Whitepaper: GlobalTester Prove IS
|
|
- Kelley Simmons
- 6 years ago
- Views:
Transcription
1 Whitepaper: GlobalTester Prove IS Testing of EAC inspection systems By HJP Consulting GmbH Introduction There have been a lot of activities in standardization to define conformity tests for e-passports. Already in April 2007, the ICAO published their testing standards. As these technical reports only covered the mandatory functionality of e-passports, the European Union had set up its own test specification for EAC based passports, which digitally store sensitive fingerprint data. This conformance test specification is stable now. All these activities focus on improving the passports' interoperability. But what does "interoperability" mean? According to IEEE's glossary, "interoperability" is regarded as the ability of two components to exchange information and to use the information that has been exchanged. Thus, full interoperability cannot be achieved without testing the terminals. Although this statement is quite obvious, it has been deemed sufficient to test the terminals' interoperability at different test events. When we study other smart card systems like EMV schemes or the digital tachograph system to name only a few, we can easily observe that cards and terminals are subject to conformance testing and security evaluation before any interoperability test is run. Moreover, the number of possible EAC passport options selected cryptography and data group configurations has simply become too high to handle the problem with passport samples only and the internal status of these samples changes permanently during the tests. Status of conformance testing To achieve interoperability in border control systems it is necessary to test not only passports but also inspection systems. The first test specifications concerning inspection systems were limited to lower levels. The main specifications are BSI-TR03105 (Federal Office for Information Security, BSI) and RF protocol and application test standard for epassports Part 4 (International Civil Aviation Organization, ICAO). Both test specifications include tests of the electrical interface and the contactless ISO transmission protocol (layers 2-4). In any inspection system, a number of different components have to undergo testing. HJP Consulting 2010 Page 1 of 6
2 Currently, there is a test standard published by ICAO which defines tests for the electrical interface of the terminal and the contactless ISO transmission protocol. This technical report is referred to as part 3 of the e-passport test standard and is mainly based on the ISO standard for proximity cards. Working group 8 of ISO/SC17 revises ISO with the contents of this part 3. Besides the electrical communication, it is necessary to ensure that the data page contents, especially the machine-readable zone, are correctly read by the terminal. Currently, there are no test specifications available to verify that the passport s data page conforms to the ICAO standard DOC 9303 or to verify that the optical reader correctly retrieves this information from a data page. All these test specifications are insufficient since they can only guarantee that information is correctly exchanged between passport and reader. It is also necessary to verify that the terminal correctly uses the information exchanged. Thus, a test specification for the application of an inspection system is still missing in order to ensure interoperability. The German BSI and Brussels Interoperability Group (BIG) have recognized this unresolved issue and put it on their agenda. A first version (1.0) of this test specification with more than 200 test cases was discussed at two BIG meetings in Currently, version 1.2 of TR is available as a complete redesign of the technical guidelines in version 2.0 at the BSI website. General test concepts for inspection systems The wide variety of inspection systems available for use in different scenarios constitutes the main obstacle to a common test specification. There are different types of systems with varying workflows on the market. Test specifications have to cover stand-alone inspection terminals, client-server architectures with centrally managed security as well as mobile inspection solutions. Optical readers could be scanners, cameras or external swipe readers. And there could be an undefined number of external devices, backend and biometric verification systems connected to the system. The question therefore arises: is it practical to have one set of conformity tests for a diverse pool of inspection systems? We can overcome this problem by making the test model as generalized as possible and reusing concepts from existing test strategies where applicable. First of all, we define the device under test. Due to several different inspection system designs, we have to create a functional model (as shown in figure 1) and define which of the functions should be subject to testing and which should not be considered because they do not contribute to interoperability. The inspection application is regarded as the core of the inspection system which defines the functionality of the system, its internal workflow and user interaction. It also handles the inspection HJP Consulting 2010 Page 2 of 6
3 procedure itself. This procedure is a well defined function according to the technical report TR 03110, which is fundamental to all new EU passports. We have to distinguish between: the standard inspection procedure (SIP), for BAC encoded passports, and the advanced inspection procedure (AIP), for EAC encoded passports. In order to communicate with the e-passport, the inspection procedure makes use of the optical and electrical reading devices as well as a private key storage. It might have an optional test interface, which is used to automate the test procedures. Figure 1: General functional model of an inspection system The inspection application controls a man-machine interface which replicates the interaction with the border control officer. We assume the existence of such an interface because the system must somehow display to the officer the decision as to whether or not the passport is valid. HJP Consulting 2010 Page 3 of 6
4 It might be connected to other systems such as biometric verification systems or backend databases but these functions do not form part of the testing scope. With this model, we do not presume any specific architectural design or implementation. The scope of conformance testing can now be narrowed to the functionality that is directly involved in the communication between the passport and the inspection system: The contactless reader (proximity coupling device) implementing communication layers 1 to 4. This device should conform to ISO and is functionally tested by the ICAO e- passport test standard, part3. The inspection procedure implementing communication layers 6 and 7 specified by TR Tests are supposed to be specified by the Brussels Interoperability Group. Optical reading of the MRZ specified by DOC Tests for this interface will be specified by ISO/SC17/WG3. All other features of the inspection have to tested but not with respect to conformance to the standards and interoperability. With this test approach, the test cases must be in line with the normal inspection procedure. Thus, tests cannot be performed command by command but the test cases always have to run through the whole inspection procedure. Consequently, tests have to be pure black box test. For testing the inspection system, HJP follows the concept of an upper and lower tester as defined in ISO and enhance this concept to test the application layers. The test environment is illustrated in figure 2. Figure 2: Enhanced ISO test environment HJP Consulting 2010 Page 4 of 6
5 In this test environment, the test engineer starts a test case by placing a simulated passport, i.e. a data page with antenna, in the inspection system. The device under test performs a "normal" inspection procedure and sends commands to the simulated passport, which has been configured to fulfil the requirements of the selected test case. The simulator returns a well-defined response to the system. The observed result (passport valid or not) is entered by the tester into a test management system, which finally generates a test report. With this concept, it is also possible to formally verify the commands sent by the device for a further analysis. The BSI has introduced this test approach in their technical guideline TR-03105, part 5. The essential part of the whole test approach is the passport simulator that can emulate different configurations and behaviour of passports. The concept described above is implemented by HJP Consulting in their product GT Prove IS. This test tool includes a hardware simulator based on Comprion s CLT one product and complete implementation of all test cases from TR-03105, Part 5. This simulator has become the central building block of the GlobalTester Prove IS test tool that provides conformance testing for passport inspection systems according to TR-03105, part 5. The feasibility of the test approach had first been demonstrated at the Prague interoperability test event in 2008 using exactly GT Prove IS. The GT Prove IS has thus become the world's first conformance test tool for inspection systems. Supporting system tests for border control and air travel procedures The verification of e-passports, will primarily take place at border control checkpoints of international sea, land and air borders. E-passports can only be beneficial, if the encrypted information, stored on the chip, is also being read and verified. This requires an interface to a local certification authority (CA), since the inspection system must know the country signing and document signing certificates for each particular e-passport to be able to verify validity and authenticity 1. The amount of data needed and to be verified may depend on the actual application, e.g. may differ for check-in 2 compared to primary border control and secondary border control. To insure interoperability at border control points 1 HJP published a comprehensive white paper which covers the processes for key management and certification exchange in detail. The document has been developed on behalf of ICAO ICBWG to promote the ICAO Public Key Directory and is called A Primer on the ICAO Public Key Directory. The white paper can be downloaded from HJP s website at 2 The use of e-passport data for other applications than border control may differ by country based on data protection laws. HJP Consulting 2010 Page 5 of 6
6 worldwide, ICAO has set a number of standards for e-passports and e-passport inspection systems. To insure, that inspection systems perform as required, whereby the handling of encrypted data is of specific concern, test standards for the testing of e-passport inspection systems are in place. HJP s test tools conduct all required conformance tests for inspection systems based on latest ICAO/BSI test standards for the chip application, layer 6-7, which is the core component to verify next generation e-passports. The test tool, GT Prove IS, can be very beneficial for system integrators in the field of border control and air travel security throughout the integration testing of inspection systems. It is specifically designed to test the e-passport application component of the inspection system, thus insure interoperability towards the implementation into the overall border management or air travel security system. The test tool from HJP is based on an open source approach. Besides the standard test cases provided for the inspection system, the system integrator can further configure additional test procedures for layer 6-7 based on the GT platform using the Eclipse development environment for other test routines needed referring to a particular border control or airport specific test standard. HJP Consulting 2010 Page 6 of 6
CONFORMITY TESTING OF EAC INSPECTION SYSTEMS
CONFORMITY TESTING OF EAC INSPECTION SYSTEMS By Dr. Michael Jahnich, Technical Director, HJP Consulting GmbH Testing the conformance of inspection systems for epassports is an ongoing and open issue. One
More informationEU Passport Specification
Biometrics Deployment of EU-Passports EU Passport Specification (EN) 28/06/2006 (As the United Kingdom and Ireland have not taken part in the adoption of this measure, an authentic English version of the
More informationConformity and Interoperability Key Prerequisites for Security of eid documents. Holger Funke, 27 th April 2017, ID4Africa Windhoek
Conformity and Interoperability Key Prerequisites for Security of eid documents Holger Funke, 27 th April 2017, ID4Africa Windhoek Agenda 1. About secunet Security Networks AG 2. Timeline of interoperability
More informationThis paper focuses on the issue of increased biometric content. We have also published a paper on inspection systems.
White Paper 1 INTRODUCTION As ICAO 1 -compliant epassports come into widespread use in Q4 of 2006, it is an appropriate moment to review some of the initiatives required for the next stage of development.
More informationBSI TR Part 1.1 A framework for Official Electronic ID Document conformity tests
BSI TR-03105 Part 1.1 A framework for Official Electronic ID Document conformity tests Version 1.04.1 14.11.2008 CONTENTS 1 INTRODUCTION... 4 2 DEFINITIONS AND REFERENCES... 4 2.1 Definitions... 4 2.2
More informationVerifying emrtd Security Controls
Blackhat Europe 2010 Verifying emrtd Security Controls Raoul D Costa 1 3M 2010. All Rights Reserved. Agenda Overview of ICAO / EU Specifications emrtds decomposed emrtd Infrastructure (PKI) Inspecting
More informationDocument reader Regula 70X4M
Document reader Regula 70X4M Full page passport reader with no moving parts inside. Automatic reading and authenticity verification of passports, IDs, visas, driver s licenses and other identification
More informationLegal Regulations and Vulnerability Analysis
Legal Regulations and Vulnerability Analysis Bundesamt für Sicherheit in der Informationstechnik (BSI) (Federal Office for Information Security) Germany Introduction of the BSI National Authority for Information
More informationThe EAC for MRTD. 26 January 2010
The EAC for MRTD Rafik Chaabouni Serge Vaudenay 26 January 2010 Outline MRTD? Standards - RFID - ICAO and BAC - EAC Solutions? 2 MRTD? Machine Readable Travel Document 3 Standards RFID ICAO and BAC EAC
More informationAdvanced Security Mechanisms for Machine Readable Travel Documents and eidas Token
Technical Guideline TR-03110-1 Advanced Security Mechanisms for Machine Readable Travel Documents and eidas Token Part 1 emrtds with BAC/PACEv2 and EACv1 Version 2.20 26. February 2015 History Version
More informationLDS2 Concept and Overview: Exploring Possibilities in Travel Border Clearance
LDS2 Concept and Overview: Exploring Possibilities in Travel Border Clearance Overview Current generation of epassports Benefits and Limits of an epassport Overview of the next generation epassport Applications
More informationSTATUS: For NP ballot for development as a Type 2 Technical Report.
ISO/IEC JTC1/SC17 2002-03-27 Cards and personal identification ISO/IEC JTC1/SC17 N 2094 DOCUMENT TYPE : NP BALLOT TITLE: Ballot - Proposal for a New Work Item Personal identification - Machine-Assisted
More informationTechnology Advances in Authentication. Mohamed Lazzouni, SVP & CTO
Technology Advances in Authentication Mohamed Lazzouni, SVP & CTO Outline Optical Authentication Complexity of security features and their evolution Computing and optics Document analysis techniques Automation
More informationIntroduction to Electronic Identity Documents
Tutorial Introduction to Electronic Identity Documents Klaus Schmeh cryptovision I'm Klaus Schmeh, Chief Editor Marketing at cryptovision. I have published a number of books. Identity Documents Conventional
More informationCan eid card make life easier and more secure? Michal Ševčík Industry Solution Consultant Hewlett-Packard, Slovakia ITAPA, November 9 th, 2010
Can eid card make life easier and more secure? Michal Ševčík Industry Solution Consultant Hewlett-Packard, Slovakia ITAPA, November 9 th, 2010 Content eid Primary Functions eid Privacy Features and Security
More informationMDR-1 Mobile Document Reader
MDR-1 Mobile Document Reader SPC_MDR-1 1/7 Mobile Document Reader MDR-1 Security Printing Consulting AG The new MDR-1 document reader fulfill the needs for fast and reliable reading, verification and authentication
More informationRoadmap for Implementation of New Specifications for MRTDs
for MRTDs For Publication on the ICAO Website Roadmap for Implementation of New Specifications for MRTDs DISCLAIMER: All reasonable precautions have been taken by the International Civil Aviation Organization
More informationThe epassport: What s Next?
The epassport: What s Next? Justin Ikura LDS2 Policy Sub-Group Co-chair Tom Kinneging Convenor of ISO/IEC JTC1 SC17 WG3 International Organization for Standardization (ISO) Strengthening Aviation Security
More information2 Electronic Passports and Identity Cards
2 Picture source: www.bundesdruckerei.de Paper based Passport Radio Frequency (RF) Chip Electronic Passport (E Pass) Biographic data Human readable Partially machine readable (optically) Conventional
More informationTest Report. For the participants of the SDW InterOp Final Report, secunet Security Networks AG
Test Report For the participants of the SDW InterOp 2013 Final Report, 2013.06.30 secunet Security Networks AG Copyright 2013 by secunet Security Networks AG 2 Final Report, 2013.06.30 SDW InterOp 2013
More informationCOMPGA12 1 TURN OVER
Applied Cryptography, COMPGA12, 2009-10 Answer ALL questions. 2 hours. Marks for each part of each question are indicated in square brackets Calculators are NOT permitted 1. Multiple Choice Questions.
More informationSecurity of Biometric Passports ECE 646 Fall Team Members : Aniruddha Harish Divya Chinthalapuri Premdeep Varada
Security of Biometric Passports ECE 646 Fall 2013 Team Members : Aniruddha Harish Divya Chinthalapuri Premdeep Varada CONTENTS Introduction to epassports Infrastructure required for epassports Generations
More informationeid Consulting References
eid Consulting References Selection of References We are renown for running eid, epassport, eborder projects MOI Germany President of Nigeria Royal Oman Police MOI of U..A.E. MOI of Sudan European Commission
More informationA National Public Key Directory
A National Public Key Directory Version 1.0 definite Date 21 July 2015 Author Jeen de Swart Judicial Information services Ministry of Security and Justice, Netherlands ABSTRACT This white paper is about
More informationTECHNICAL ADVISORY GROUP ON MACHINE READABLE TRAVEL DOCUMENTS (TAG/MRTD)
International Civil Aviation Organization INFORMATION PAPER TAG/MRTD/20-IP/4 22/08/11 English Only TECHNICAL ADVISORY GROUP ON MACHINE READABLE TRAVEL DOCUMENTS (TAG/MRTD) TWENTIETH MEETING Montréal, 7
More informationHow To Secure Electronic Passports. Marc Witteman & Harko Robroch Riscure 02/07/07 - Session Code: IAM-201
How To Secure Electronic Passports Marc Witteman & Harko Robroch Riscure 02/07/07 - Session Code: IAM-201 Other personal info on chip Other less common data fields that may be in your passport Custody
More information3D Face Project. Overview. Paul Welti. Sagem Défense Sécurité Technical coordinator. ! Background. ! Objectives. ! Workpackages
3D Face Project Paul Welti Sagem Défense Sécurité Technical coordinator Overview! Background! Objectives! Workpackages 2 1 ! Biometric epassport Biometrics and Border Control! EU-Council Regulation No
More informationSecurity Target Lite SK e-pass V1.0
Ref.: Security Target Lite SK e-pass V1.0 Table of Contents 1 INTRODUCTION... 6 1.1 ST AND ST-LITE IDENTIFICATION... 6 1.2 TOE IDENTIFICATION... 6 1.3 CC AND PP CONFORMANCE... 6 1.4 CONVENTIONS... 7 1.5
More informationChip Authentication for E-Passports: PACE with Chip Authentication Mapping v2
v.2 Chip Authentication for s: with Chip Authentication Mapping v2 Lucjan Mirosław Wrocław University of Science and Technology, Poland ISC 2016, Honolulu Electronic Passport v.2 e-passport and ebooth:
More informationCertification Report. EAL 4+ (ALC_DVS.2) Evaluation of TÜBİTAK BİLGEM UEKAE. AKİS v1.4i PASAPORT
Certification Report EAL 4+ (ALC_DVS.2) Evaluation of TÜBİTAK BİLGEM UEKAE AKİS v1.4i PASAPORT issued by Turkish Standards Institution Common Criteria Certification Scheme SOFTWARE TEST and CERTIFICATION
More informationMachine Authentication of MRTDs for Public Sector Applications
Technical Guideline BSI TR-03135 Machine Authentication of MRTDs for Public Sector Applications Part 2: Application profiles for official document inspection systems BSI TR-03135-2 Version 2.1.0 Federal
More informationAn Overview of Electronic Passport Security Features
An Overview of Electronic Passport Security Features Zdeněk Říha Faculty of Informatics, Masaryk University, Botanická 68A, 602 00 Brno, Czech Republic zriha@fi.muni.cz Abstract. Electronic passports include
More informationTest plan for eid and esign compliant smart card readers with integrated EACv2
Technical Guideline BSI TR-03105 Part 5.2 Test plan for eid and esign compliant smart card readers with integrated EACv2 Version: 2.0 Date: 2015-05-22 Bundesamt für Sicherheit in der Informationstechnik
More informationPart 9: Deployment of Biometric Identification and Electronic Storage of Data in MRTDs
Doc 9303 Machine Readable Travel Documents Seventh Edition, 2015 Part 9: Deployment of Biometric Identification and Electronic Storage of Data in MRTDs Approved by and published under the authority of
More informationSecurity Target Lite for CEITEC epassport Module CTC21001 with EAC
Security Target Lite for CEITEC epassport Module CTC21001 with EAC Version 2.0 12/Dec/2016 Document History 1.0 First version 2.0 Clarifications to section 7.1 CEITECSA 5.410.052 1 Table of contents 1
More informationCommon Criteria Protection Profile
Common Criteria Protection Profile Machine-Readable Electronic Documents based on BSI TR-03110 for Official Use [MR.ED-PP] BSI-CC-PP-0087-V2 Version 2.0.2 Document history Version 2.0.2, April 4th, 2016
More informationOverview of cryptovision's eid Product Offering. Presentation & Demo
Presentation & Demo Benjamin Drisch, Adam Ross cv cryptovision GmbH T: +49 (0) 209.167-24 50 F: +49 (0) 209.167-24 61 info(at)cryptovision.com 1 General Requirements Government of Utopia Utopia Electronic
More informationMachine Assisted Document Security Verification
Machine Assisted Document Security Verification Dr. Uwe Seidel Germany New Technologies Working Group (NTWG) TAG/MRTD 20 20 th Meeting of the Technical Advisory Group on Machine Readable Travel Documents
More informationE-Passport Validation: A practical experience
E-Passport Validation: A practical experience R Rajeshkumar International Organization for Standardization (ISO) ICAO TRIP: Making the Air Travel more Secure and Efficient TOWARDS A BETTER TRAVELLER IDENTIFICATION
More informationcryptovision s Government Solutions Adam Ross, Ben Drisch cryptovision GmbH
cryptovision s Government Solutions Adam Ross, Ben Drisch cryptovision GmbH cv cryptovision GmbH T: +49 (0) 209.167-24 50 F: +49 (0) 209.167-24 61 info(at)cryptovision.com 1 cryptovision cryptovision Gelsenkirchen
More informationBiometric Passport from a Security Perspective
Biometric Passport from a Security Perspective Gildas Avoine INSA Rennes/IRISA Institut Universitaire de France SUMMARY Passport Primer Memory Content Cryptographic Mechanisms defined by ICAO Additional
More informationCommon Criteria Protection Profile
Common Criteria Protection Profile Machine-Readable Electronic Documents based on BSI TR-03110 for Official Use [MR.ED-PP] BSI-CC-PP-0087 Document history Version 1.01, May 20th, 2015 Federal Office for
More informationTECHNICAL ADVISORY GROUP ON MACHINE READABLE TRAVEL DOCUMENTS (TAG/MRTD)
International Civil Aviation Organization WORKING PAPER TAG/MRTD/22-WP/8 16/04/14 English Only TECHNICAL ADVISORY GROUP ON MACHINE READABLE TRAVEL DOCUMENTS (TAG/MRTD) TWENTY-SECOND MEETING Montréal, 21
More informationIntroduction of the Seventh Edition of Doc 9303
Introduction of the Seventh Edition of Doc 9303 Sjef Broekhaar Advisor ICAO TRIP IRAN SEMINAR Kish Island 17/05/2016 Footer 1 July 2015: ICAO publishes the 7th edition of Doc 9303 Part 1 Part 2 Part 3
More informationAn Overview of Electronic Passport Security Features
An Overview of Electronic Passport Security Features Zdeněk Říha Faculty of Informatics, Masaryk University, Botanická 68A, 602 00 Brno, Czech Republic zriha@fi.muni.cz Abstract. Electronic passports include
More informationA distributed mobile solution with three components: a Capture/Display device a Fullpage Passport scanner and a Central system
A distributed mobile solution with three components: a Capture/Display device a Fullpage Passport scanner and a Central system D.I. Bernhard Strobl Department Safety and Security MobilePass A secure, modular
More informationThe New Seventh Edition of Doc Barry J. Kefauver Nairobi, Kenya November 2015
The New Seventh Edition of Doc 9303 Barry J. Kefauver Nairobi, Kenya November 2015 July 2015 ICAO published the 7 th edition of Doc 9303 Part 1 Part 2 Part 3 Part 4 Part 5 Part 6 Part 7 Part 8 Part 9
More informationE-Passport validation: A practical experience
E-Passport validation: A practical experience R Rajeshkumar Implementation & Capacity Building Working Group Antigua & Barbuda ICAO TRIP Regional Seminar Note This is an edited version of the presentation
More informationVALIDATING E-PASSPORTS AT THE BORDER: THE ROLE OF THE PKD R RAJESHKUMAR CHIEF EXECUTIVE AUCTORIZIUM PTE LTD
VALIDATING E-PASSPORTS AT THE BORDER: THE ROLE OF THE PKD R RAJESHKUMAR CHIEF EXECUTIVE AUCTORIZIUM PTE LTD THE TRUST IMPERATIVE E-Passports are issued by entities that assert trust Trust depends on the
More informationSecurity Target Lite for CEITEC epassport Module CTC21001 with BAC
Security Target Lite for CEITEC epassport Module CTC21001 with BAC Version 3.0 07/Dec/2016 Document History 1.0 Initial version 2.0 Minor corrections 3.0 Clarifications to section 7.1 CEITECSA 5.410.051
More informationE-PASSPORT SCHEME USING AUTHENTICATION PROTOCOLS ALONG WITH FACE, FINGERPRINT, PALMPRINT AND IRIS BIOMETRICS
E-PASSPORT SCHEME USING AUTHENTICATION PROTOCOLS ALONG WITH FACE, FINGERPRINT, PALMPRINT AND IRIS BIOMETRICS 1 V.K. Narendira Kumar and 2 B. Srinivasan 1 Assistant Professor, Department of Information
More informationCertification Report
TÜV Rheinland Nederland B.V. Version 2016-2 Certification Report Mercury epassport v1.16 Sponsor and developer: Infineon Technologies AG Am Campeon 5 D-85579 Neubiberg Germany Evaluation facility: Brightsight
More informationJTC 1 SC 37 Biometrics International Standards
JTC 1 SC 37 Biometrics International Standards Dr. Stephen Elliott Biometrics Standards, Performance, and Assurance Laboratory Purdue University www.bspalabs.org Overview Market Opportunities for Biometric
More informationNFC. control time RFID. copy protection. Barcode. Security. App. Quick control. NFC eco system ISO Secure Element. Near Field Communication
Quick control Casual users App mobile ticketing NFC Smartphone OPTIMOS Investment protection RFID control time Ticket issuing mobile network Data transfer Ticket purchase existing infrastructure Security
More informationCommon Criteria Protection Profile. Machine Readable Travel Document with ICAO Application, Extended Access Control BSI-CC-PP-0056
Common Criteria Protection Profile Machine Readable Travel Document with ICAO Application, Extended Access Control BSI-CC-PP-0056 Foreword This Protection Profile Machine Readable Travel Document with
More informationSecurity Mechanisms and Access Control Infrastructure for e-passports and General Purpose e-documents
Journal of Universal Computer Science, vol. 15, no. 5 (2009), 970-991 submitted: 1/8/08, accepted: 28/2/09, appeared: 1/3/09 J.UCS Security Mechanisms and Access Control Infrastructure for e-passports
More informationBIOFLEX. Applications
HARDWARE BIOFLEX Bioflex is an essential tool for identity verification operations of a modern state. This identification device for persons is guarantor for population census, polling offices or police
More informationPresentation of the Interoperability specification for ICCs and Personal Computer Systems, Revision 2.0
PC/SC Workgroup White Paper Presentation of the Interoperability specification for ICCs and Personal Computer Systems, Revision 2.0 Abstract This document presents the upcoming revision 2.0 of the Interoperability
More informationElectronic passports
Electronic passports Zdeněk Říha, Václav Matyáš, Petr Švenda Faculty of Informatics, Masaryk University, Brno, Czech Republic {zriha,matyas,svenda}@fi.muni.cz February 2008 A number of countries have been
More informationComprehensive Study on Cybercrime
Federal Ministry of Justice and 17 August 2016 Consumer Protection German Comments on the Comprehensive Study on Cybercrime (Draft February 2013) The United Nations Office on Drugs and Crime (UNODC) invited
More informationAn emrtd inspection system on Android. Design, implementation and evaluation
An emrtd inspection system on Android Design, implementation and evaluation Halvdan Hoem Grelland Master s Thesis Spring 2016 An emrtd inspection system on Android Halvdan Hoem Grelland 2nd May 2016 ii
More informationSecurity Mechanism of Electronic Passports. Petr ŠTURC Coesys Research and Development
Security Mechanism of Electronic Passports Petr ŠTURC Coesys Research and Development Smartcard CPU 16/32 bit 3.57MHz (20MHz) 1.8 / 3/ 5 V ROM 16-300 kb RAM 1-8 kb EEPROM 8-128kB Contactless communication
More informationSWAMID Person-Proofed Multi-Factor Profile
Document SWAMID Person-Proofed Multi-Factor Profile Identifier http://www.swamid.se/policy/assurance/al2mfa Version V1.0 Last modified 2018-09-12 Pages 10 Status FINAL License Creative Commons BY-SA 3.0
More informationMULTIAPP V2 PACE - SAC PUBLIC SECURITY TARGET
MultiApp v2 Pace SAC Common Criteria / ISO 15408 Security Target Public version EAL4+ Copyright Gemalto SA 2012. Page : 1/50 CONTENT 1. ST INTRODUCTION... 4 1.1 ST IDENTIFICATION... 4 1.2 ST OVERVIEW...
More informationThis document is a preview generated by EVS
INTERNATIONAL STANDARD ISO/IEC 18013-3 Second edition 2017-04 Information technology Personal identification ISO-compliant driving licence Part 3: Access control, authentication and integrity validation
More informationHash-based Encryption Algorithm to Protect Biometric Data in e-passport
Hash-based Encryption Algorithm to Protect Biometric Data in e-passport 1 SungsooKim, 2 Hanna You, 3 Jungho Kang, 4 Moonseog Jun 1, First Author Soongsil University, Republic of Korea, indielazy@ssu.ac.kr
More informationAir Transport & Travel Industry. Principles, Functional and Business Requirements PNRGOV
Air Transport & Travel Industry Principles, Functional and Business Requirements Version 15.1 Endorsed by WCO Council in July 2016 Table of Contents 1 INTRODUCTION... 3 1.1 PURPOSE... 3 1.2 SCOPE... 3
More information1. Publishable Summary
1. Publishable Summary 1.1Project objectives and context Identity management (IdM) has emerged as a promising technology to distribute identity information across security domains. In e-business scenarios,
More information10. Software Testing Fundamental Concepts
10. Software Testing Fundamental Concepts Department of Computer Science and Engineering Hanyang University ERICA Campus 1 st Semester 2016 Testing in Object-Oriented Point of View Error Correction Cost
More informationMarket Trends and Veridos solutions for epassports & ID Documents
Market Trends and Veridos solutions for epassports & ID Documents Ludger Holtmann, Senior Product & Portfolio Manager Michael Ruhland-Bauer, Head of Product Mangement Documents Agenda Introducing Veridos
More informationThirteenth Symposium on the ICAO Traveller Identification Programme
Thirteenth Symposium on the ICAO Traveller Identification Programme Counter-Terrorism Committee Executive Directorate (CTED) United Nations ICAO Headquarters, Montreal, 24-26 October 2017 Briefly about
More informationPast & Future Issues in Smartcard Industry
Past & Future Issues in Smartcard Industry Ecrypt 2 Summer School Guillaume Dabosville Oberthur Technologies Oberthur Technologies the group its divisions payment, mobile, transport and digital TV markets
More informationNational Biometric Security Project
National Biometric Security Project Activity Update: 2003-2005 Biometric Consortium Conference 2005 National Biometric Security Project Mission Assist government and private sector organizations deter
More informationQ&A Genuine-ID. Answers. Questions
Q&A Genuine-ID Questions Answers 1. What is Genuine-ID? Genuine-ID is a software package for the automated authentication of ID documents (IDs). It automatically extracts any kind of relevant data from
More informationMACHINE READABLE TRAVEL DOCUMENTS
MACHINE READABLE TRAVEL DOCUMENTS ADVANCED SECURITY MECHANISMS FOR MACHINE READABLE TRAVEL DOCUMENTS EXTENDED ACCESS CONTROL (EACv1) COMPLEMENTARY TO TEST METHODS FOR MRTDs USING STATIC BINDING Version
More informationTowards a better solution for Border Guards. D.I. Bernhard Strobl Department Digital Safety and Security
Towards a better solution for Border Guards D.I. Bernhard Strobl Department Digital Safety and Security MobilePass A secure, modular and distributed mobile border control solution for European land border
More informationGeneral Data Protection Regulation April 3, Sarah Ackerman, Managing Director Ross Patz, Consultant
General Data Protection Regulation April 3, 2018 Sarah Ackerman, Managing Director Ross Patz, Consultant Introductions Sarah Ackerman, CISSP, CISA Managing Director, Cincinnati Responsible for overall
More informationJava Card Approach to Emulate The Indonesian National Electronic ID Smart Cards
Scientific Journal of Informatics Vol. 5, No. 2, Nov 2018 p-issn 2407-7658 http://journal.unnes.ac.id/nju/index.php/sji e-issn 2460-0040 Java Card Approach to Emulate The Indonesian National Electronic
More informationSPass NX V1.0 on S3CT9KW/S3CT9KC/S3CT9K9 Certification Report
KECS-CR-12-38 SPass NX V1.0 on S3CT9KW/S3CT9KC/S3CT9K9 Certification Report Certification No.: KECS-ISIS-0394-2012 2012. 6. 15 IT Security Certification Center History of Creation and Revision No. Date
More informationIntegrated Aeronautical Information database
Integrated Aeronautical Information database Workshop for the development of Operational skills for the transition from AIS to AIM for Civil Aviation Authorities (CAA) and Air Navigation Service Providers
More informationInteroperability Specification for ICCs and Personal Computer Systems
Interoperability Specification for ICCs and Personal Computer Systems Part 10 IFDs with Secure PIN Entry Capabilities Gemalto HID Global Identive NXP Semiconductors N.V. Oracle America Revision 2.02.08
More informationBiometric Enrolment for the European Visa Informationsystem (VIS)
Biometric Enrolment for the European Visa Informationsystem (VIS) German Experiences 1 EU Visa Information System (VIS) Federal Foreign Office Visa Application EU VIS Border Police Border Control Territory
More informationTowards e-passport Duplicate Enrolment Check in the European Union
2013 European Intelligence and Security Informatics Conference Towards e-passport Duplicate Enrolment Check in the European Union Moazzam Butt, Sandra Marti, Alexander Nouak,Jörg Köplin, R. Raghavendra
More informationCommon Criteria Protection Profile. Machine Readable Travel Document using Standard Inspection Procedure with PACE (PACE PP)
Machine Readable Travel Document using Standard Inspection Procedure with PACE (PACE PP) Version 1.0, 2nd November 2011 Foreword This Protection Profile Electronic Passport using Standard Inspection procedure
More informationThe European Union approach to Biometrics
The European Union approach to Biometrics gerald.santucci@cec.eu.int Head of Unit Trust & Security European Commission Directorate General Information Society The Biometric Consortium Conference 2003 1
More informationInterview with Fernando Podio Chair of ISO/IEC JTC 1 SC 37 Subcommittee on Biometrics
Interview with Fernando Podio Chair of ISO/IEC JTC 1 SC 37 Subcommittee on Biometrics In addition to his chairmanship of SC37, Mr. Podio is a member of the Computer Security Division of the Information
More informationID-Star 4054 epassport Reader
ID-Star 4054 epassport Reader Instruction manual Bedienungsanleitung Revision 0.91 o Océ Document Technologies GmbH Océ Document Technologies GmbH Max-Stromeyer-Strasse 116 D-78467 Konstanz Tel.: +49 (0)
More informationInformation technology Security techniques Telebiometric authentication framework using biometric hardware security module
INTERNATIONAL STANDARD ISO/IEC 17922 First edition 2017-09 Information technology Security techniques Telebiometric authentication framework using biometric hardware security module Technologies de l information
More informationSEVIS Name Changes and Social Security Information Fact Sheet
The Student and Exchange Visitor Program (SEVP) will modify the name standards in the Student and Exchange Visitor Information System (SEVIS), effective June 26, 2015. At this time, the format of the Forms
More informationWorld-Check One. Quick Reference Guide Screening and Case Manager
World-Check One Quick Reference Guide Screening and Case Manager Contents Screening Page Overview... 2 Case Manager Page Overview... 3 Case Page Overview... 4 Case Toolbar... 5 Logging In... 6 Log In...
More informationID Security Made in Germany Holistic Solutions for Biometric Systems and Identity Documents
ID Security Made in Germany Holistic Solutions for Biometric Systems and Identity Documents 3 Your Personal Identity: Unique, Secure, Multifaceted Every person has individual characteristics by which
More informationTesting and Certification Procedure
A PM 101E April 2011 Guideline for the Testing and Certification Procedure of the VDE Testing and Certification Institute (VDE Institute) (For information purpose only. In any case the German version shall
More informationISO/IEC INTERNATIONAL STANDARD. Identification cards Machine readable travel documents Part 3: Machine readable official travel documents
INTERNATIONAL STANDARD ISO/IEC 7501-3 Second edition 2005-10-15 Identification cards Machine readable travel documents Part 3: Machine readable official travel documents Cartes d'identification Documents
More informationThe Future of Smart Cards: Bigger, Faster and More Secure
The Future of Smart Cards: Bigger, Faster and More Secure Joerg Borchert, Vice President, Secure Mobile Solutions July 16, 2003 Page 1 N e v e r s t o p t h i n k i n g. Infineon Technologies: Overview
More informationTWIC Readers What to Expect
TWIC Readers What to Expect Walter Hamilton Chairman International Biometric Industry Association Walter Hamilton International Biometric Industry Association 1155 F Street, NW Washington, DC 20004 (727)
More informationWhite Paper Implementing mobile electronic identity
Implementing mobile electronic identity A DXC Enterprise approach based on hardware token microsd card Table of contents Secure Element form factors in mobile devices 2 Other alternatives for implementing
More informationCREDENTSYS CARD FAMILY
CREDENTSYS CARD FAMILY Credentsys is a secure smart card family that is designed for national ID systems, passports, and multi-use enterprise security environments. The family is certified to FIPS 140-2
More informationThirteenth Symposium and Exhibition on the ICAO Traveller Identification Programme (TRIP)
Thirteenth Symposium and Exhibition on the ICAO Traveller Identification Programme (TRIP) Advance Passenger Information (API) Workshop Fabrizio Di Carlo INTERPOL 26 October 2017 OBJECTIVES Matching passenger
More informationIS23SC4439 Preliminary. 1K bytes EEPROM Contactless Smart Card Conform to ISO/IEC 14443A Standard. Table of contents
1K bytes EEPROM Contactless Smart Card Conform to ISO/IEC 14443A Standard Table of contents 1 Features 2 2 General Description 2 3 Typical Transaction Time 2 4 Functional Description 2 41 Block Description
More informationIntroduction to the ENTSOG Common Data Exchange Solutions
Introduction to the ENTSOG Common Data Exchange Solutions Version 0 Revision 0 ENTSOG AISBL ; Av. de Cortenbergh 100, 1000-Brussels ; Tel : +32 2 894 5100 ; Fax : +32 2 894 5101; http : entsog.eu info@entsog.eu,,
More information