Open e-id implementation for temporary and future card deployments
|
|
|
- Ariel Lambert
- 5 years ago
- Views:
Transcription
1 Open e-id implementation for temporary and future card deployments Gauthier Van Damme Karel Wouters Danny De Cock Katholieke Universiteit Leuven ESAT/SCD/IBBT-COSIC World e-id Conference, 2010 ESAT/SCD-COSIC (KUL) Open Belgian e-id implementation World e-id, / 22
2 Outline 1 The Belgian e-id card: facts and gures Current Deployment The e-id chip and its functionalities Current Use Cases 2 The e-id Quick Key Toolset: purpose and implementation Purpose of the open source implementation Functionalities of the toolset Demonstration 3 Use case: mobile e-id Mobile e-id on Android Smart Phones ESAT/SCD-COSIC (KUL) Open Belgian e-id implementation World e-id, / 22
3 Outline 1 The Belgian e-id card: facts and gures Current Deployment The e-id chip and its functionalities Current Use Cases 2 The e-id Quick Key Toolset: purpose and implementation Purpose of the open source implementation Functionalities of the toolset Demonstration 3 Use case: mobile e-id Mobile e-id on Android Smart Phones ESAT/SCD-COSIC (KUL) Open Belgian e-id implementation World e-id, / 22
4 Outline 1 The Belgian e-id card: facts and gures Current Deployment The e-id chip and its functionalities Current Use Cases 2 The e-id Quick Key Toolset: purpose and implementation Purpose of the open source implementation Functionalities of the toolset Demonstration 3 Use case: mobile e-id Mobile e-id on Android Smart Phones ESAT/SCD-COSIC (KUL) Open Belgian e-id implementation World e-id, / 22
5 Outline 1 The Belgian e-id card: facts and gures Current Deployment The e-id chip and its functionalities Current Use Cases 2 The e-id Quick Key Toolset: purpose and implementation Purpose of the open source implementation Functionalities of the toolset Demonstration 3 Use case: mobile e-id Mobile e-id on Android Smart Phones ESAT/SCD-COSIC (KUL) Open Belgian e-id implementation World e-id, / 22
6 The Belgian e-id card March 31st, 2003: rst Belgian e-id cards issued Today: almost 10 million cards active Mandatory for all citizens older than 12 Optional for all children younger than 12 Optional for all foreigner living in Belgium ESAT/SCD-COSIC (KUL) Open Belgian e-id implementation World e-id, / 22
7 Visual Aspects Printed information provide for normal citizen identication Only basic biometrics: citizen photo and signature International Civil Aviation Organization (ICAO) specied zone for border control Visual security mechanisms for card integrity verication ESAT/SCD-COSIC (KUL) Open Belgian e-id implementation World e-id, / 22
8 Outline 1 The Belgian e-id card: facts and gures Current Deployment The e-id chip and its functionalities Current Use Cases 2 The e-id Quick Key Toolset: purpose and implementation Purpose of the open source implementation Functionalities of the toolset Demonstration 3 Use case: mobile e-id Mobile e-id on Android Smart Phones ESAT/SCD-COSIC (KUL) Open Belgian e-id implementation World e-id, / 22
9 The e-id chip Based on Java Card technology Uses on-board key-pair generation RSA 1024 and 2048 bit key operations using dedicated co-processor Private keys do not leave the chip Key-pair generation activated during e-id card initialization Is managed by the Belgian government Citizen data in the chip is read only after government initialization Card rejects updates if not from the government ESAT/SCD-COSIC (KUL) Open Belgian e-id implementation World e-id, / 22
10 The e-id chip functionalities The Belgian government established a PKI based on X.509 v3 certicates Two key pairs per citizen are dened inside this PKI Authentication key pair for client authentication Non-Repudiation key pair for le signature The use of the private keys require PIN entry, chosen by the citizen Compliant to the European Directive 1999/93/EC on equivalence with handwritten signatures A third key pair, without certicate, is used for card authentication by National Register (RRN) ESAT/SCD-COSIC (KUL) Open Belgian e-id implementation World e-id, / 22
11 The e-id chip content PKCS#12 le structure for content representation ESAT/SCD-COSIC (KUL) Open Belgian e-id implementation World e-id, / 22
12 Outline 1 The Belgian e-id card: facts and gures Current Deployment The e-id chip and its functionalities Current Use Cases 2 The e-id Quick Key Toolset: purpose and implementation Purpose of the open source implementation Functionalities of the toolset Demonstration 3 Use case: mobile e-id Mobile e-id on Android Smart Phones ESAT/SCD-COSIC (KUL) Open Belgian e-id implementation World e-id, / 22
13 Current Use Cases egovernment: Ocial document request: marital status, birth certicate,... Access to RNN database etax: Online tax form declaration and consultation 2,2 million tax-on-web declarations in 2010 eaccess Client authentication for web servers (e.g. ebay) Access control to swimming pool, public library, civic amenity site Age control (e.g. vending machines) ecommerce Online account opening Digital Rights Management Qualied signature ehealth Access to patient health record ESAT/SCD-COSIC (KUL) Open Belgian e-id implementation World e-id, / 22
14 Current Use Cases egovernment: Ocial document request: marital status, birth certicate,... Access to RNN database etax: Online tax form declaration and consultation 2,2 million tax-on-web declarations in 2010 eaccess Client authentication for web servers (e.g. ebay) Access control to swimming pool, public library, civic amenity site Age control (e.g. vending machines) ecommerce Online account opening Digital Rights Management Qualied signature ehealth Access to patient health record ESAT/SCD-COSIC (KUL) Open Belgian e-id implementation World e-id, / 22
15 Current Use Cases egovernment: Ocial document request: marital status, birth certicate,... Access to RNN database etax: Online tax form declaration and consultation 2,2 million tax-on-web declarations in 2010 eaccess Client authentication for web servers (e.g. ebay) Access control to swimming pool, public library, civic amenity site Age control (e.g. vending machines) ecommerce Online account opening Digital Rights Management Qualied signature ehealth Access to patient health record ESAT/SCD-COSIC (KUL) Open Belgian e-id implementation World e-id, / 22
16 Current Use Cases egovernment: Ocial document request: marital status, birth certicate,... Access to RNN database etax: Online tax form declaration and consultation 2,2 million tax-on-web declarations in 2010 eaccess Client authentication for web servers (e.g. ebay) Access control to swimming pool, public library, civic amenity site Age control (e.g. vending machines) ecommerce Online account opening Digital Rights Management Qualied signature ehealth Access to patient health record ESAT/SCD-COSIC (KUL) Open Belgian e-id implementation World e-id, / 22
17 Current Use Cases egovernment: Ocial document request: marital status, birth certicate,... Access to RNN database etax: Online tax form declaration and consultation 2,2 million tax-on-web declarations in 2010 eaccess Client authentication for web servers (e.g. ebay) Access control to swimming pool, public library, civic amenity site Age control (e.g. vending machines) ecommerce Online account opening Digital Rights Management Qualied signature ehealth Access to patient health record ESAT/SCD-COSIC (KUL) Open Belgian e-id implementation World e-id, / 22
18 Outline 1 The Belgian e-id card: facts and gures Current Deployment The e-id chip and its functionalities Current Use Cases 2 The e-id Quick Key Toolset: purpose and implementation Purpose of the open source implementation Functionalities of the toolset Demonstration 3 Use case: mobile e-id Mobile e-id on Android Smart Phones ESAT/SCD-COSIC (KUL) Open Belgian e-id implementation World e-id, / 22
19 Idea behind the e-id Quick Key Toolset Belgian e-id is closed source and rigid Global e-id deployment relatively young and still evolving An open source implementation enables: Fast implementation of new functionalities for testing To get faster feedback on possible security risks through public scrutiny Parties other than the Belgian government to test/use the Belgian e-id structure Easy access to a temporary e-id token in case of theft/loss See: ESAT/SCD-COSIC (KUL) Open Belgian e-id implementation World e-id, / 22
20 Outline 1 The Belgian e-id card: facts and gures Current Deployment The e-id chip and its functionalities Current Use Cases 2 The e-id Quick Key Toolset: purpose and implementation Purpose of the open source implementation Functionalities of the toolset Demonstration 3 Use case: mobile e-id Mobile e-id on Android Smart Phones ESAT/SCD-COSIC (KUL) Open Belgian e-id implementation World e-id, / 22
21 Functionalities of the toolset Next to the open source Java Card applet implementation of the Belgian e-id, the e-id quick key toolset also oers: e-id data read functionality (not the private keys!) e-id data modication Saving e-id data in.xml le structure for later use Loading e-id data previously stored in.xml format Write the e-id applet to a set of supported empty Java Cards (non-exhaustive) Write previously read/loaded/modied data to the e-id applet on this Java Card ESAT/SCD-COSIC (KUL) Open Belgian e-id implementation World e-id, / 22
22 Outline 1 The Belgian e-id card: facts and gures Current Deployment The e-id chip and its functionalities Current Use Cases 2 The e-id Quick Key Toolset: purpose and implementation Purpose of the open source implementation Functionalities of the toolset Demonstration 3 Use case: mobile e-id Mobile e-id on Android Smart Phones ESAT/SCD-COSIC (KUL) Open Belgian e-id implementation World e-id, / 22
23 Demonstration ESAT/SCD-COSIC (KUL) Open Belgian e-id implementation World e-id, / 22
24 Outline 1 The Belgian e-id card: facts and gures Current Deployment The e-id chip and its functionalities Current Use Cases 2 The e-id Quick Key Toolset: purpose and implementation Purpose of the open source implementation Functionalities of the toolset Demonstration 3 Use case: mobile e-id Mobile e-id on Android Smart Phones ESAT/SCD-COSIC (KUL) Open Belgian e-id implementation World e-id, / 22
25 Mobile e-id on Android Smart Phones Used G&D secure microsd card containing a Java Card Used open source Smart Card API found at Same functionalities as the e-id Quick Key Toolset, adapted to the mobile world: Reading out Smart Card/e-ID Storing data in.xml structure Loading.xml les and automatically verify data validity using own e-id Sign data/les/mails ESAT/SCD-COSIC (KUL) Open Belgian e-id implementation World e-id, / 22
26 Mobile e-id: one step further? Having your e-id data on your mobile phone of course has some major implications: No visual security measures can be implemented: A JPEG could always be used to impersonate someone The use of the authentication key could be mandatory during an identity check How to implement this eciently? What about malware on the phone OS? What are the new opportunities/use cases? Two-factor authentication (phone + computer) easily implemented? Extend e-id for use in encrypted mobile communications, anonymous credentials,... ESAT/SCD-COSIC (KUL) Open Belgian e-id implementation World e-id, / 22
27 Summary Short overview of the Belgian e-id card Overview of our open source Belgian e-id card implementation and toolset Preview of an e-id implementation for mobile phones and future thoughts ESAT/SCD-COSIC (KUL) Open Belgian e-id implementation World e-id, / 22
28 Questions? ESAT/SCD-COSIC (KUL) Open Belgian e-id implementation World e-id, / 22
Can eid card make life easier and more secure? Michal Ševčík Industry Solution Consultant Hewlett-Packard, Slovakia ITAPA, November 9 th, 2010
Can eid card make life easier and more secure? Michal Ševčík Industry Solution Consultant Hewlett-Packard, Slovakia ITAPA, November 9 th, 2010 Content eid Primary Functions eid Privacy Features and Security
cryptovision s Government Solutions Adam Ross, Ben Drisch cryptovision GmbH
cryptovision s Government Solutions Adam Ross, Ben Drisch cryptovision GmbH cv cryptovision GmbH T: +49 (0) 209.167-24 50 F: +49 (0) 209.167-24 61 info(at)cryptovision.com 1 cryptovision cryptovision Gelsenkirchen
EU Passport Specification
Biometrics Deployment of EU-Passports EU Passport Specification (EN) 28/06/2006 (As the United Kingdom and Ireland have not taken part in the adoption of this measure, an authentic English version of the
Austrian State Printing House
Austrian State Printing House Who we are Austrian company, located in Vienna Founded in 1804 Modern, forward looking identity management provider egovernment Services Turn-key solution provider of full
Market Trends and Veridos solutions for epassports & ID Documents
Market Trends and Veridos solutions for epassports & ID Documents Ludger Holtmann, Senior Product & Portfolio Manager Michael Ruhland-Bauer, Head of Product Mangement Documents Agenda Introducing Veridos
Singapore s National Digital Identity (NDI):
Singapore s National Digital Identity (NDI): Leaving no one behind Kwok Quek Sin Director, National Digital Identity Programme Government Technology Agency PART 1 INTRODUCTION TO NDI Better Living For
Open Mobile API The enabler of Mobile ID solutions. Alexander Summerer, Giesecke & Devrient 30th Oct. 2014
The enabler of solutions Alexander Summerer, Giesecke & Devrient 30th Oct. 2014 SIMalliance Allows usage of Secure Elements in Mobile Devices Designed for Open Handset OS platforms Common API for Apps
Signature Validity States
Validity States Danny De Cock Danny.DeCock@esat.kuleuven.be Katholieke Universiteit Leuven/Dept. Elektrotechniek (ESAT) Computer Security and Industrial Cryptography (COSIC) Kasteelpark Arenberg 10, bus
CREDENTSYS CARD FAMILY
CREDENTSYS CARD FAMILY Credentsys is a secure smart card family that is designed for national ID systems, passports, and multi-use enterprise security environments. The family is certified to FIPS 140-2
Introduction to Electronic Identity Documents
Tutorial Introduction to Electronic Identity Documents Klaus Schmeh cryptovision I'm Klaus Schmeh, Chief Editor Marketing at cryptovision. I have published a number of books. Identity Documents Conventional
Architecture 1 3. SecureToken. 32-bit microprocessor smart chip. Support onboard RSA key pair generation. Built-in advanced cryptographic functions
SecureToken Architecture 1 3 2 32-bit microprocessor smart chip Support onboard RSA key pair generation Built-in advanced cryptographic functions 4 5 6 7 8 9 10 Support onboard digital signing Supports
Next Generation Authentication
Next Generation Authentication Bring Your Own security impact Dominique Dessy Sr. Technology Consultant 1 2012 DIGITAL UNIVERSE 1.8 ZETTABYTES 1,800,000,000,000,000,000,000 2 $ 3 4 Threat Landscape 60%
IDGo Middleware and SDK for Mobile Devices
Smartjac Industries Inc. - Kanalvägen 1A 2nd floor SE-194 61 Upplands Väsby Sweden www.smartjac.com / www.smartjac.biz Phone: +46(8)41071230 - Email: order@smartjac.com IDGo 800 - Middleware and SDK for
Security and Privacy Threats of the Belgian Electronic Identity Card and Middleware
Security and Privacy Threats of the Belgian Electronic Identity Card and Middleware Pieter Verhaeghe 1, Jorn Lapon 2, Vincent Naessens 2, Bart De Decker 1, Kristof Verslype 1 and Girma Nigusse 1 1 Katholieke
Belgian eid Card Technicalities
Belgian eid Card Technicalities Danny De Cock Danny.DeCock@esat.kuleuven.be Katholieke Universiteit Leuven/Dept. Elektrotechniek (ESAT) Computer Security and Industrial Cryptography (COSIC) Kasteelpark
Development of smart authentication and identification in Asia
Development of smart authentication and identification in Asia Asia PKI Consortium Dr. Wei-Chung Hwang weichung.hwang@gmail.com Nov 16, 2017 Agenda About APKIC Background Current Development New trends
SmartCards as electronic signature devices Progress of standardization. Helmut Scherzer, CEN TC224/WG16 (Editor) IBM Germany
SmartCards as electronic signature devices Progress of standardization Helmut Scherzer, CEN TC224/WG16 (Editor) IBM Germany scherzer@de.ibm.com Active CEN working groups(today) TC224 : "Machine readable
Java Card Technology-based Corporate Card Solutions
Java Card Technology-based Corporate Card Solutions Jack C. Pan, Leader and Sr. Architect Hervé Garcia, Tech. Project Manager econsumer Emerging Technologies, Citibank Overall Presentation Goal The objectives
Dr. Char-Shin Miou Chunghwa Telecom. Co. April 7, 2011
Mobile Security Application Current Status Overview in Taiwan Dr. Char-Shin Miou Chunghwa Telecom. Co. April 7, 2011 Content Problems and Current Status Approach for the Mobile Security Application Mobile
END OF SALE ANNOUNCEMENT
Gemalto IDPrime.Net /.Net Bio Smart Cards END OF SALE ANNOUNCEMENT The purpose of this bulletin is to announce End-of-Sale (EOS) and Last-Time-Buy (LTB) plans for Gemalto s IDPrime.Net and IDPrime.Net
eidas Standardisation What are the Issues and Concerns? Overview from CEN TC 224 WG 16 ESIGN Gisela Meister
eidas Standardisation What are the Issues and Concerns? Overview from CEN TC 224 WG 16 ESIGN Gisela Meister Table of contents 1 2 3 4 5 Status eidas Regulation and CEN TC 224 in the contect of the Cyber
The Mobile Finnish Identity Certificate
The Mobile Finnish Identity Certificate Dr.Tech. Göran Pulkkis and BSc (Eng.) Jonny Karlsson ARCADA Polytechnic Helsinki Finland PRESENTATION OUTLINE Finnish Electronic Identity (FINEID) as a Smartcard
Authentication Technology for a Smart eid Infrastructure.
Authentication Technology for a Smart eid Infrastructure. www.aducid.com One app to access all public and private sector online services. One registration allows users to access all their online accounts
Overview of cryptovision's eid Product Offering. Presentation & Demo
Presentation & Demo Benjamin Drisch, Adam Ross cv cryptovision GmbH T: +49 (0) 209.167-24 50 F: +49 (0) 209.167-24 61 info(at)cryptovision.com 1 General Requirements Government of Utopia Utopia Electronic
Electronic Identity Management Systems in the European Union
Master Thesis Information Sciences Radboud University Electronic Identity Management Systems in the European Union Author: A.H. Zwilling Armin.Zwilling@student.ru.nl s4227646 Supervisor: dr. J.E.W. Smetsers
Mobile Identity Management
Mobile Identity Management Outline Ideas Motivation Architecture Implementation notes Discussion Motivation 1 The mobile phone has become a highly personal device: Phonebook E-mail Music, videos Landmarks
Mobile Devices as Identity Carriers. Pre Conference Workshop October 14 th 2013
Mobile Devices as Identity Carriers Pre Conference Workshop October 14 th 2013 Mobile Market Worldwide Smartphones Market by OS (in thousands of units) 1,400,000 1,200,000 1,000,000 800,000 600,000 400,000
2 Electronic Passports and Identity Cards
2 Picture source: www.bundesdruckerei.de Paper based Passport Radio Frequency (RF) Chip Electronic Passport (E Pass) Biographic data Human readable Partially machine readable (optically) Conventional
@firma, Validation Platform for PKIs
@firma, Validation Platform for PKIs Miguel Álvarez Rodríguez Ministry of Public Administration of Spain Brussels, 13 th November 2008 Current national scenario on eid PKI digital certificates are the
MAESON MAHERRY. 3 Factor Authentication and what it means to business. Date: 21/10/2013
MAESON MAHERRY 3 Factor Authentication and what it means to business. Date: 21/10/2013 Concept of identity Access Control User Self-Service Identity and Access Management Authoritive Identity Source User
Séminaire sur la Certification Electronique
Séminaire sur la Certification Electronique Algiers Algeria, 8-9 December, 2009 International Telecommunication Arab Regional Office Assisting Governments in Developing e-commerce Ecosystems: A Synthesis
DigitalPersona Altus. Solution Guide
DigitalPersona Altus Solution Guide Contents DigitalPersona... 1 DigitalPersona Altus Solution... 4 MODULAR SOLUTION CREATE-CONFIRM-CONTROL... 4 EXPERT SERVICES ASSESS-DESIGN-DEPLOY-SUPPORT... 5 DigitalPersona
Pro s and con s Why pins # s, passwords, smart cards and tokens fail
Current Authentication Methods Pro s and con s Why pins # s, passwords, smart cards and tokens fail IDENTIFYING CREDENTIALS In The Physical World Verified by Physical Inspection of the Credential by an
Implementing Electronic Signature Solutions 11/10/2015
Implementing Electronic Signature Solutions 11/10/2015 Agenda Methodology, Framework & Approach: High-Level Overarching Parameters Regarding Electronic Service Delivery Business Analysis & Risk Assessment
Certificate Enrollment- and Signing Services for the Cloud. A behind-the-scenes presentation of a successful cooperation between
Certificate Enrollment- and Signing Services for the Cloud A behind-the-scenes presentation of a successful cooperation between Introduction Based on our experience and the request from the market we would
SafeNet MobilePKI for BlackBerry V1.2. Administration Guide
SafeNet MobilePKI for BlackBerry V1.2 Administration Guide All information herein is either public information or is the property of and owned solely by Gemalto NV and/or its subsidiaries who shall have
The ehealth platform
Glossary Version 1.0 This document is provided to you free of charge by The ehealth platform Willebroekkaai 38 1000 BRUSSELS All are free to circulate this document with reference to the URL source. Table
How the European Commission is supporting innovation in mobile health technologies Nordic Mobile Healthcare Technology Congress 2015
How the European Commission is supporting innovation in mobile health technologies Nordic Mobile Healthcare Technology Congress 2015 Claudia Prettner, Unit for Health and Well-Being, DG CONNECT Table of
New Paradigms of Digital Identity:
A Telefonica White Paper New Paradigms of Digital Identity: Authentication and Authorization as a Service (AuthaaS) February 2016 1. Introduction The concept of identity has always been the key factor
eauthentication and Cross Boarder etransaction
eauthentication and Cross Boarder etransaction James Wu / jrsys CEO 1 1 Taiwan s e-gov Journey Efficiency & Effectiveness Infrastructure Development & Penetration Online Service Development Integrated,
Biometrics & Smart Cards In Use Today
Biometrics & Smart Cards In Use Today Christer Bergman President and CEO, Precise Biometrics In Use Today... Alan L. Herto Chief, Systems Integrity Division Requirements Improved IT security & stronger
<Partner Name> <Partner Product> RSA SECURID ACCESS Authenticator Implementation Guide. Check Point SmartEndpoint Security
RSA SECURID ACCESS Authenticator Implementation Guide Check Point SmartEndpoint Security Daniel R. Pintal, RSA Partner Engineering Last Modified: January 27, 2017 Solution
MINIMAL-FOOTPRINT MIDDLEWARE FOR THE CREATION OF QUALIFIED SIGNATURES
MINIMAL-FOOTPRINT MIDDLEWARE FOR THE CREATION OF QUALIFIED SIGNATURES Martin Centner, Clemens Orthacker Institute for Applied Information Processing and Communication (IAIK), Graz University of Technology,
An Overview of Secure and Authenticated Remote Access to Central Sites
Workshop on Data Access to Micro-Data (WDA) Nuernberg, August 20-21 An Overview of Secure and Authenticated Remote Access to Central Sites Dr Milan Marković Banca Intesa ad Beograd, Serbia milan.markovic@bancaintesabeograd.com
TLS. RFC2246: The TLS Protocol. (c) A. Mariën -
TLS RFC2246: The TLS Protocol What does it achieve? Confidentiality and integrity of the communication Server authentication Eventually: client authentication What is does not do Protect the server Protect
Caradigm Single Sign-On and Context Management RSA Ready Implementation Guide for. Caradigm Single Sign-On and Context Management 6.2.
RSA Ready Implementation Guide for Caradigm Single Sign-On and Context Management 6.2.7 John Sammon, RSA Partner Engineering Last Modified: March 1, 2016 Solution Summary Caradigm customers integrate Caradigm
CertDigital Certification Services Policy
CertDigital Certification Services Policy Page: 2 ISSUED BY : DEPARTAMENT NAME DATE ELECTRONIC SERVICES COMPARTMENT COMPARTMENT CHIEF 19.03.2011 APPROVED BY : DEPARTMENT NAME DATE MANAGEMENT OF POLICIES
Towards e-passport Duplicate Enrolment Check in the European Union
2013 European Intelligence and Security Informatics Conference Towards e-passport Duplicate Enrolment Check in the European Union Moazzam Butt, Sandra Marti, Alexander Nouak,Jörg Köplin, R. Raghavendra
Dissecting NIST Digital Identity Guidelines
Dissecting NIST 800-63 Digital Identity Guidelines KEY CONSIDERATIONS FOR SELECTING THE RIGHT MULTIFACTOR AUTHENTICATION Embracing Compliance More and more business is being conducted digitally whether
General Data Protection Regulation Frequently Asked Questions (FAQ) General Questions
General Data Protection Regulation Frequently Asked Questions (FAQ) This document addresses some of the frequently asked questions regarding the General Data Protection Regulation (GDPR), which goes into
Citizen Biometric Authentication based on e-document verification. e-government perspective. Mindshare Ruslans Arzaniks Head of Development
Citizen Biometric Authentication based on e-document verification. e-government perspective. Mindshare 2017 Ruslans Arzaniks Head of Development About us WHO WE ARE X Infotech is a global provider of software
Smart Cards. Outline. José Costa Application Domains: Smart Cards. Software for Embedded Systems
Smart Cards José Costa Software for Embedded Systems Department of Computer Science and Engineering (DEI) Instituto Superior Técnico Adapted from the overheads for ASE 2009-2010 2011-05-02 José Costa (DEI/IST)
CEN TC 224 WG15. European Citizen Card. Brussels May 10th CEN/TC 224 WG15 European Citizen Card
CEN TC 224 WG15 European Citizen Card Brussels May 10th 2007 1CEN/TC 224 WG15 European Citizen Card European Citizen Card Scope Smart-Card based model for e-id management User-centric: Card under control
esign - Evolving Opportunities and Applications C E N T R E F O R D E V ELOPMENT O F A D VANCED C O MPUTING N O V E M B E R 1 5,
esign - Evolving Opportunities and Applications C E N T R E F O R D E V ELOPMENT O F A D VANCED C O MPUTING N O V E M B E R 1 5, 2 0 1 7 Presentation Outline e-sign Architecture Interesting Challenges
Outline. Computer Science 331. Information Hiding. What This Lecture is About. Data Structures, Abstract Data Types, and Their Implementations
Outline Computer Science 331 Data Structures, Abstract Data Types, and Their Implementations Mike Jacobson 1 Overview 2 ADTs as Interfaces Department of Computer Science University of Calgary Lecture #8
hidglobal.com HID ActivOne USER FRIENDLY STRONG AUTHENTICATION
HID ActivOne USER FRIENDLY STRONG AUTHENTICATION We understand IT security is one of the TOUGHEST business challenges today. HID Global is your trusted partner in the fight against data breach due to misused
Katholieke Universiteit Leuven Department of Computer Science. Towards a general purpose identity card
Towards a general purpose identity card Jan Vossaert Pieter Verhaeghe Bart De Decker Vincent Naessens Report CW 587, June 2010 Katholieke Universiteit Leuven Department of Computer Science Celestijnenlaan
RSA SecurID Ready Implementation Guide. Last Modified: March 27, Cisco Systems, Inc.
Cisco Systems Cisco Secure Access Control System RSA SecurID Ready Implementation Guide Partner Information Last Modified: March 27, 2008 Product Information Partner Name Cisco Systems, Inc. Web Site www.cisco.com
Patient Access to Medical Records/Subject to Access - Information Leaflet
Patient Access to Medical Records/Subject to Access - Information Leaflet The General Data Protection Regulation (GDPR) gives every living person, or an authorised representative, the right to apply for
Intel Security/McAfee Endpoint Encryption
RSA Ready Implementation Guide for RSA SecurID Last Modified: March 13, 2015 Partner Information Product Information Partner Name Intel Security formerly McAfee Web Site www.mcafee.com Product Name for
Chapter 8 Information Technology
CRIM 2130 Introduction to Critical Infrastructure Protection Spring 2016 Chapter 8 Information Technology School of Criminology and Justice Studies University of Massachusetts Lowell Enterprise systems
Defense Manpower Data Center CAC/PKI NFC
Defense Manpower Data Center CAC/PKI NFC Bob Gilson Jonathan Shu cacsupport@mail.mil Sep 2012 2 Authentication in the US Government US Government employees must use Personal Iden7ty Verifica7on (PIV) smart
Biometric Technologies Signature
Biometric Signature Solutions Presented at the Open House The Standards Institution of Israel 1 WonderNet The leading provider of digital signature solutions Over 5 million current users Cutting edge technologies:
Digital it Signatures. Message Authentication Codes. Message Hash. Security. COMP755 Advanced OS 1
Digital Signatures Digital it Signatures Offer similar protections as handwritten signatures in the real world. 1. Difficult to forge. 2. Easily verifiable. 3. Not deniable. 4. Easy to implement. 5. Differs
XenApp 5 Security Standards and Deployment Scenarios
XenApp 5 Security Standards and Deployment Scenarios 2015-03-04 20:22:07 UTC 2015 Citrix Systems, Inc. All rights reserved. Terms of Use Trademarks Privacy Statement Contents XenApp 5 Security Standards
Legal Regulations and Vulnerability Analysis
Legal Regulations and Vulnerability Analysis Bundesamt für Sicherheit in der Informationstechnik (BSI) (Federal Office for Information Security) Germany Introduction of the BSI National Authority for Information
One Year of SSL Internet Measurement ACSAC 2012
One Year of SSL Internet Measurement ACSAC 2012 Olivier Levillain, Arnaud Ébalard, Benjamin Morin and Hervé Debar ANSSI / Télécom SudParis December 5th 2012 Outline 1 SSL/TLS: a brief tour 2 Methodology
ONE ID Identity and Access Management System
ONE ID Identity and Access Management System Local Registration Authority User Guide Document Identifier: 2274 Version: 1.8 Page 1 Copyright Notice Copyright 2011, ehealth Ontario All rights reserved No
AWARD TOP PERFORMER. Minex III FpVTE PFT II FRVT PRODUCT SHEET. Match on Card. Secure fingerprint verification directly on the card
AWARD Speed Accuracy Interoperability TOP PERFORMER PRODUCT SHEET Minex III FpVTE PFT II FRVT Match on Card Secure fingerprint verification directly on the card WWW.INNOVATRICS.COM MATCH ON CARD Our solution
eid Interoperability for PEGS WS-Federation
eid Interoperability for PEGS WS-Federation Workshop Brussels 10 May 2007 Agenda 1 Scope 2 Category 3 Approach and description 4 Relevance for eid Interoperability 5 Pro s and Con s 6 Relationship with
The Top Four Trends in eid Technology Marco Smeja, cryptovision Mindshare 2017
The Top Four Trends in eid Technology Marco Smeja, cryptovision Mindshare 2017 cv cryptovision GmbH T: +49 (0) 209.167-24 50 F: +49 (0) 209.167-24 61 info(at)cryptovision.com 1 2 The Smart Card Evolution
Spiros Angelopoulos Principal Solutions Architect ForgeRock. Debi Mohanty Senior Manager Deloitte & Touche LLP
Debi Mohanty Senior Manager Deloitte & Touche LLP Multi-factor (MFA) Authentication September 2018 Spiros Angelopoulos Principal Solutions Architect ForgeRock MFA Evolved Authentication Spiros Angelopoulos
Company Profile. Consulting Architecture Realization Support. Designed by experts, applied by experts!
Company Profile Advanced Authentication Solutions Consulting Architecture Realization Support Advanced security that fits into your needs TRANSLATING BUSINESS REQUIRMENTS INTO WORKABLE SOLUTIONS Our proven
There is an increasing desire and need to combine the logical access and physical access functions of major organizations.
Introduction There is an increasing desire and need to combine the logical access and physical access functions of major organizations. This can be as simple as merely having an access card that can be
Pharma IT ELECTRONIC RECORDS
Pharma IT ELECTRONIC RECORDS Excerpted from Pharmaceutical Formulation & Quality (PFQ) magazine, February/March 2008 E-Signatures Set the Standard E-signatures can improve access to documents and information
Apple Computer, Inc. ios
RSA SecurID Ready Implementation Guide Partner Information Last Modified: March 15, 2012 Product Information Partner Name Apple Computer, Inc. Web Site www.apple.com Product Name Version & Platform 5.1
Past & Future Issues in Smartcard Industry
Past & Future Issues in Smartcard Industry Ecrypt 2 Summer School Guillaume Dabosville Oberthur Technologies Oberthur Technologies the group its divisions payment, mobile, transport and digital TV markets
IRMA: I Reveal My Attributes
IRMA: I Reveal My Attributes Roland van Rijswijk - Deij roland.vanrijswijk@surfnet.nl rijswijk@cs.ru.nl Project partners 2 What is an attribute? An attribute is a property of a person: Full name Date of
The epassport: What s Next?
The epassport: What s Next? Justin Ikura LDS2 Policy Sub-Group Co-chair Tom Kinneging Convenor of ISO/IEC JTC1 SC17 WG3 International Organization for Standardization (ISO) Strengthening Aviation Security
BEYOND TRADITIONAL PASSWORD AUTHENTICATION: PKI & BLOCKCHAIN
SESSION ID: GPS-R09B BEYOND TRADITIONAL PASSWORD AUTHENTICATION: PKI & BLOCKCHAIN Sid Desai Head of Business Development Remme.io @skd_desai Agenda Our relationship to our digital-selves Evolution of Authentication
Whitepaper: GlobalTester Prove IS
Whitepaper: GlobalTester Prove IS Testing of EAC inspection systems By HJP Consulting GmbH Introduction There have been a lot of activities in standardization to define conformity tests for e-passports.
TATA CONSULTANCY SERVICES LIMITED CERTIFYING AUTHORITY REQUEST FORM FOR CLASS-2 CERTIFICATE / / Version Class-2 Certificate (Company)
TATA CONSULTANCY SERVICES LIMITED CERTIFYING AUTHORITY REQUEST FORM FOR CLASS-2 CERTIFICATE Instructions: USER TYPE COMPANY 1. Please fill the form in BLOCK LETTERS 2. Items marked with * are mandatory.
AXIAD IDS CLOUD SOLUTION. Trusted User PKI, Trusted User Flexible Authentication & Trusted Infrastructure
AXIAD IDS CLOUD SOLUTION Trusted User PKI, Trusted User Flexible Authentication & Trusted Infrastructure Logical Access Use Cases ONE BADGE FOR CONVERGED PHYSICAL AND IT ACCESS Corporate ID badge for physical
Signer Authentication
Signer Authentication WHITE PAPER A common question arises as people migrate to electronic signature and electronic contract execution from paper and ink signatures. How do I know my intended signer is
Attribute-based Credentials on Smart Cards
Attribute-based Credentials on Smart Cards ir. Pim Vullers p.vullers@cs.ru.nl Privacy & Identity Lab Institute for Computing and Information Sciences Digital Security SaToSS Research Meeting 28th February
TATA CONSULTANCY SERVICES LIMITED CERTIFYING AUTHORITY REQUEST FORM FOR CLASS-2 CERTIFICATE FOR FOREIGN DIRECTORS.
TATA CONSULTANCY SERVICES LIMITED CERTIFYING AUTHORITY REQUEST FORM FOR CLASS-2 CERTIFICATE FOR FOREIGN DIRECTORS. USER TYPE INDIVIDUAL Instructions: 1. Please fill the form in BLOCK LETTERS 2. Items marked
Identity Ecosystem Design challenges. Wim Coulier eidas Expert Belgian Mobile ID
Identity Ecosystem Design challenges Wim Coulier eidas Expert Belgian Mobile ID Belgian Mobile ID respects the guidelines provided by is the reference for digital identification and authentication in Belgium
The Future of Smart Cards: Bigger, Faster and More Secure
The Future of Smart Cards: Bigger, Faster and More Secure Joerg Borchert, Vice President, Secure Mobile Solutions July 16, 2003 Page 1 N e v e r s t o p t h i n k i n g. Infineon Technologies: Overview
Final Project Report. Abstract. Document information
Final Project Report Document information Project Title SWIM security solutions Project Number 14.02.02 Project Manager THALES Deliverable Name Final Project Report Deliverable ID D01 Edition 00.01.00
How To Secure Electronic Passports. Marc Witteman & Harko Robroch Riscure 02/07/07 - Session Code: IAM-201
How To Secure Electronic Passports Marc Witteman & Harko Robroch Riscure 02/07/07 - Session Code: IAM-201 Other personal info on chip Other less common data fields that may be in your passport Custody
PKI Knowledge Dissemination Program. PKI Standards. Dr. Balaji Rajendran Centre for Development of Advanced Computing (C-DAC) Bangalore
PKI Standards Dr. Balaji Rajendran Centre for Development of Advanced Computing (C-DAC) Bangalore Under the Aegis of Controller of Certifying Authorities (CCA) Government of India 1 PKCS Why PKCS? Even
Interface. Circuit. CryptoMate
A C O S 5 - C T M C r y p t o M a t e U S B T o k e n Version 1.5 03-2007, Email: info@acs.com.hk Website: www.acs.com.hk CryptoMate USB Token 1.0 Introduction Frustrated by network breaches like Trojan
Ceedo Client Family Products Security
ABOUT THIS DOCUMENT Ceedo Client Family Products Security NOTE: This document DOES NOT apply to Ceedo Desktop family of products. ABOUT THIS DOCUMENT The purpose of this document is to define how a company
U-Prove Technology Overview
U-Prove Technology Overview November 2010 TOC Introduction Community Technology Preview Additional Capabilities RSA Demo Conclusion 2 Introduction History U-Prove well established in academia Patent portfolio
Analysis of the Interoperability Possibilities of Implemented Governmental e-services EU15
InterPARES Trust Study Name: Team & Study Number: Research domain: Document Title: Analysis of the Interoperability Possibilities of Implemented Governmental e-services EU15 Control Checklist Status: Final
Implementation of cross-border eprescription services. Päivi Hämäläinen, THL, Finland 14 May ehealth Forum, Athens
Implementation of cross-border eprescription services Päivi Hämäläinen, THL, Finland 14 May 2014 2014 ehealth Forum, Athens 28.1.2014 Päivi Hämäläinen, THL, 2014 ehealth Forum, Athens, 14 May 2014 2 IHE
Meeting the requirements of PCI DSS 3.2 standard to user authentication
Meeting the requirements of PCI DSS 3.2 standard to user authentication Using the Indeed Identity products for authentication In April 2016, the new PCI DSS 3.2 version was adopted. Some of this version
Java Card Approach to Emulate The Indonesian National Electronic ID Smart Cards
Scientific Journal of Informatics Vol. 5, No. 2, Nov 2018 p-issn 2407-7658 http://journal.unnes.ac.id/nju/index.php/sji e-issn 2460-0040 Java Card Approach to Emulate The Indonesian National Electronic
CRYPTEL - THE PRACTICAL PROTECTION OF AN EXISTING EZECI RONIC MAIL SYSTEM. Hedwig Cnudde. CRYPTECH NV/SA Project Management B-1050 Brussels, Belgium
CRYPTEL - THE PRACTICAL PROTECTION OF AN EXISTING EZECI RONIC MAIL SYSTEM Hedwig Cnudde CRYPTECH NV/SA Project Management B-1050 Brussels, Belgium ABSTRACI- This paper describes the practical protection
Credentialing Project Technical Architecture
Credentialing Project Technical Architecture Presented to Transportation Industry Association Stakeholder Meetings April 11-29, 2002 1 Agenda Overview of High Level Architecture Vision Components of Architecture