Securing Data in ePassports

Slides:



Advertisements
Similar presentations
1 ABCs of PKI TAG Presentation 18 th May 2004 Paul Butler.
Advertisements

Technical Report PKI for Machine Readable Travel Documents offering ICC read-only access TAG_15 Montreal, Tom Kinneging.
Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.
Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.
AFACT eCOO WG interim meeting - Conference Call 1st March of 2011 Mahmood Zargar eCOO Experiences and Standards.
15June’061 NASA PKI and the Federal Environment 13th Fed-Ed PKI Meeting 15 June ‘06 Presenter: Tice DeYoung.
Nairobi, Kenya 29-31October Fifth Special Meeting of the Counter- Terrorism Committee with International, Regional and Subregional Organizations.
European Electronic Identity Practices Country Update of …………… Speaker: Date:
Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.
Security of eGovernment, European Parliament, Brussels 2013 Max Snijder, Linda Kool, Geert Munnichs L Kool | 1 19 February 2013 Findings from the ePassport.
International Civil Aviation Organization European and North Atlantic Office Outcome of the ICAO EUR FPL2012 Workshop Kiev, Ukraine 29 June – 1 July 2010.
PAPERLESS BUSINESS in GEORGIAN FINANCIAL SECTOR NANA ENUKIDZE - Advisor to the Governor.
Biometrics – updates on ISO and ICAO Asbjørn Hovstø Porvoo7 Reykjavik, Iceland 27th May 2005.
The Icelandic biometric passport The Porvoo Group 7th Seminar Hotel Loftleidir, Reykjavik, Iceland May 2005 Þorsteinn Helgi Steinarsson.
Biometrics in New Zealand Passport issuing Border crossing System and information access Building access.
Risk of Using RFID chips in Passports Oscar Mendez.
P O L I C E D E P A R T M E N T  Biometric passport – Passport Act – Issuing a biometric passport – Development project  Biometric Passport To Biometric.
ASYMMETRIC CIPHERS.
1 May 2006 … Identity management - Internet - Data controller - PKI - Vulnerabilities - Fingerprint - Critical Information Infrastructure - Privacy and.
Securing Data in ePassports Policy Issues ICAO/NTWG.
Biometrics on the international scene David Gamper, ACI Headquarters Scope of presentation ICAO TAG/MRTD progress Different uses of biometrics ACI World.
Introduction to Secure Messaging The Open Group Messaging Forum April 30, 2003.
Special Publication : Interfaces for Personal Identity Verification Jim Dray NIST NPIVP Workshop March 3, 2006.
New Technologies and Travel Documents ICAO 12 th Meeting of the Facilitation Division Cairo March 23, 2004.
Risks of data manipulation and theft Gateway Average route travelled by an sent via the Internet from A to B Washington DC A's provider Paris A.
HIT Policy Committee NHIN Workgroup Recommendations Phase 2 David Lansky, Chair Pacific Business Group on Health Danny Weitzner, Co-Chair Department of.
The Porvoo Group Tapio Aaltonen Director, CA-services, co- chair Porvoo Group Population Register Centre Finland.
Cryptography and Network Security (CS435) Part Eight (Key Management)
Chapter 3 (B) – Key Management; Other Public Key Cryptosystems.
Who’s watching your network The Certificate Authority In a Public Key Infrastructure, the CA component is responsible for issuing certificates. A certificate.
Cryptography and Network Security Chapter 14 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.
Some Technical Issues in PKI Deployment David Chadwick
ACI Biometrics Task Force Status Report ACI Bio TF Meeting 2 Geneva, Switzerland April 21, 2005.
Why a Commercial Provider should Join the Academic Cloud Federation David Blundell Managing Director 100 Percent IT Ltd Simple, Flexible, Reliable.
Harmonised use of accreditation for assessing the competence of various Conformity Assessment Bodies Dr Andreas Steinhorst, EA ERA workshop 13 April 2016,
Nikita Maria Department of Applied Informatics University of Macedonia - Greece.
Digital Certificates Presented by: Matt Weaver. What is a digital certificate? Trusted ID cards in electronic format that bind to a public key; ex. Drivers.
TAG Presentation 18th May 2004 Paul Butler
Securing Data in ePassports
Alternative Governance Models for PKI
Registering your placement on MAP
Technical Report PKI for
TeleTrusT Initiatives for PKI Solutions
Cryptography and Network Security
Information Security message M one-way hash fingerprint f = H(M)
TAG Presentation 18th May 2004 Paul Butler
B. R. Chandavarkar CSE Dept., NITK Surathkal
New Technologies and Travel Documents
Chair Professor Chin-Chen Chang Feng Chia University
Information Security message M one-way hash fingerprint f = H(M)
Information Security message M one-way hash fingerprint f = H(M)
Setting Actuarial Standards
European Citizens’ Initiative, Commission regulation proposal Focus on IT aspects Jérôme Stefanini DIGIT.B.2 05/06/2018.
Security in ebXML Messaging
جايگاه گواهی ديجيتالی در ايران
Technical Report PKI for
Information Security message M one-way hash fingerprint f = H(M)
Digital Certificates and X.509
Institutional changes The role of Bilateral Oversight Boards
The Secure Sockets Layer (SSL) Protocol
HIPAA Security Standards Final Rule
OUR VISION World class seaport of choice
Appropriate Access InCommon Identity Assurance Profiles
PLANNING A SECURE BASELINE INSTALLATION
PKI (Public Key Infrastructure)
Instructor Materials Chapter 5: Ensuring Integrity
E-identities (and e-signatures)
Registering your placement on MAP
RECORDING AND DOCUMENTING IMMIGRATION CONTROLS
Getting Ready For GDPR Simon Marks Director
Presentation transcript:

Securing Data in ePassports Policy Issues ICAO/NTWG

John Davies Director of Systems, UK Passport Service Chairman NTWG PKI Task Force ICAO/NTWG

The presentation will address: Why secure electronic data? Why use PKI/encryption? How a globally interoperable PKI could work for passports ICAO/NTWG

Why secure electronic data? To ensure the electronic data was loaded by the appropriate passport issuing authority To ensure the electronic data has not been overwritten or amended in any way. To protect inappropriate access to data by unauthorised persons or organisations. ICAO/NTWG

e-Passports will initially contain the following electronic data: Biometric information Portrait Data (mandatory) Finger print and iris data (optional) Personal details from the passport biodata page ( name, date of birth, passport number, etc.) ICAO/NTWG

e-Passport specifications will offer read only access to the electronic data and will not initially offer any updating facility. This limitation will facilitate a simple form of security implementation in the first instance. ICAO/NTWG

There is a tension between: Ensuring the electronic data is secure from inappropriate access Ensuring the electronic data can be accessed easily by immigration authorities. ICAO/NTWG

The PKI scheme is based on open access but allows individual states to choose optional additional security methods to protect personal data. ICAO/NTWG

Why use a public key infrastructure (PKI)? PKI is a well established method of protecting and authenticating data held on computer chips. No other scheme offers equivalent security for chip technology. ICAO/NTWG

Why use encryption? The proposals do not include encryption for basic personal data or the facial biometric. Encryption of fingerprint or iris data could be considered by states who choose to use these forms of biometric, but encryption specifications have not been developed. ICAO/NTWG

The PKI scheme proposes: A peer-based environment with each state independent and autonomous with respect to passport security. An agreed means of sharing and updating public keys. ICAO/NTWG

Responsibilities for states issuing e- passports: Generate key sets and protect from unauthorised access. Manage distribution of country signing certificates using bilateral secure diplomatic means. Manage certificate revocations when a key is compromised. Facilitate dissemination of information about public keys via ICAO public key directory . ICAO/NTWG

The PKI specifications recognise many individual states already have a PKI infrastructure : RSA or DSA or elliptic curve and related hashing algorithms are included in the specifications. ICAO/NTWG

PK1 responsibilities for states reading e-Passports : Maintain up to date information about public keys and certificate revocations on their systems. Provide suitable reader infrastructures. ICAO/NTWG

ICAO Responsibilities: To provide an efficient and reliable public key directory Ensure the directory is only updated by member states. Provide open access to public key information to participating states and organisations . ICAO/NTWG

The PKI Technical report: Aimed at specialists familiar with PKI. Proposes a technical framework and guidelines to enable each country to develop secure e-Passports. ICAO/NTWG

The technical report includes an annex on PKI and security threats The technical report includes an annex on PKI and security threats. This is intended to aid individual states with their own risk analysis and mitigation decisions. ICAO/NTWG

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com. Inc. All rights reserved.