not Applicable

CVE Examples

Not Applicable

Possible Countermeasures


  1. H. Ko and R. Caytiles, “A Review of Smartcard Security Issues,” Journal of Security Engineering, 8, no. 3 (2011): 6. [accessed 10/11/21]