Introduction to Electronic Identity Documents
|
|
- Gavin Hawkins
- 5 years ago
- Views:
Transcription
1 Tutorial Introduction to Electronic Identity Documents Klaus Schmeh cryptovision
2 I'm Klaus Schmeh, Chief Editor Marketing at cryptovision. I have published a number of books.
3 Identity Documents
4 Conventional Identity Documents
5 Identity Document Formats 0 cm 10 cm 20 cm 30 cm ID-1 Format e. g. credit card ID-2 Format e.g. old German identity card ID-3 Format e.g. passport Machine Readable Zone (MRZ)
6 MRTD Standard Made by aviation organisation ICAO MRTD: Machine Readable Travel Documents
7 Cryptography Basics
8 Symmetric Encryption secret key secret key This text is not encrypted. encryption sfd5hbtoar zksldklsli4fj fkdfkjk decryption This text is not encrypted. Cleartext Ciphertext Cleartext
9 Asymmetric Encryption public key private key This text is not encrypted. encryption sfd5hbtoar zksldklsli4fj fkdfkjk decryption This text is not encrypted. Cleartext Ciphertext Cleartext
10 Digital Signature private key public key This text is not encrypted. signing sfd5hbtoar zksldklsli4fj fkdfkjk verification correct/ incorrect Cleartext Checksum (signature)
11 Authentication Verification if somebody is the one he claims to be private key public key Alice data (challenge) signed data (response) Server
12 Basic cryptographic operations Symmetric Encryption Asymmetric Encryption Digital Signature Authentication secret key public/private key public/private key public/private key Three of these operations require public keys.
13 Questions Alice's Public Key F7 EC DD 78 2A 9B 2A 0B F7 EC E4 78 EC DD 78 F7 EC E4 78 F3 9B AB F7 EC E4 DD 78 F7 EC E4 78 F3 9B AB F D 78 F7 EC E4 F3 9B AB F7 CD 56 Is it really Alice s public key? Is the key still in use? Has the key been revoked? Is the key meant for encryption or for signatures? These questions can t be answered by only looking at the key
14 Digital Certificate Digital Certificate Person name: Alice Smith Public key: F4 56 D BB A6 93 0D Validity period: Serial number: CA name: CA 1 Signature: A6 56 D E3 BB A6 93 0D 3D
15 Who signs a digital certificate? Certification Authority signs certificates User digital User digital User digital User certificate certificate certificate digital certificate
16 Digital Certificate Standards X.509 Certificate Version Serial Number Signature Issuer Validity Subject Subject Public Key Info Authority Key Identifier Subject Key Identifier Key Usage Private Key Usage Period Policy Mappings Subject Alternative Name Issuer Alternative Name typical size: 2,000 byte Card Verifiable Certificate Profile Identifier Certification Authority Certificate Holder Certificate Holder Authorization Validity Period Key typical size: 200 byte
17 Public Key Infrastructure (PKI) Hardware and software used to manage digital certificates Key storage hardware Card Management System User Certification Authority Certificate Repository Identity Management
18 Smart Cards
19 Smart Card The chip is a small computer Smart card operating systems: CardOS STARCOS TCOS JCOP
20 Smart Card Memory with typical parameters RAM 768 byte ROM 16 KB EEPROM (Hard drive) 128 KB Clock: 4 MHz
21 Contact smart card Contactless smart card chip chip is not visible contactless reader contact reader
22 A smart card is a secure way to store a key KEY NEVER LEAVES THE CHIP data signed or encrypted data chip encrypts or computes signature with key
23 Smart Card Form Factors smart card USB token chip watch proximity token
24 More Smart Card Form Factors SIM Card microsd chip implant
25 Biometry and Smart Cards Match on Card (MoC)
26 Mosofot Program Smart Card Middleware PC software Administration tool smart card Datei Bearbeiten Ansicht Einfügen Format Fenster % * # % * # % * # skjhfksjhfkshfk lskflksjf slkfj n slkfjg slkfj slkf slkfl slkfj n slkfjg slkfj slkfj n slkfjg slkfj Driver % * # % * # % * # crypto interface Smart Card Middleware card interface The best smart card middleware on the market is sc/interface.
27 Electronic Identity Documents
28 What is an Electronic Identity Document? Identity Document + = Computer Chip Electronic Identity Document (eid) An electronic identity document is a smart card
29 Why Electronic Identity Documents? Improve identification of a person Enable new applications
30 Typical functionality of an electronic identity card Stores name, birthday, address,... Additional (nongovernment) applications: payment, ticketing, health card,... Digital Signature functionality Encryption functionality Authentication functionality
31 Electronic Identity Card Formats 0 cm 10 cm 20 cm 30 cm ID-3 Format Electronic passport ID-2 Format Not used for electronic identity documents ID-1 Format Almost all other electronic identity documents
32 Examples of Electronic Identity Documents Electronic Passport German electronic identity card Electronic Driving License Health Insurance card Company card Vehicle registration card
33 MRTD Standard ICAO also standardises electronic identity documents
34 Standardized content of an electronic identity card Logical Data Structure (LDS) DG1 DG2 DG3 DG4 DG5 DG6 DG7 DG8 DG9 DG10 DG 11 DG12 DG13 DG14 DG15 DG16 Detail(s) Recorded in MRZ Encoded Face Encoded Finger(s) Encoded Eye(s) Displayed Portrait Reserved for Furure Use Displayed Signature or Usual Mark Data Feature(s) Structure Feature(s) Substance Additional Feature(s) Personal Detail(s) Additional Personal Detail(s) Optional Detail(s) Security Options for Secondary Biometrics Active Authentication Public Key Info Person(s) to Notify Document Type Issuing State or Organsiati on Name (of Holder) Document Number Check Digit - Doc Number Nationality Date of Birth Check Digit - DOB Sex Date of Expiry Check Digit - DOE Optional Data Composite Check Digit
35 ICAO Passport By far the most popular electronic identity document Simple technology, little functionality
36 Electronic Passports About 150 countries issue Electronic Passports European Commission: Electronic Passport obligatory for members
37 National identity cards Much variety: every country deploys its own solution Interoperability in some, but not all respects
38 Cryptography and PKI used by Electronic Identity Documents
39 Attacks on electronic identity documents Complete fraud Put fake data on a fake card Cryptographic countermeasure digital signature
40 Some Attacks on electronic identity documents Cloning Copy key from a genuine card to a fake card Cryptographic countermeasure key on card cannot be read
41 Some Attacks on electronic identity documents Eavesdropping Listen to communication between card and reader Cryptographic countermeasure key on card cannot be read
42 Some Attacks on electronic identity documents Unauthorized reading Read data from card without permission Cryptographic countermeasure Inspection system needs to authenticate with key
43 Some Attacks on electronic identity documents Many attacks on electronic identity cards can be prevented with cryptography
44 Signatures and keys needed to secure an electronic identity card Inspection System Electronic Identity Card inspection system key (used for authentication) digital signature by issuer user keys (used for signature, authentication,...)
45 Java Card
46 Chip is a small computer Some smart cards support the Java Programming language Name of this technology: Java Card
47 Java program (applet) Java Card operating systems NXP: JCOP (Java Card OpenPlatform) G&D: Expert Infineon: jtop Gemalto: IDCore JavaCOS
48 The Nigerian Electronic Identity Card
49 Nigeria 168 million inhabitants capital: Abuja largest economy in Africa over 500 ethnicities
50 Nigeria has started issuing electronic identity cards cryptovision plays a key role in this project.
51 Nigerian electronic identity card Birth date Date of issuance EMV-PAN- Nummer Document number Machine Readable Zone (MRZ) Payment, banking
52 PKI for Nigerian Identity Card CVCA CSCA X.509-CA Root CA Sub CA signs signs signs One of the largest and complexest PKIs in the world. DVCA Document Signer Sub-CA
53 Payment function Every electronic identity card features a prepaid function 100 million Nigerians get access to the financial system. Largest Bank the Unbanked - initiative in history.
54 Gelsenkirchen, July 3, 2014 For the first time in history money is withdrawn with an electronic identity card from a German ATM. The card is Nigerian.
55 Nigerian electronic identity card German electronic identity card Chip contact contactless Number of users: 100 million 50 million Identity verification yes yes Signature function yes yes Nigerian card project is more ambitious. Biometry yes yes Payment yes no Banking card funtion yes no Usable as travel document yes yes Restricted Identification no yes Age verification no yes Mutual authentication (EAC2) yes yes
56 Summary
57 Electronic Identity Cards are a hot technology Inform yourself at Mindshare Visit our showroom.
58 End
Overview of cryptovision's eid Product Offering. Presentation & Demo
Presentation & Demo Benjamin Drisch, Adam Ross cv cryptovision GmbH T: +49 (0) 209.167-24 50 F: +49 (0) 209.167-24 61 info(at)cryptovision.com 1 General Requirements Government of Utopia Utopia Electronic
More informationVerifying emrtd Security Controls
Blackhat Europe 2010 Verifying emrtd Security Controls Raoul D Costa 1 3M 2010. All Rights Reserved. Agenda Overview of ICAO / EU Specifications emrtds decomposed emrtd Infrastructure (PKI) Inspecting
More informationThe epassport: What s Next?
The epassport: What s Next? Justin Ikura LDS2 Policy Sub-Group Co-chair Tom Kinneging Convenor of ISO/IEC JTC1 SC17 WG3 International Organization for Standardization (ISO) Strengthening Aviation Security
More information2 Electronic Passports and Identity Cards
2 Picture source: www.bundesdruckerei.de Paper based Passport Radio Frequency (RF) Chip Electronic Passport (E Pass) Biographic data Human readable Partially machine readable (optically) Conventional
More informationEU Passport Specification
Biometrics Deployment of EU-Passports EU Passport Specification (EN) 28/06/2006 (As the United Kingdom and Ireland have not taken part in the adoption of this measure, an authentic English version of the
More informationSecurity of Biometric Passports ECE 646 Fall Team Members : Aniruddha Harish Divya Chinthalapuri Premdeep Varada
Security of Biometric Passports ECE 646 Fall 2013 Team Members : Aniruddha Harish Divya Chinthalapuri Premdeep Varada CONTENTS Introduction to epassports Infrastructure required for epassports Generations
More informationcryptovision s Government Solutions Adam Ross, Ben Drisch cryptovision GmbH
cryptovision s Government Solutions Adam Ross, Ben Drisch cryptovision GmbH cv cryptovision GmbH T: +49 (0) 209.167-24 50 F: +49 (0) 209.167-24 61 info(at)cryptovision.com 1 cryptovision cryptovision Gelsenkirchen
More informationAdvanced Security Mechanisms for Machine Readable Travel Documents and eidas Token
Technical Guideline TR-03110-1 Advanced Security Mechanisms for Machine Readable Travel Documents and eidas Token Part 1 emrtds with BAC/PACEv2 and EACv1 Version 2.20 26. February 2015 History Version
More informationHow To Secure Electronic Passports. Marc Witteman & Harko Robroch Riscure 02/07/07 - Session Code: IAM-201
How To Secure Electronic Passports Marc Witteman & Harko Robroch Riscure 02/07/07 - Session Code: IAM-201 Other personal info on chip Other less common data fields that may be in your passport Custody
More informationBiometric Passport from a Security Perspective
Biometric Passport from a Security Perspective Gildas Avoine INSA Rennes/IRISA Institut Universitaire de France SUMMARY Passport Primer Memory Content Cryptographic Mechanisms defined by ICAO Additional
More informationSecurity Target Lite SK e-pass V1.0
Ref.: Security Target Lite SK e-pass V1.0 Table of Contents 1 INTRODUCTION... 6 1.1 ST AND ST-LITE IDENTIFICATION... 6 1.2 TOE IDENTIFICATION... 6 1.3 CC AND PP CONFORMANCE... 6 1.4 CONVENTIONS... 7 1.5
More informationTechnology Advances in Authentication. Mohamed Lazzouni, SVP & CTO
Technology Advances in Authentication Mohamed Lazzouni, SVP & CTO Outline Optical Authentication Complexity of security features and their evolution Computing and optics Document analysis techniques Automation
More informationCan eid card make life easier and more secure? Michal Ševčík Industry Solution Consultant Hewlett-Packard, Slovakia ITAPA, November 9 th, 2010
Can eid card make life easier and more secure? Michal Ševčík Industry Solution Consultant Hewlett-Packard, Slovakia ITAPA, November 9 th, 2010 Content eid Primary Functions eid Privacy Features and Security
More informationHash-based Encryption Algorithm to Protect Biometric Data in e-passport
Hash-based Encryption Algorithm to Protect Biometric Data in e-passport 1 SungsooKim, 2 Hanna You, 3 Jungho Kang, 4 Moonseog Jun 1, First Author Soongsil University, Republic of Korea, indielazy@ssu.ac.kr
More informationcryptovision Enterprise product line Use Smart Cards, the smart way
cryptovision Enterprise product line Use Smart Cards, the smart way cv cryptovision GmbH T: +49 (0) 209.167-24 50 F: +49 (0) 209.167-24 61 info(at)cryptovision.com 1 Mindshare 2016 - Enterprise 2 cryptovision
More informationThe Top Four Trends in eid Technology Marco Smeja, cryptovision Mindshare 2017
The Top Four Trends in eid Technology Marco Smeja, cryptovision Mindshare 2017 cv cryptovision GmbH T: +49 (0) 209.167-24 50 F: +49 (0) 209.167-24 61 info(at)cryptovision.com 1 2 The Smart Card Evolution
More informationSecurity Mechanism of Electronic Passports. Petr ŠTURC Coesys Research and Development
Security Mechanism of Electronic Passports Petr ŠTURC Coesys Research and Development Smartcard CPU 16/32 bit 3.57MHz (20MHz) 1.8 / 3/ 5 V ROM 16-300 kb RAM 1-8 kb EEPROM 8-128kB Contactless communication
More informationExperiences of w S itz w e itz rland
Joining the PKD why? Experiences of Switzerland State of Play Switzerland The first generation e passport is being issued since 4 September 2006 Name, first name Passport number Date and place of issue,
More informationThis paper focuses on the issue of increased biometric content. We have also published a paper on inspection systems.
White Paper 1 INTRODUCTION As ICAO 1 -compliant epassports come into widespread use in Q4 of 2006, it is an appropriate moment to review some of the initiatives required for the next stage of development.
More informationThe New Seventh Edition of Doc Barry J. Kefauver Nairobi, Kenya November 2015
The New Seventh Edition of Doc 9303 Barry J. Kefauver Nairobi, Kenya November 2015 July 2015 ICAO published the 7 th edition of Doc 9303 Part 1 Part 2 Part 3 Part 4 Part 5 Part 6 Part 7 Part 8 Part 9
More informationRajat Moona j CSE, IIT Kanpur October 11, Reach IIT K
Rajat Moona j CSE, IIT Kanpur October 11, 2010 Reach 2010 @ IIT K Identity Establishment Problem Smart Card Technology IIT Kanpur Contribution ID related applications DL/RC, MNIC, e Passport Protection
More informationWhitepaper: GlobalTester Prove IS
Whitepaper: GlobalTester Prove IS Testing of EAC inspection systems By HJP Consulting GmbH Introduction There have been a lot of activities in standardization to define conformity tests for e-passports.
More informationCOMPGA12 1 TURN OVER
Applied Cryptography, COMPGA12, 2009-10 Answer ALL questions. 2 hours. Marks for each part of each question are indicated in square brackets Calculators are NOT permitted 1. Multiple Choice Questions.
More informationMarket Trends and Veridos solutions for epassports & ID Documents
Market Trends and Veridos solutions for epassports & ID Documents Ludger Holtmann, Senior Product & Portfolio Manager Michael Ruhland-Bauer, Head of Product Mangement Documents Agenda Introducing Veridos
More informationThe EAC for MRTD. 26 January 2010
The EAC for MRTD Rafik Chaabouni Serge Vaudenay 26 January 2010 Outline MRTD? Standards - RFID - ICAO and BAC - EAC Solutions? 2 MRTD? Machine Readable Travel Document 3 Standards RFID ICAO and BAC EAC
More informationThe Future of Smart Cards: Bigger, Faster and More Secure
The Future of Smart Cards: Bigger, Faster and More Secure Joerg Borchert, Vice President, Secure Mobile Solutions July 16, 2003 Page 1 N e v e r s t o p t h i n k i n g. Infineon Technologies: Overview
More informationAn Overview of Electronic Passport Security Features
An Overview of Electronic Passport Security Features Zdeněk Říha Faculty of Informatics, Masaryk University, Botanická 68A, 602 00 Brno, Czech Republic zriha@fi.muni.cz Abstract. Electronic passports include
More informationConformity and Interoperability Key Prerequisites for Security of eid documents. Holger Funke, 27 th April 2017, ID4Africa Windhoek
Conformity and Interoperability Key Prerequisites for Security of eid documents Holger Funke, 27 th April 2017, ID4Africa Windhoek Agenda 1. About secunet Security Networks AG 2. Timeline of interoperability
More informationElectronic passports
Electronic passports Zdeněk Říha, Václav Matyáš, Petr Švenda Faculty of Informatics, Masaryk University, Brno, Czech Republic {zriha,matyas,svenda}@fi.muni.cz February 2008 A number of countries have been
More informationCREDENTSYS CARD FAMILY
CREDENTSYS CARD FAMILY Credentsys is a secure smart card family that is designed for national ID systems, passports, and multi-use enterprise security environments. The family is certified to FIPS 140-2
More informationChip Authentication for E-Passports: PACE with Chip Authentication Mapping v2
v.2 Chip Authentication for s: with Chip Authentication Mapping v2 Lucjan Mirosław Wrocław University of Science and Technology, Poland ISC 2016, Honolulu Electronic Passport v.2 e-passport and ebooth:
More informationPast & Future Issues in Smartcard Industry
Past & Future Issues in Smartcard Industry Ecrypt 2 Summer School Guillaume Dabosville Oberthur Technologies Oberthur Technologies the group its divisions payment, mobile, transport and digital TV markets
More informationIntroduction of the Seventh Edition of Doc 9303
Introduction of the Seventh Edition of Doc 9303 Sjef Broekhaar Advisor ICAO TRIP IRAN SEMINAR Kish Island 17/05/2016 Footer 1 July 2015: ICAO publishes the 7th edition of Doc 9303 Part 1 Part 2 Part 3
More informationIDCore. Flexible, Trusted Open Platform. financial services & retail. Government. telecommunications. transport. Alexandra Miller
IDCore Flexible, Trusted Open Platform financial services & retail enterprise > SOLUTION Government telecommunications transport Trusted Open Platform Java Card Alexandra Miller >network identity >smart
More informationAn Overview of Electronic Passport Security Features
An Overview of Electronic Passport Security Features Zdeněk Říha Faculty of Informatics, Masaryk University, Botanická 68A, 602 00 Brno, Czech Republic zriha@fi.muni.cz Abstract. Electronic passports include
More informationSmartcards. ISO 7816 & smartcard operating systems. Erik Poll Digital Security Radboud University Nijmegen
Smartcards ISO 7816 & smartcard operating systems Erik Poll Digital Security Radboud University Nijmegen 1 Standard for contact smartcards ISO7816 7816-1 Physical characteristics 7816-2 Dimension & size
More informationMACHINE READABLE TRAVEL DOCUMENTS
MACHINE READABLE TRAVEL DOCUMENTS TECHNICAL REPORT Supplemental Access Control for Machine Readable Travel Documents Version 1.1 Date 15 April 2014 Published by authority of the Secretary General ISO/IEC
More informationE-PASSPORT SCHEME USING AUTHENTICATION PROTOCOLS ALONG WITH FACE, FINGERPRINT, PALMPRINT AND IRIS BIOMETRICS
E-PASSPORT SCHEME USING AUTHENTICATION PROTOCOLS ALONG WITH FACE, FINGERPRINT, PALMPRINT AND IRIS BIOMETRICS 1 V.K. Narendira Kumar and 2 B. Srinivasan 1 Assistant Professor, Department of Information
More informationSecurity Target Lite for CEITEC epassport Module CTC21001 with EAC
Security Target Lite for CEITEC epassport Module CTC21001 with EAC Version 2.0 12/Dec/2016 Document History 1.0 First version 2.0 Clarifications to section 7.1 CEITECSA 5.410.052 1 Table of contents 1
More informationE-Passport: Cracking Basic Access Control Keys with COPACOBANA
E-Passport: Cracking Basic Access Control Keys with COPACOBANA Yifei Liu, Timo Kasper, Kerstin Lemke-Rust and Christof Paar Communication Security Group Ruhr University Bochum, Germany http://www.crypto.rub.de
More informationA National Public Key Directory
A National Public Key Directory Version 1.0 definite Date 21 July 2015 Author Jeen de Swart Judicial Information services Ministry of Security and Justice, Netherlands ABSTRACT This white paper is about
More informationSecurity in NFC Readers
Security in Readers Public Content and security, a different kind of wireless Under the hood of based systems Enhancing the security of an architecture Secure data exchange Information security goals Cryptographic
More informationMobile Identity Management
Mobile Identity Management Outline Ideas Motivation Architecture Implementation notes Discussion Motivation 1 The mobile phone has become a highly personal device: Phonebook E-mail Music, videos Landmarks
More informationPKI Credentialing Handbook
PKI Credentialing Handbook Contents Introduction...3 Dissecting PKI...4 Components of PKI...6 Digital certificates... 6 Public and private keys... 7 Smart cards... 8 Certificate Authority (CA)... 10 Key
More informationModule: Authentication. Professor Trent Jaeger. CSE543 - Introduction to Computer and Network Security
CSE543 - Introduction to Computer and Network Security Module: Authentication Professor Trent Jaeger 1 Kerberos History: from UNIX to Networks (late 80s) Solves: password eavesdropping Also mutual authentication
More informationHOST Authentication Overview ECE 525
Authentication Overview Authentication refers to the process of verifying the identity of the communicating principals to one another Usually sub-divided into Entity authentication Authentication in real-time
More informationModule: Authentication. Professor Trent Jaeger. CSE543 - Introduction to Computer and Network Security
CSE543 - Introduction to Computer and Network Security Module: Authentication Professor Trent Jaeger CSE543 - Introduction to Computer and Network Security 1 Kerberos History: from UNIX to Networks (late
More informationSeptember OID: Public Document
THE UNITED KINGDOM S NATIONAL CERTIFICATE POLICY for Extended Access Control Infrastructure for machine readable travel documents and biometric residence permits issued and read within the UK September
More informationThe Match On Card Technology
Precise Biometrics White Paper The Match On Card Technology Magnus Pettersson Precise Biometrics AB, Dag Hammarskjölds väg 2, SE 224 67 Lund, Sweden 22nd August 2001 Abstract To make biometric verification
More informationWHAT FUTURE FOR CONTACTLESS CARD SECURITY?
WHAT FUTURE FOR CONTACTLESS CARD SECURITY? Alain Vazquez (alain.vazquez@louveciennes.sema.slb.com) 1/27 AV Contents Major contactless features : summary Contactless major constraints Major security issues
More informationAn emrtd inspection system on Android. Design, implementation and evaluation
An emrtd inspection system on Android Design, implementation and evaluation Halvdan Hoem Grelland Master s Thesis Spring 2016 An emrtd inspection system on Android Halvdan Hoem Grelland 2nd May 2016 ii
More informationSecurity Target Lite
Security Target Lite for the PEACOS Extended Access Control MRTD Common Criteria version 3.1 revision 3 ISO/IEC 15408 Assurance Level EAL 4+ Developer Gep S.p.A. Corso Salvatore D Amato, 90 80022 Arzano
More informationCertification Report. EAL 4+ (ALC_DVS.2) Evaluation of TÜBİTAK BİLGEM UEKAE. AKİS v1.4i PASAPORT
Certification Report EAL 4+ (ALC_DVS.2) Evaluation of TÜBİTAK BİLGEM UEKAE AKİS v1.4i PASAPORT issued by Turkish Standards Institution Common Criteria Certification Scheme SOFTWARE TEST and CERTIFICATION
More informationUNIT - IV Cryptographic Hash Function 31.1
UNIT - IV Cryptographic Hash Function 31.1 31-11 SECURITY SERVICES Network security can provide five services. Four of these services are related to the message exchanged using the network. The fifth service
More informationSECURITY TARGET LITE FOR IDEAL PASS V2.0.1 EAC WITH PACE APPLICATION
SECURITY TARGET LITE FOR IDEAL PASS V2.0.1 EAC WITH PACE APPLICATION Reference: 2016_2000023040 Page: 2/141 Date Version Revision 01/12/2016 1.0 Document creation Page: 3/141 Table of contents 1.1 SECURITY
More informationLegal Regulations and Vulnerability Analysis
Legal Regulations and Vulnerability Analysis Bundesamt für Sicherheit in der Informationstechnik (BSI) (Federal Office for Information Security) Germany Introduction of the BSI National Authority for Information
More informationMULTIAPP V2 PACE - SAC PUBLIC SECURITY TARGET
MultiApp v2 Pace SAC Common Criteria / ISO 15408 Security Target Public version EAL4+ Copyright Gemalto SA 2012. Page : 1/50 CONTENT 1. ST INTRODUCTION... 4 1.1 ST IDENTIFICATION... 4 1.2 ST OVERVIEW...
More informationCommon Criteria Protection Profile. Machine Readable Travel Document with ICAO Application, Extended Access Control BSI-CC-PP-0056
Common Criteria Protection Profile Machine Readable Travel Document with ICAO Application, Extended Access Control BSI-CC-PP-0056 Foreword This Protection Profile Machine Readable Travel Document with
More informationFuture Expansion for emrtd PKI Mark Joynes, Entrust
Future Expansion for emrtd PKI Mark Joynes, Entrust 2013 MRTD Symposium 1 What are we trying to achieve Prevent: Production of credible false documents Tampering with legitimate documents Breach of sovereignty
More informationCONTENTS. Introduction 4. Overview 5. A detailed look under the hood 8. Conclusions 11. Traveler experience overview 12. Definition of terms 13
WHITE PAPER CONTENTS Introduction 4 Overview 5 A detailed look under the hood 8 Conclusions 11 Traveler experience overview 12 Definition of terms 13 NEW FRONTIERS PAPER [DOCUMENT DESCRIPTION FOOTER)
More informationMTAT Applied Cryptography
MTAT.07.017 Applied Cryptography Smart Cards 2 University of Tartu Spring 2014 1 / 20 Security Model Parties involved in smart card based system: Cardholder Data owner Terminal Card issuer Card manufacturer
More informationA Multi-Application Smart-Card ID System for George Mason University. - Suraj Ravichandran.
A Multi-Application Smart-Card ID System for George Mason University - Suraj Ravichandran. Current System Magnetic Swipe Card based ID The card has three tracks They each store the following: Name, G#
More informationMindshare 2018 The Nine Steps to Your Company ID:
Mindshare 2018 : An IT Hero s Quest to Get Smart Adam Ross cv cryptovision GmbH T: +49 (0) 209.167-24 50 F: +49 (0) 209.167-24 61 info(at)cryptovision.com 1 Hooray! Your company has won a lucrative contract!
More informationSecurity Digital Certificate Manager
System i Security Digital Certificate Manager Version 6 Release 1 System i Security Digital Certificate Manager Version 6 Release 1 Note Before using this information and the product it supports, be sure
More informationHitachi Releases Smart Card Microcontroller AE45X series Equipped with Contact/Contactless Dual Interface in a Single Chip
Hitachi Releases Smart Card Microcontroller AE45X series Equipped with Contact/Contactless Dual Interface in a Single Chip Suitable for multi-purpose multi-application smart cards in the fields such as
More informationDocument reader Regula 70X4M
Document reader Regula 70X4M Full page passport reader with no moving parts inside. Automatic reading and authenticity verification of passports, IDs, visas, driver s licenses and other identification
More informationAthena IDProtect Duo v5 ICAO EAC optional AA. Public Security Target
Athena IDProtect Duo v5 ICAO EAC optional AA - Athena IDProtect Duo v5 Java Card on Inside Secure AT90SC28880RCFV Microcontroller embedding ICAO applet - Public Security Target Version 2.2 January 6, 2014
More informationCommon Criteria Protection Profile
Common Criteria Protection Profile Machine-Readable Electronic Documents based on BSI TR-03110 for Official Use [MR.ED-PP] BSI-CC-PP-0087 Document history Version 1.01, May 20th, 2015 Federal Office for
More informationVALIDATING E-PASSPORTS AT THE BORDER: THE ROLE OF THE PKD R RAJESHKUMAR CHIEF EXECUTIVE AUCTORIZIUM PTE LTD
VALIDATING E-PASSPORTS AT THE BORDER: THE ROLE OF THE PKD R RAJESHKUMAR CHIEF EXECUTIVE AUCTORIZIUM PTE LTD THE TRUST IMPERATIVE E-Passports are issued by entities that assert trust Trust depends on the
More informationThe Cryptographic Sensor
The Cryptographic Sensor Libor Dostálek and Václav Novák {libor.dostalek, vaclav.novak}@prf.jcu.cz Faculty of Science University of South Bohemia České Budějovice Abstract The aim is to find an effective
More informationLeveraging the full potential of NFC to reinvent physical access control. Friday seminar,
Leveraging the full potential of NFC to reinvent physical access control Wireless@KTH Friday seminar, 2012-08-31 NFC (Near Field Communication) A new radio communication technology for mobile phones Uses
More informationE-Passport Validation: A practical experience
E-Passport Validation: A practical experience R Rajeshkumar International Organization for Standardization (ISO) ICAO TRIP: Making the Air Travel more Secure and Efficient TOWARDS A BETTER TRAVELLER IDENTIFICATION
More informationSecurity Mechanisms and Access Control Infrastructure for e-passports and General Purpose e-documents
Journal of Universal Computer Science, vol. 15, no. 5 (2009), 970-991 submitted: 1/8/08, accepted: 28/2/09, appeared: 1/3/09 J.UCS Security Mechanisms and Access Control Infrastructure for e-passports
More informationAuthentication Technology Alternatives. Mark G. McGovern Chief Technologist Smart Cards, Crypto, Stego, PKI Lockheed Martin
Authentication Technology Alternatives Mark G. McGovern Chief Technologist Smart Cards, Crypto, Stego, PKI Lockheed Martin Passwords Initial response by security and programming experts to deny access
More informationE-Passport validation: A practical experience
E-Passport validation: A practical experience R Rajeshkumar Implementation & Capacity Building Working Group Antigua & Barbuda ICAO TRIP Regional Seminar Note This is an edited version of the presentation
More informationMachine Readable Travel Document with ICAO Application", Basic Access Control
Common Criteria Protection Profile Machine Readable Travel Document with ICAO Application", Basic Access Control BSI-PP-0017 Approved by the Federal Ministry of the Interior Version 1.0, 18 August 2005
More informationcryptovision s Enterprise Solutions Brian Kowal, Guido Ringel cryptovision Mindshare 2017
cryptovision s Enterprise Solutions Brian Kowal, Guido Ringel cryptovision Mindshare 2017 cv cryptovision GmbH T: +49 (0) 209.167-24 50 F: +49 (0) 209.167-24 61 info(at)cryptovision.com 1 cryptovision
More informationSMART CARDS. Miguel Monteiro FEUP / DEI
SMART CARDS Miguel Monteiro apm@fe.up.pt FEUP / DEI WHAT IS A SMART CARD Distinguishable characteristics Can participate in automated electronic transactions Used primarily to add security Not easily forged
More informationIBM. Security Digital Certificate Manager. IBM i 7.1
IBM IBM i Security Digital Certificate Manager 7.1 IBM IBM i Security Digital Certificate Manager 7.1 Note Before using this information and the product it supports, be sure to read the information in
More informationChipDoc P60 on JCOP 3 SECID P60 (OSA) ICAO BAC Security Target Lite
ChipDoc P60 on JCOP 3 SECID P60 (OSA) ICAO BAC Rev. 1.0 28 September 2017 Final Document information Info Keywords Abstract Content Common Criteria,, ChipDoc P60 on JCOP 3 SECID P60 (OSA) ICAO BAC of ChipDoc
More informationMTAT Applied Cryptography
MTAT.07.017 Applied Cryptography Smart Cards 2 University of Tartu Spring 2015 1 / 19 Security Model Parties involved in smart card based system: Cardholder Data owner Terminal Card issuer Card manufacturer
More informationCommon Criteria Protection Profile
Common Criteria Protection Profile Machine-Readable Electronic Documents based on BSI TR-03110 for Official Use [MR.ED-PP] BSI-CC-PP-0087-V2 Version 2.0.2 Document history Version 2.0.2, April 4th, 2016
More information10/02/2015. Introduction PROTOCOL EXAMPLES. e-passport. e-passports contain an RFID tag.
Introduction PROTOCOL EXAMPLES Tom Chothia Intro. To Comp. Sec. This talk gives some example of protocol attacks from my research, and a research group in Cambridge. E-passports (me & Smirnov) Contactless
More informationAuthentication. Overview of Authentication systems. IT352 Network Security Najwa AlGhamdi
Authentication Overview of Authentication systems 1 Approaches for Message Authentication Authentication is process of reliably verifying the identity of someone. Authentication Schemes 1. Password-based
More informationStrategies for the Implementation of PIV I Secure Identity Credentials
Strategies for the Implementation of PIV I Secure Identity Credentials A Smart Card Alliance Educational Institute Workshop PIV Technology and Policy Requirements Steve Rogers President & CEO 9 th Annual
More information1 Introduction. dloc is a revolutionary system for managing and
1 Introduction dloc is a revolutionary system for managing and authenticating critical records. Combining the security of blockchain and the convenience of Near Field Communication (NFC), it allows any
More informationThe Open Protocol for Access Control Identification and Ticketing with PrivacY
The Open Protocol for Access Control Identification and Ticketing with PrivacY For Secure Contactless Transactions and Enabling Logical and Physical Access Convergence October 2010 Actividentity 2 OPACITY
More informationSecure Elements 101. Sree Swaminathan Director Product Development, First Data
Secure Elements 101 Sree Swaminathan Director Product Development, First Data Secure Elements Secure Element is a tamper resistant Smart Card chip that facilitates the secure storage and transaction of
More informationSmart Cards. José Costa. Software for Embedded Systems. Departamento de Engenharia Informática (DEI) Instituto Superior Técnico
Smart Cards José Costa Software for Embedded Systems Departamento de Engenharia Informática (DEI) Instituto Superior Técnico 2015-11-09 José Costa (DEI/IST) Smart Cards 1 Outline Application Domains: Smart
More informationAnonymous Ticketing for NFC-enabled Mobile Phones
Anonymous Ticketing for NFC-enabled Mobile Phones David Derler, Klaus Potzmader, Johannes Winter, Kurt Dietrich Institute for Applied Information Processing and Communications, Graz University of Technology
More informationMTAT Applied Cryptography
MTAT.07.017 Applied Cryptography Smart Cards (JavaCard) University of Tartu Spring 2018 1 / 22 Smart Card Security Model Parties involved in a smart card based system: Cardholder Data owner Terminal owner
More informationJrsys Mobile Banking Solutions
Jrsys Mobile Banking Solutions Jrsys International corp. James Wu Mobile PKI solutions 1.Mobile CA 2.Mobile RA 3.Mobile Signing and Validation Service CA Mobile Signature/ Encryption Mobile PKI Mobile
More informationSmartCards as electronic signature devices Progress of standardization. Helmut Scherzer, CEN TC224/WG16 (Editor) IBM Germany
SmartCards as electronic signature devices Progress of standardization Helmut Scherzer, CEN TC224/WG16 (Editor) IBM Germany scherzer@de.ibm.com Active CEN working groups(today) TC224 : "Machine readable
More informationCONFORMITY TESTING OF EAC INSPECTION SYSTEMS
CONFORMITY TESTING OF EAC INSPECTION SYSTEMS By Dr. Michael Jahnich, Technical Director, HJP Consulting GmbH Testing the conformance of inspection systems for epassports is an ongoing and open issue. One
More informationNetwork Security Essentials
Network Security Essentials Fifth Edition by William Stallings Chapter 4 Key Distribution and User Authentication No Singhalese, whether man or woman, would venture out of the house without a bunch of
More informationSmart Cards. Outline. José Costa Application Domains: Smart Cards. Software for Embedded Systems
Smart Cards José Costa Software for Embedded Systems Department of Computer Science and Engineering (DEI) Instituto Superior Técnico Adapted from the overheads for ASE 2009-2010 2011-05-02 José Costa (DEI/IST)
More informationSPass NX V1.0 on S3CT9KW/S3CT9KC/S3CT9K9 Certification Report
KECS-CR-12-38 SPass NX V1.0 on S3CT9KW/S3CT9KC/S3CT9K9 Certification Report Certification No.: KECS-ISIS-0394-2012 2012. 6. 15 IT Security Certification Center History of Creation and Revision No. Date
More informationSmart Payments. Generating a seamless experience in a digital world.
Smart Payments Generating a seamless experience in a digital world www.infineon.com/payment Trends Rising need for security The trends highlighted opposite are heightening the need for security and performance,
More informationPart 9: Deployment of Biometric Identification and Electronic Storage of Data in MRTDs
Doc 9303 Machine Readable Travel Documents Seventh Edition, 2015 Part 9: Deployment of Biometric Identification and Electronic Storage of Data in MRTDs Approved by and published under the authority of
More informationSecurity & Chip Card ICs SLE 55R04. Intelligent 770 Byte EEPROM with Contactless Interface complying to ISO/IEC Type A and Security Logic
Security & Chip Card ICs SLE 55R04 Intelligent 770 Byte EEPROM with Contactless Interface complying to ISO/IEC 14443 Type A and Security Logic Short Product Information January 2001 Short Product Information
More information