Whitepaper: GlobalTester Prove IS

Size: px
Start display at page:

Download "Whitepaper: GlobalTester Prove IS"

Transcription

1 Whitepaper: GlobalTester Prove IS Testing of EAC inspection systems By HJP Consulting GmbH Introduction There have been a lot of activities in standardization to define conformity tests for e-passports. Already in April 2007, the ICAO published their testing standards. As these technical reports only covered the mandatory functionality of e-passports, the European Union had set up its own test specification for EAC based passports, which digitally store sensitive fingerprint data. This conformance test specification is stable now. All these activities focus on improving the passports' interoperability. But what does "interoperability" mean? According to IEEE's glossary, "interoperability" is regarded as the ability of two components to exchange information and to use the information that has been exchanged. Thus, full interoperability cannot be achieved without testing the terminals. Although this statement is quite obvious, it has been deemed sufficient to test the terminals' interoperability at different test events. When we study other smart card systems like EMV schemes or the digital tachograph system to name only a few, we can easily observe that cards and terminals are subject to conformance testing and security evaluation before any interoperability test is run. Moreover, the number of possible EAC passport options selected cryptography and data group configurations has simply become too high to handle the problem with passport samples only and the internal status of these samples changes permanently during the tests. Status of conformance testing To achieve interoperability in border control systems it is necessary to test not only passports but also inspection systems. The first test specifications concerning inspection systems were limited to lower levels. The main specifications are BSI-TR03105 (Federal Office for Information Security, BSI) and RF protocol and application test standard for epassports Part 4 (International Civil Aviation Organization, ICAO). Both test specifications include tests of the electrical interface and the contactless ISO transmission protocol (layers 2-4). In any inspection system, a number of different components have to undergo testing. HJP Consulting 2010 Page 1 of 6

2 Currently, there is a test standard published by ICAO which defines tests for the electrical interface of the terminal and the contactless ISO transmission protocol. This technical report is referred to as part 3 of the e-passport test standard and is mainly based on the ISO standard for proximity cards. Working group 8 of ISO/SC17 revises ISO with the contents of this part 3. Besides the electrical communication, it is necessary to ensure that the data page contents, especially the machine-readable zone, are correctly read by the terminal. Currently, there are no test specifications available to verify that the passport s data page conforms to the ICAO standard DOC 9303 or to verify that the optical reader correctly retrieves this information from a data page. All these test specifications are insufficient since they can only guarantee that information is correctly exchanged between passport and reader. It is also necessary to verify that the terminal correctly uses the information exchanged. Thus, a test specification for the application of an inspection system is still missing in order to ensure interoperability. The German BSI and Brussels Interoperability Group (BIG) have recognized this unresolved issue and put it on their agenda. A first version (1.0) of this test specification with more than 200 test cases was discussed at two BIG meetings in Currently, version 1.2 of TR is available as a complete redesign of the technical guidelines in version 2.0 at the BSI website. General test concepts for inspection systems The wide variety of inspection systems available for use in different scenarios constitutes the main obstacle to a common test specification. There are different types of systems with varying workflows on the market. Test specifications have to cover stand-alone inspection terminals, client-server architectures with centrally managed security as well as mobile inspection solutions. Optical readers could be scanners, cameras or external swipe readers. And there could be an undefined number of external devices, backend and biometric verification systems connected to the system. The question therefore arises: is it practical to have one set of conformity tests for a diverse pool of inspection systems? We can overcome this problem by making the test model as generalized as possible and reusing concepts from existing test strategies where applicable. First of all, we define the device under test. Due to several different inspection system designs, we have to create a functional model (as shown in figure 1) and define which of the functions should be subject to testing and which should not be considered because they do not contribute to interoperability. The inspection application is regarded as the core of the inspection system which defines the functionality of the system, its internal workflow and user interaction. It also handles the inspection HJP Consulting 2010 Page 2 of 6

3 procedure itself. This procedure is a well defined function according to the technical report TR 03110, which is fundamental to all new EU passports. We have to distinguish between: the standard inspection procedure (SIP), for BAC encoded passports, and the advanced inspection procedure (AIP), for EAC encoded passports. In order to communicate with the e-passport, the inspection procedure makes use of the optical and electrical reading devices as well as a private key storage. It might have an optional test interface, which is used to automate the test procedures. Figure 1: General functional model of an inspection system The inspection application controls a man-machine interface which replicates the interaction with the border control officer. We assume the existence of such an interface because the system must somehow display to the officer the decision as to whether or not the passport is valid. HJP Consulting 2010 Page 3 of 6

4 It might be connected to other systems such as biometric verification systems or backend databases but these functions do not form part of the testing scope. With this model, we do not presume any specific architectural design or implementation. The scope of conformance testing can now be narrowed to the functionality that is directly involved in the communication between the passport and the inspection system: The contactless reader (proximity coupling device) implementing communication layers 1 to 4. This device should conform to ISO and is functionally tested by the ICAO e- passport test standard, part3. The inspection procedure implementing communication layers 6 and 7 specified by TR Tests are supposed to be specified by the Brussels Interoperability Group. Optical reading of the MRZ specified by DOC Tests for this interface will be specified by ISO/SC17/WG3. All other features of the inspection have to tested but not with respect to conformance to the standards and interoperability. With this test approach, the test cases must be in line with the normal inspection procedure. Thus, tests cannot be performed command by command but the test cases always have to run through the whole inspection procedure. Consequently, tests have to be pure black box test. For testing the inspection system, HJP follows the concept of an upper and lower tester as defined in ISO and enhance this concept to test the application layers. The test environment is illustrated in figure 2. Figure 2: Enhanced ISO test environment HJP Consulting 2010 Page 4 of 6

5 In this test environment, the test engineer starts a test case by placing a simulated passport, i.e. a data page with antenna, in the inspection system. The device under test performs a "normal" inspection procedure and sends commands to the simulated passport, which has been configured to fulfil the requirements of the selected test case. The simulator returns a well-defined response to the system. The observed result (passport valid or not) is entered by the tester into a test management system, which finally generates a test report. With this concept, it is also possible to formally verify the commands sent by the device for a further analysis. The BSI has introduced this test approach in their technical guideline TR-03105, part 5. The essential part of the whole test approach is the passport simulator that can emulate different configurations and behaviour of passports. The concept described above is implemented by HJP Consulting in their product GT Prove IS. This test tool includes a hardware simulator based on Comprion s CLT one product and complete implementation of all test cases from TR-03105, Part 5. This simulator has become the central building block of the GlobalTester Prove IS test tool that provides conformance testing for passport inspection systems according to TR-03105, part 5. The feasibility of the test approach had first been demonstrated at the Prague interoperability test event in 2008 using exactly GT Prove IS. The GT Prove IS has thus become the world's first conformance test tool for inspection systems. Supporting system tests for border control and air travel procedures The verification of e-passports, will primarily take place at border control checkpoints of international sea, land and air borders. E-passports can only be beneficial, if the encrypted information, stored on the chip, is also being read and verified. This requires an interface to a local certification authority (CA), since the inspection system must know the country signing and document signing certificates for each particular e-passport to be able to verify validity and authenticity 1. The amount of data needed and to be verified may depend on the actual application, e.g. may differ for check-in 2 compared to primary border control and secondary border control. To insure interoperability at border control points 1 HJP published a comprehensive white paper which covers the processes for key management and certification exchange in detail. The document has been developed on behalf of ICAO ICBWG to promote the ICAO Public Key Directory and is called A Primer on the ICAO Public Key Directory. The white paper can be downloaded from HJP s website at 2 The use of e-passport data for other applications than border control may differ by country based on data protection laws. HJP Consulting 2010 Page 5 of 6

6 worldwide, ICAO has set a number of standards for e-passports and e-passport inspection systems. To insure, that inspection systems perform as required, whereby the handling of encrypted data is of specific concern, test standards for the testing of e-passport inspection systems are in place. HJP s test tools conduct all required conformance tests for inspection systems based on latest ICAO/BSI test standards for the chip application, layer 6-7, which is the core component to verify next generation e-passports. The test tool, GT Prove IS, can be very beneficial for system integrators in the field of border control and air travel security throughout the integration testing of inspection systems. It is specifically designed to test the e-passport application component of the inspection system, thus insure interoperability towards the implementation into the overall border management or air travel security system. The test tool from HJP is based on an open source approach. Besides the standard test cases provided for the inspection system, the system integrator can further configure additional test procedures for layer 6-7 based on the GT platform using the Eclipse development environment for other test routines needed referring to a particular border control or airport specific test standard. HJP Consulting 2010 Page 6 of 6

CONFORMITY TESTING OF EAC INSPECTION SYSTEMS

CONFORMITY TESTING OF EAC INSPECTION SYSTEMS CONFORMITY TESTING OF EAC INSPECTION SYSTEMS By Dr. Michael Jahnich, Technical Director, HJP Consulting GmbH Testing the conformance of inspection systems for epassports is an ongoing and open issue. One

More information

EU Passport Specification

EU Passport Specification Biometrics Deployment of EU-Passports EU Passport Specification (EN) 28/06/2006 (As the United Kingdom and Ireland have not taken part in the adoption of this measure, an authentic English version of the

More information

Conformity and Interoperability Key Prerequisites for Security of eid documents. Holger Funke, 27 th April 2017, ID4Africa Windhoek

Conformity and Interoperability Key Prerequisites for Security of eid documents. Holger Funke, 27 th April 2017, ID4Africa Windhoek Conformity and Interoperability Key Prerequisites for Security of eid documents Holger Funke, 27 th April 2017, ID4Africa Windhoek Agenda 1. About secunet Security Networks AG 2. Timeline of interoperability

More information

This paper focuses on the issue of increased biometric content. We have also published a paper on inspection systems.

This paper focuses on the issue of increased biometric content. We have also published a paper on inspection systems. White Paper 1 INTRODUCTION As ICAO 1 -compliant epassports come into widespread use in Q4 of 2006, it is an appropriate moment to review some of the initiatives required for the next stage of development.

More information

BSI TR Part 1.1 A framework for Official Electronic ID Document conformity tests

BSI TR Part 1.1 A framework for Official Electronic ID Document conformity tests BSI TR-03105 Part 1.1 A framework for Official Electronic ID Document conformity tests Version 1.04.1 14.11.2008 CONTENTS 1 INTRODUCTION... 4 2 DEFINITIONS AND REFERENCES... 4 2.1 Definitions... 4 2.2

More information

Verifying emrtd Security Controls

Verifying emrtd Security Controls Blackhat Europe 2010 Verifying emrtd Security Controls Raoul D Costa 1 3M 2010. All Rights Reserved. Agenda Overview of ICAO / EU Specifications emrtds decomposed emrtd Infrastructure (PKI) Inspecting

More information

Document reader Regula 70X4M

Document reader Regula 70X4M Document reader Regula 70X4M Full page passport reader with no moving parts inside. Automatic reading and authenticity verification of passports, IDs, visas, driver s licenses and other identification

More information

Legal Regulations and Vulnerability Analysis

Legal Regulations and Vulnerability Analysis Legal Regulations and Vulnerability Analysis Bundesamt für Sicherheit in der Informationstechnik (BSI) (Federal Office for Information Security) Germany Introduction of the BSI National Authority for Information

More information

The EAC for MRTD. 26 January 2010

The EAC for MRTD. 26 January 2010 The EAC for MRTD Rafik Chaabouni Serge Vaudenay 26 January 2010 Outline MRTD? Standards - RFID - ICAO and BAC - EAC Solutions? 2 MRTD? Machine Readable Travel Document 3 Standards RFID ICAO and BAC EAC

More information

Advanced Security Mechanisms for Machine Readable Travel Documents and eidas Token

Advanced Security Mechanisms for Machine Readable Travel Documents and eidas Token Technical Guideline TR-03110-1 Advanced Security Mechanisms for Machine Readable Travel Documents and eidas Token Part 1 emrtds with BAC/PACEv2 and EACv1 Version 2.20 26. February 2015 History Version

More information

LDS2 Concept and Overview: Exploring Possibilities in Travel Border Clearance

LDS2 Concept and Overview: Exploring Possibilities in Travel Border Clearance LDS2 Concept and Overview: Exploring Possibilities in Travel Border Clearance Overview Current generation of epassports Benefits and Limits of an epassport Overview of the next generation epassport Applications

More information

STATUS: For NP ballot for development as a Type 2 Technical Report.

STATUS: For NP ballot for development as a Type 2 Technical Report. ISO/IEC JTC1/SC17 2002-03-27 Cards and personal identification ISO/IEC JTC1/SC17 N 2094 DOCUMENT TYPE : NP BALLOT TITLE: Ballot - Proposal for a New Work Item Personal identification - Machine-Assisted

More information

Technology Advances in Authentication. Mohamed Lazzouni, SVP & CTO

Technology Advances in Authentication. Mohamed Lazzouni, SVP & CTO Technology Advances in Authentication Mohamed Lazzouni, SVP & CTO Outline Optical Authentication Complexity of security features and their evolution Computing and optics Document analysis techniques Automation

More information

Introduction to Electronic Identity Documents

Introduction to Electronic Identity Documents Tutorial Introduction to Electronic Identity Documents Klaus Schmeh cryptovision I'm Klaus Schmeh, Chief Editor Marketing at cryptovision. I have published a number of books. Identity Documents Conventional

More information

Can eid card make life easier and more secure? Michal Ševčík Industry Solution Consultant Hewlett-Packard, Slovakia ITAPA, November 9 th, 2010

Can eid card make life easier and more secure? Michal Ševčík Industry Solution Consultant Hewlett-Packard, Slovakia ITAPA, November 9 th, 2010 Can eid card make life easier and more secure? Michal Ševčík Industry Solution Consultant Hewlett-Packard, Slovakia ITAPA, November 9 th, 2010 Content eid Primary Functions eid Privacy Features and Security

More information

MDR-1 Mobile Document Reader

MDR-1 Mobile Document Reader MDR-1 Mobile Document Reader SPC_MDR-1 1/7 Mobile Document Reader MDR-1 Security Printing Consulting AG The new MDR-1 document reader fulfill the needs for fast and reliable reading, verification and authentication

More information

Roadmap for Implementation of New Specifications for MRTDs

Roadmap for Implementation of New Specifications for MRTDs for MRTDs For Publication on the ICAO Website Roadmap for Implementation of New Specifications for MRTDs DISCLAIMER: All reasonable precautions have been taken by the International Civil Aviation Organization

More information

The epassport: What s Next?

The epassport: What s Next? The epassport: What s Next? Justin Ikura LDS2 Policy Sub-Group Co-chair Tom Kinneging Convenor of ISO/IEC JTC1 SC17 WG3 International Organization for Standardization (ISO) Strengthening Aviation Security

More information

2 Electronic Passports and Identity Cards

2 Electronic Passports and Identity Cards 2 Picture source: www.bundesdruckerei.de Paper based Passport Radio Frequency (RF) Chip Electronic Passport (E Pass) Biographic data Human readable Partially machine readable (optically) Conventional

More information

Test Report. For the participants of the SDW InterOp Final Report, secunet Security Networks AG

Test Report. For the participants of the SDW InterOp Final Report, secunet Security Networks AG Test Report For the participants of the SDW InterOp 2013 Final Report, 2013.06.30 secunet Security Networks AG Copyright 2013 by secunet Security Networks AG 2 Final Report, 2013.06.30 SDW InterOp 2013

More information

COMPGA12 1 TURN OVER

COMPGA12 1 TURN OVER Applied Cryptography, COMPGA12, 2009-10 Answer ALL questions. 2 hours. Marks for each part of each question are indicated in square brackets Calculators are NOT permitted 1. Multiple Choice Questions.

More information

Security of Biometric Passports ECE 646 Fall Team Members : Aniruddha Harish Divya Chinthalapuri Premdeep Varada

Security of Biometric Passports ECE 646 Fall Team Members : Aniruddha Harish Divya Chinthalapuri Premdeep Varada Security of Biometric Passports ECE 646 Fall 2013 Team Members : Aniruddha Harish Divya Chinthalapuri Premdeep Varada CONTENTS Introduction to epassports Infrastructure required for epassports Generations

More information

eid Consulting References

eid Consulting References eid Consulting References Selection of References We are renown for running eid, epassport, eborder projects MOI Germany President of Nigeria Royal Oman Police MOI of U..A.E. MOI of Sudan European Commission

More information

A National Public Key Directory

A National Public Key Directory A National Public Key Directory Version 1.0 definite Date 21 July 2015 Author Jeen de Swart Judicial Information services Ministry of Security and Justice, Netherlands ABSTRACT This white paper is about

More information

TECHNICAL ADVISORY GROUP ON MACHINE READABLE TRAVEL DOCUMENTS (TAG/MRTD)

TECHNICAL ADVISORY GROUP ON MACHINE READABLE TRAVEL DOCUMENTS (TAG/MRTD) International Civil Aviation Organization INFORMATION PAPER TAG/MRTD/20-IP/4 22/08/11 English Only TECHNICAL ADVISORY GROUP ON MACHINE READABLE TRAVEL DOCUMENTS (TAG/MRTD) TWENTIETH MEETING Montréal, 7

More information

How To Secure Electronic Passports. Marc Witteman & Harko Robroch Riscure 02/07/07 - Session Code: IAM-201

How To Secure Electronic Passports. Marc Witteman & Harko Robroch Riscure 02/07/07 - Session Code: IAM-201 How To Secure Electronic Passports Marc Witteman & Harko Robroch Riscure 02/07/07 - Session Code: IAM-201 Other personal info on chip Other less common data fields that may be in your passport Custody

More information

3D Face Project. Overview. Paul Welti. Sagem Défense Sécurité Technical coordinator. ! Background. ! Objectives. ! Workpackages

3D Face Project. Overview. Paul Welti. Sagem Défense Sécurité Technical coordinator. ! Background. ! Objectives. ! Workpackages 3D Face Project Paul Welti Sagem Défense Sécurité Technical coordinator Overview! Background! Objectives! Workpackages 2 1 ! Biometric epassport Biometrics and Border Control! EU-Council Regulation No

More information

Security Target Lite SK e-pass V1.0

Security Target Lite SK e-pass V1.0 Ref.: Security Target Lite SK e-pass V1.0 Table of Contents 1 INTRODUCTION... 6 1.1 ST AND ST-LITE IDENTIFICATION... 6 1.2 TOE IDENTIFICATION... 6 1.3 CC AND PP CONFORMANCE... 6 1.4 CONVENTIONS... 7 1.5

More information

Chip Authentication for E-Passports: PACE with Chip Authentication Mapping v2

Chip Authentication for E-Passports: PACE with Chip Authentication Mapping v2 v.2 Chip Authentication for s: with Chip Authentication Mapping v2 Lucjan Mirosław Wrocław University of Science and Technology, Poland ISC 2016, Honolulu Electronic Passport v.2 e-passport and ebooth:

More information

Certification Report. EAL 4+ (ALC_DVS.2) Evaluation of TÜBİTAK BİLGEM UEKAE. AKİS v1.4i PASAPORT

Certification Report. EAL 4+ (ALC_DVS.2) Evaluation of TÜBİTAK BİLGEM UEKAE. AKİS v1.4i PASAPORT Certification Report EAL 4+ (ALC_DVS.2) Evaluation of TÜBİTAK BİLGEM UEKAE AKİS v1.4i PASAPORT issued by Turkish Standards Institution Common Criteria Certification Scheme SOFTWARE TEST and CERTIFICATION

More information

Machine Authentication of MRTDs for Public Sector Applications

Machine Authentication of MRTDs for Public Sector Applications Technical Guideline BSI TR-03135 Machine Authentication of MRTDs for Public Sector Applications Part 2: Application profiles for official document inspection systems BSI TR-03135-2 Version 2.1.0 Federal

More information

An Overview of Electronic Passport Security Features

An Overview of Electronic Passport Security Features An Overview of Electronic Passport Security Features Zdeněk Říha Faculty of Informatics, Masaryk University, Botanická 68A, 602 00 Brno, Czech Republic zriha@fi.muni.cz Abstract. Electronic passports include

More information

Test plan for eid and esign compliant smart card readers with integrated EACv2

Test plan for eid and esign compliant smart card readers with integrated EACv2 Technical Guideline BSI TR-03105 Part 5.2 Test plan for eid and esign compliant smart card readers with integrated EACv2 Version: 2.0 Date: 2015-05-22 Bundesamt für Sicherheit in der Informationstechnik

More information

Part 9: Deployment of Biometric Identification and Electronic Storage of Data in MRTDs

Part 9: Deployment of Biometric Identification and Electronic Storage of Data in MRTDs Doc 9303 Machine Readable Travel Documents Seventh Edition, 2015 Part 9: Deployment of Biometric Identification and Electronic Storage of Data in MRTDs Approved by and published under the authority of

More information

Security Target Lite for CEITEC epassport Module CTC21001 with EAC

Security Target Lite for CEITEC epassport Module CTC21001 with EAC Security Target Lite for CEITEC epassport Module CTC21001 with EAC Version 2.0 12/Dec/2016 Document History 1.0 First version 2.0 Clarifications to section 7.1 CEITECSA 5.410.052 1 Table of contents 1

More information

Common Criteria Protection Profile

Common Criteria Protection Profile Common Criteria Protection Profile Machine-Readable Electronic Documents based on BSI TR-03110 for Official Use [MR.ED-PP] BSI-CC-PP-0087-V2 Version 2.0.2 Document history Version 2.0.2, April 4th, 2016

More information

Overview of cryptovision's eid Product Offering. Presentation & Demo

Overview of cryptovision's eid Product Offering. Presentation & Demo Presentation & Demo Benjamin Drisch, Adam Ross cv cryptovision GmbH T: +49 (0) 209.167-24 50 F: +49 (0) 209.167-24 61 info(at)cryptovision.com 1 General Requirements Government of Utopia Utopia Electronic

More information

Machine Assisted Document Security Verification

Machine Assisted Document Security Verification Machine Assisted Document Security Verification Dr. Uwe Seidel Germany New Technologies Working Group (NTWG) TAG/MRTD 20 20 th Meeting of the Technical Advisory Group on Machine Readable Travel Documents

More information

E-Passport Validation: A practical experience

E-Passport Validation: A practical experience E-Passport Validation: A practical experience R Rajeshkumar International Organization for Standardization (ISO) ICAO TRIP: Making the Air Travel more Secure and Efficient TOWARDS A BETTER TRAVELLER IDENTIFICATION

More information

cryptovision s Government Solutions Adam Ross, Ben Drisch cryptovision GmbH

cryptovision s Government Solutions Adam Ross, Ben Drisch cryptovision GmbH cryptovision s Government Solutions Adam Ross, Ben Drisch cryptovision GmbH cv cryptovision GmbH T: +49 (0) 209.167-24 50 F: +49 (0) 209.167-24 61 info(at)cryptovision.com 1 cryptovision cryptovision Gelsenkirchen

More information

Biometric Passport from a Security Perspective

Biometric Passport from a Security Perspective Biometric Passport from a Security Perspective Gildas Avoine INSA Rennes/IRISA Institut Universitaire de France SUMMARY Passport Primer Memory Content Cryptographic Mechanisms defined by ICAO Additional

More information

Common Criteria Protection Profile

Common Criteria Protection Profile Common Criteria Protection Profile Machine-Readable Electronic Documents based on BSI TR-03110 for Official Use [MR.ED-PP] BSI-CC-PP-0087 Document history Version 1.01, May 20th, 2015 Federal Office for

More information

TECHNICAL ADVISORY GROUP ON MACHINE READABLE TRAVEL DOCUMENTS (TAG/MRTD)

TECHNICAL ADVISORY GROUP ON MACHINE READABLE TRAVEL DOCUMENTS (TAG/MRTD) International Civil Aviation Organization WORKING PAPER TAG/MRTD/22-WP/8 16/04/14 English Only TECHNICAL ADVISORY GROUP ON MACHINE READABLE TRAVEL DOCUMENTS (TAG/MRTD) TWENTY-SECOND MEETING Montréal, 21

More information

Introduction of the Seventh Edition of Doc 9303

Introduction of the Seventh Edition of Doc 9303 Introduction of the Seventh Edition of Doc 9303 Sjef Broekhaar Advisor ICAO TRIP IRAN SEMINAR Kish Island 17/05/2016 Footer 1 July 2015: ICAO publishes the 7th edition of Doc 9303 Part 1 Part 2 Part 3

More information

An Overview of Electronic Passport Security Features

An Overview of Electronic Passport Security Features An Overview of Electronic Passport Security Features Zdeněk Říha Faculty of Informatics, Masaryk University, Botanická 68A, 602 00 Brno, Czech Republic zriha@fi.muni.cz Abstract. Electronic passports include

More information

A distributed mobile solution with three components: a Capture/Display device a Fullpage Passport scanner and a Central system

A distributed mobile solution with three components: a Capture/Display device a Fullpage Passport scanner and a Central system A distributed mobile solution with three components: a Capture/Display device a Fullpage Passport scanner and a Central system D.I. Bernhard Strobl Department Safety and Security MobilePass A secure, modular

More information

The New Seventh Edition of Doc Barry J. Kefauver Nairobi, Kenya November 2015

The New Seventh Edition of Doc Barry J. Kefauver Nairobi, Kenya November 2015 The New Seventh Edition of Doc 9303 Barry J. Kefauver Nairobi, Kenya November 2015 July 2015 ICAO published the 7 th edition of Doc 9303 Part 1 Part 2 Part 3 Part 4 Part 5 Part 6 Part 7 Part 8 Part 9

More information

E-Passport validation: A practical experience

E-Passport validation: A practical experience E-Passport validation: A practical experience R Rajeshkumar Implementation & Capacity Building Working Group Antigua & Barbuda ICAO TRIP Regional Seminar Note This is an edited version of the presentation

More information

VALIDATING E-PASSPORTS AT THE BORDER: THE ROLE OF THE PKD R RAJESHKUMAR CHIEF EXECUTIVE AUCTORIZIUM PTE LTD

VALIDATING E-PASSPORTS AT THE BORDER: THE ROLE OF THE PKD R RAJESHKUMAR CHIEF EXECUTIVE AUCTORIZIUM PTE LTD VALIDATING E-PASSPORTS AT THE BORDER: THE ROLE OF THE PKD R RAJESHKUMAR CHIEF EXECUTIVE AUCTORIZIUM PTE LTD THE TRUST IMPERATIVE E-Passports are issued by entities that assert trust Trust depends on the

More information

Security Target Lite for CEITEC epassport Module CTC21001 with BAC

Security Target Lite for CEITEC epassport Module CTC21001 with BAC Security Target Lite for CEITEC epassport Module CTC21001 with BAC Version 3.0 07/Dec/2016 Document History 1.0 Initial version 2.0 Minor corrections 3.0 Clarifications to section 7.1 CEITECSA 5.410.051

More information

E-PASSPORT SCHEME USING AUTHENTICATION PROTOCOLS ALONG WITH FACE, FINGERPRINT, PALMPRINT AND IRIS BIOMETRICS

E-PASSPORT SCHEME USING AUTHENTICATION PROTOCOLS ALONG WITH FACE, FINGERPRINT, PALMPRINT AND IRIS BIOMETRICS E-PASSPORT SCHEME USING AUTHENTICATION PROTOCOLS ALONG WITH FACE, FINGERPRINT, PALMPRINT AND IRIS BIOMETRICS 1 V.K. Narendira Kumar and 2 B. Srinivasan 1 Assistant Professor, Department of Information

More information

Certification Report

Certification Report TÜV Rheinland Nederland B.V. Version 2016-2 Certification Report Mercury epassport v1.16 Sponsor and developer: Infineon Technologies AG Am Campeon 5 D-85579 Neubiberg Germany Evaluation facility: Brightsight

More information

JTC 1 SC 37 Biometrics International Standards

JTC 1 SC 37 Biometrics International Standards JTC 1 SC 37 Biometrics International Standards Dr. Stephen Elliott Biometrics Standards, Performance, and Assurance Laboratory Purdue University www.bspalabs.org Overview Market Opportunities for Biometric

More information

NFC. control time RFID. copy protection. Barcode. Security. App. Quick control. NFC eco system ISO Secure Element. Near Field Communication

NFC. control time RFID. copy protection. Barcode. Security. App. Quick control. NFC eco system ISO Secure Element. Near Field Communication Quick control Casual users App mobile ticketing NFC Smartphone OPTIMOS Investment protection RFID control time Ticket issuing mobile network Data transfer Ticket purchase existing infrastructure Security

More information

Common Criteria Protection Profile. Machine Readable Travel Document with ICAO Application, Extended Access Control BSI-CC-PP-0056

Common Criteria Protection Profile. Machine Readable Travel Document with ICAO Application, Extended Access Control BSI-CC-PP-0056 Common Criteria Protection Profile Machine Readable Travel Document with ICAO Application, Extended Access Control BSI-CC-PP-0056 Foreword This Protection Profile Machine Readable Travel Document with

More information

Security Mechanisms and Access Control Infrastructure for e-passports and General Purpose e-documents

Security Mechanisms and Access Control Infrastructure for e-passports and General Purpose e-documents Journal of Universal Computer Science, vol. 15, no. 5 (2009), 970-991 submitted: 1/8/08, accepted: 28/2/09, appeared: 1/3/09 J.UCS Security Mechanisms and Access Control Infrastructure for e-passports

More information

BIOFLEX. Applications

BIOFLEX. Applications HARDWARE BIOFLEX Bioflex is an essential tool for identity verification operations of a modern state. This identification device for persons is guarantor for population census, polling offices or police

More information

Presentation of the Interoperability specification for ICCs and Personal Computer Systems, Revision 2.0

Presentation of the Interoperability specification for ICCs and Personal Computer Systems, Revision 2.0 PC/SC Workgroup White Paper Presentation of the Interoperability specification for ICCs and Personal Computer Systems, Revision 2.0 Abstract This document presents the upcoming revision 2.0 of the Interoperability

More information

Electronic passports

Electronic passports Electronic passports Zdeněk Říha, Václav Matyáš, Petr Švenda Faculty of Informatics, Masaryk University, Brno, Czech Republic {zriha,matyas,svenda}@fi.muni.cz February 2008 A number of countries have been

More information

Comprehensive Study on Cybercrime

Comprehensive Study on Cybercrime Federal Ministry of Justice and 17 August 2016 Consumer Protection German Comments on the Comprehensive Study on Cybercrime (Draft February 2013) The United Nations Office on Drugs and Crime (UNODC) invited

More information

An emrtd inspection system on Android. Design, implementation and evaluation

An emrtd inspection system on Android. Design, implementation and evaluation An emrtd inspection system on Android Design, implementation and evaluation Halvdan Hoem Grelland Master s Thesis Spring 2016 An emrtd inspection system on Android Halvdan Hoem Grelland 2nd May 2016 ii

More information

Security Mechanism of Electronic Passports. Petr ŠTURC Coesys Research and Development

Security Mechanism of Electronic Passports. Petr ŠTURC Coesys Research and Development Security Mechanism of Electronic Passports Petr ŠTURC Coesys Research and Development Smartcard CPU 16/32 bit 3.57MHz (20MHz) 1.8 / 3/ 5 V ROM 16-300 kb RAM 1-8 kb EEPROM 8-128kB Contactless communication

More information

SWAMID Person-Proofed Multi-Factor Profile

SWAMID Person-Proofed Multi-Factor Profile Document SWAMID Person-Proofed Multi-Factor Profile Identifier http://www.swamid.se/policy/assurance/al2mfa Version V1.0 Last modified 2018-09-12 Pages 10 Status FINAL License Creative Commons BY-SA 3.0

More information

MULTIAPP V2 PACE - SAC PUBLIC SECURITY TARGET

MULTIAPP V2 PACE - SAC PUBLIC SECURITY TARGET MultiApp v2 Pace SAC Common Criteria / ISO 15408 Security Target Public version EAL4+ Copyright Gemalto SA 2012. Page : 1/50 CONTENT 1. ST INTRODUCTION... 4 1.1 ST IDENTIFICATION... 4 1.2 ST OVERVIEW...

More information

This document is a preview generated by EVS

This document is a preview generated by EVS INTERNATIONAL STANDARD ISO/IEC 18013-3 Second edition 2017-04 Information technology Personal identification ISO-compliant driving licence Part 3: Access control, authentication and integrity validation

More information

Hash-based Encryption Algorithm to Protect Biometric Data in e-passport

Hash-based Encryption Algorithm to Protect Biometric Data in e-passport Hash-based Encryption Algorithm to Protect Biometric Data in e-passport 1 SungsooKim, 2 Hanna You, 3 Jungho Kang, 4 Moonseog Jun 1, First Author Soongsil University, Republic of Korea, indielazy@ssu.ac.kr

More information

Air Transport & Travel Industry. Principles, Functional and Business Requirements PNRGOV

Air Transport & Travel Industry. Principles, Functional and Business Requirements PNRGOV Air Transport & Travel Industry Principles, Functional and Business Requirements Version 15.1 Endorsed by WCO Council in July 2016 Table of Contents 1 INTRODUCTION... 3 1.1 PURPOSE... 3 1.2 SCOPE... 3

More information

1. Publishable Summary

1. Publishable Summary 1. Publishable Summary 1.1Project objectives and context Identity management (IdM) has emerged as a promising technology to distribute identity information across security domains. In e-business scenarios,

More information

10. Software Testing Fundamental Concepts

10. Software Testing Fundamental Concepts 10. Software Testing Fundamental Concepts Department of Computer Science and Engineering Hanyang University ERICA Campus 1 st Semester 2016 Testing in Object-Oriented Point of View Error Correction Cost

More information

Market Trends and Veridos solutions for epassports & ID Documents

Market Trends and Veridos solutions for epassports & ID Documents Market Trends and Veridos solutions for epassports & ID Documents Ludger Holtmann, Senior Product & Portfolio Manager Michael Ruhland-Bauer, Head of Product Mangement Documents Agenda Introducing Veridos

More information

Thirteenth Symposium on the ICAO Traveller Identification Programme

Thirteenth Symposium on the ICAO Traveller Identification Programme Thirteenth Symposium on the ICAO Traveller Identification Programme Counter-Terrorism Committee Executive Directorate (CTED) United Nations ICAO Headquarters, Montreal, 24-26 October 2017 Briefly about

More information

Past & Future Issues in Smartcard Industry

Past & Future Issues in Smartcard Industry Past & Future Issues in Smartcard Industry Ecrypt 2 Summer School Guillaume Dabosville Oberthur Technologies Oberthur Technologies the group its divisions payment, mobile, transport and digital TV markets

More information

National Biometric Security Project

National Biometric Security Project National Biometric Security Project Activity Update: 2003-2005 Biometric Consortium Conference 2005 National Biometric Security Project Mission Assist government and private sector organizations deter

More information

Q&A Genuine-ID. Answers. Questions

Q&A Genuine-ID. Answers. Questions Q&A Genuine-ID Questions Answers 1. What is Genuine-ID? Genuine-ID is a software package for the automated authentication of ID documents (IDs). It automatically extracts any kind of relevant data from

More information

MACHINE READABLE TRAVEL DOCUMENTS

MACHINE READABLE TRAVEL DOCUMENTS MACHINE READABLE TRAVEL DOCUMENTS ADVANCED SECURITY MECHANISMS FOR MACHINE READABLE TRAVEL DOCUMENTS EXTENDED ACCESS CONTROL (EACv1) COMPLEMENTARY TO TEST METHODS FOR MRTDs USING STATIC BINDING Version

More information

Towards a better solution for Border Guards. D.I. Bernhard Strobl Department Digital Safety and Security

Towards a better solution for Border Guards. D.I. Bernhard Strobl Department Digital Safety and Security Towards a better solution for Border Guards D.I. Bernhard Strobl Department Digital Safety and Security MobilePass A secure, modular and distributed mobile border control solution for European land border

More information

General Data Protection Regulation April 3, Sarah Ackerman, Managing Director Ross Patz, Consultant

General Data Protection Regulation April 3, Sarah Ackerman, Managing Director Ross Patz, Consultant General Data Protection Regulation April 3, 2018 Sarah Ackerman, Managing Director Ross Patz, Consultant Introductions Sarah Ackerman, CISSP, CISA Managing Director, Cincinnati Responsible for overall

More information

Java Card Approach to Emulate The Indonesian National Electronic ID Smart Cards

Java Card Approach to Emulate The Indonesian National Electronic ID Smart Cards Scientific Journal of Informatics Vol. 5, No. 2, Nov 2018 p-issn 2407-7658 http://journal.unnes.ac.id/nju/index.php/sji e-issn 2460-0040 Java Card Approach to Emulate The Indonesian National Electronic

More information

SPass NX V1.0 on S3CT9KW/S3CT9KC/S3CT9K9 Certification Report

SPass NX V1.0 on S3CT9KW/S3CT9KC/S3CT9K9 Certification Report KECS-CR-12-38 SPass NX V1.0 on S3CT9KW/S3CT9KC/S3CT9K9 Certification Report Certification No.: KECS-ISIS-0394-2012 2012. 6. 15 IT Security Certification Center History of Creation and Revision No. Date

More information

Integrated Aeronautical Information database

Integrated Aeronautical Information database Integrated Aeronautical Information database Workshop for the development of Operational skills for the transition from AIS to AIM for Civil Aviation Authorities (CAA) and Air Navigation Service Providers

More information

Interoperability Specification for ICCs and Personal Computer Systems

Interoperability Specification for ICCs and Personal Computer Systems Interoperability Specification for ICCs and Personal Computer Systems Part 10 IFDs with Secure PIN Entry Capabilities Gemalto HID Global Identive NXP Semiconductors N.V. Oracle America Revision 2.02.08

More information

Biometric Enrolment for the European Visa Informationsystem (VIS)

Biometric Enrolment for the European Visa Informationsystem (VIS) Biometric Enrolment for the European Visa Informationsystem (VIS) German Experiences 1 EU Visa Information System (VIS) Federal Foreign Office Visa Application EU VIS Border Police Border Control Territory

More information

Towards e-passport Duplicate Enrolment Check in the European Union

Towards e-passport Duplicate Enrolment Check in the European Union 2013 European Intelligence and Security Informatics Conference Towards e-passport Duplicate Enrolment Check in the European Union Moazzam Butt, Sandra Marti, Alexander Nouak,Jörg Köplin, R. Raghavendra

More information

Common Criteria Protection Profile. Machine Readable Travel Document using Standard Inspection Procedure with PACE (PACE PP)

Common Criteria Protection Profile. Machine Readable Travel Document using Standard Inspection Procedure with PACE (PACE PP) Machine Readable Travel Document using Standard Inspection Procedure with PACE (PACE PP) Version 1.0, 2nd November 2011 Foreword This Protection Profile Electronic Passport using Standard Inspection procedure

More information

The European Union approach to Biometrics

The European Union approach to Biometrics The European Union approach to Biometrics gerald.santucci@cec.eu.int Head of Unit Trust & Security European Commission Directorate General Information Society The Biometric Consortium Conference 2003 1

More information

Interview with Fernando Podio Chair of ISO/IEC JTC 1 SC 37 Subcommittee on Biometrics

Interview with Fernando Podio Chair of ISO/IEC JTC 1 SC 37 Subcommittee on Biometrics Interview with Fernando Podio Chair of ISO/IEC JTC 1 SC 37 Subcommittee on Biometrics In addition to his chairmanship of SC37, Mr. Podio is a member of the Computer Security Division of the Information

More information

ID-Star 4054 epassport Reader

ID-Star 4054 epassport Reader ID-Star 4054 epassport Reader Instruction manual Bedienungsanleitung Revision 0.91 o Océ Document Technologies GmbH Océ Document Technologies GmbH Max-Stromeyer-Strasse 116 D-78467 Konstanz Tel.: +49 (0)

More information

Information technology Security techniques Telebiometric authentication framework using biometric hardware security module

Information technology Security techniques Telebiometric authentication framework using biometric hardware security module INTERNATIONAL STANDARD ISO/IEC 17922 First edition 2017-09 Information technology Security techniques Telebiometric authentication framework using biometric hardware security module Technologies de l information

More information

SEVIS Name Changes and Social Security Information Fact Sheet

SEVIS Name Changes and Social Security Information Fact Sheet The Student and Exchange Visitor Program (SEVP) will modify the name standards in the Student and Exchange Visitor Information System (SEVIS), effective June 26, 2015. At this time, the format of the Forms

More information

World-Check One. Quick Reference Guide Screening and Case Manager

World-Check One. Quick Reference Guide Screening and Case Manager World-Check One Quick Reference Guide Screening and Case Manager Contents Screening Page Overview... 2 Case Manager Page Overview... 3 Case Page Overview... 4 Case Toolbar... 5 Logging In... 6 Log In...

More information

ID Security Made in Germany Holistic Solutions for Biometric Systems and Identity Documents

ID Security Made in Germany Holistic Solutions for Biometric Systems and Identity Documents ID Security Made in Germany Holistic Solutions for Biometric Systems and Identity Documents 3 Your Personal Identity: Unique, Secure, Multifaceted Every person has individual characteristics by which

More information

Testing and Certification Procedure

Testing and Certification Procedure A PM 101E April 2011 Guideline for the Testing and Certification Procedure of the VDE Testing and Certification Institute (VDE Institute) (For information purpose only. In any case the German version shall

More information

ISO/IEC INTERNATIONAL STANDARD. Identification cards Machine readable travel documents Part 3: Machine readable official travel documents

ISO/IEC INTERNATIONAL STANDARD. Identification cards Machine readable travel documents Part 3: Machine readable official travel documents INTERNATIONAL STANDARD ISO/IEC 7501-3 Second edition 2005-10-15 Identification cards Machine readable travel documents Part 3: Machine readable official travel documents Cartes d'identification Documents

More information

The Future of Smart Cards: Bigger, Faster and More Secure

The Future of Smart Cards: Bigger, Faster and More Secure The Future of Smart Cards: Bigger, Faster and More Secure Joerg Borchert, Vice President, Secure Mobile Solutions July 16, 2003 Page 1 N e v e r s t o p t h i n k i n g. Infineon Technologies: Overview

More information

TWIC Readers What to Expect

TWIC Readers What to Expect TWIC Readers What to Expect Walter Hamilton Chairman International Biometric Industry Association Walter Hamilton International Biometric Industry Association 1155 F Street, NW Washington, DC 20004 (727)

More information

White Paper Implementing mobile electronic identity

White Paper Implementing mobile electronic identity Implementing mobile electronic identity A DXC Enterprise approach based on hardware token microsd card Table of contents Secure Element form factors in mobile devices 2 Other alternatives for implementing

More information

CREDENTSYS CARD FAMILY

CREDENTSYS CARD FAMILY CREDENTSYS CARD FAMILY Credentsys is a secure smart card family that is designed for national ID systems, passports, and multi-use enterprise security environments. The family is certified to FIPS 140-2

More information

Thirteenth Symposium and Exhibition on the ICAO Traveller Identification Programme (TRIP)

Thirteenth Symposium and Exhibition on the ICAO Traveller Identification Programme (TRIP) Thirteenth Symposium and Exhibition on the ICAO Traveller Identification Programme (TRIP) Advance Passenger Information (API) Workshop Fabrizio Di Carlo INTERPOL 26 October 2017 OBJECTIVES Matching passenger

More information

IS23SC4439 Preliminary. 1K bytes EEPROM Contactless Smart Card Conform to ISO/IEC 14443A Standard. Table of contents

IS23SC4439 Preliminary. 1K bytes EEPROM Contactless Smart Card Conform to ISO/IEC 14443A Standard. Table of contents 1K bytes EEPROM Contactless Smart Card Conform to ISO/IEC 14443A Standard Table of contents 1 Features 2 2 General Description 2 3 Typical Transaction Time 2 4 Functional Description 2 41 Block Description

More information

Introduction to the ENTSOG Common Data Exchange Solutions

Introduction to the ENTSOG Common Data Exchange Solutions Introduction to the ENTSOG Common Data Exchange Solutions Version 0 Revision 0 ENTSOG AISBL ; Av. de Cortenbergh 100, 1000-Brussels ; Tel : +32 2 894 5100 ; Fax : +32 2 894 5101; http : entsog.eu info@entsog.eu,,

More information