Presentation is loading. Please wait.

Presentation is loading. Please wait.

E- passports Erik Poll Digital Security Group Radboud University Nijmegen.

Published byYasmine Winchell Modified over 9 years ago

Similar presentations

Presentation on theme: "E- passports Erik Poll Digital Security Group Radboud University Nijmegen."— Presentation transcript:

1 e- passports Erik Poll Digital Security Group Radboud University Nijmegen

2 Erik Poll Radboud Universiteit Nijmegen 2 overview e-passports functionality and security mechanisms problems, so far future

3 Erik Poll Radboud Universiteit Nijmegen 3 e-passports e-passport contains RFID chip / contactless smartcard –in Dutch passports, a Java Card chip stores digitally signed information: –initially just facial images (photos) –soon also fingerprints –later maybe iris aka biometric passport or MRTD with ICC/chip introduction pushed by US in the wake of 9/11 –to solve what problem?? international standard by ICAO (International Civil Aviation Organization, branch of United Nations) e-passport logo

4 Erik Poll Radboud Universiteit Nijmegen 4 Protocols & standards ISO 14443 defines physical communication for RFIDs ISO 7816 originally developed for contact smartcards defines standard APDU commands & responses, ICAO standard for e-passports defines specific IS0 7816 commands and responses for passports additional EU standards standardise optional parts of ICAO specs & fix timeline additional advanced secuity mechanisms on top of ICAO

5 Erik Poll Radboud Universiteit Nijmegen 5 National id-cards & terminology Nederlandse Identiteitskaart (NIK) conforms to the same ICAO specification NB possible confusion eNIK is a future extension of NIK, with digital signature capability MRTD = Machine-Readable Travel Document just has Machine (OCR) Readable Zone, the MRZ, but need not contain a chip ie. e-passport = MRTD + chip MRZ

6 Erik Poll Radboud Universiteit Nijmegen 6 Basic Access Control (BAC) protects against unauthorised access and eavesdropping receive additional info optically read MRZ send MRZ Machine Readable Zone encrypted

7 Erik Poll Radboud Universiteit Nijmegen 7 Alternative: Faraday Cage protects against unauthorised access, but not eavesdropping –used in US passports, initially instead of BAC

8 Erik Poll Radboud Universiteit Nijmegen 8 Active Authentication (AA) protects against passport cloning (which BAC doesn't) ie authentication of the passport chip public key, signed by government (DG15) send challenge prove knowledge of corresponding private key

9 Erik Poll Radboud Universiteit Nijmegen 9 Questions? Open source implementation of passport terminal and passport applet available at http://jmrtd.sourceforge.net

Download ppt "E- passports Erik Poll Digital Security Group Radboud University Nijmegen."

Similar presentations

Time To Reflect: Where Have we BeenWhere Do We Go Barry J. Kefauver Best Practices Workshop Bogota, Colombia November 10-12, 2008.

Time To Reflect: Where Have we BeenWhere Do We Go Barry J. Kefauver Best Practices Workshop Bogota, Colombia November 10-12, 2008.
Technical Report PKI for Machine Readable Travel Documents offering ICC read-only access TAG_15 Montreal, 2004-05-18 Tom Kinneging.

Technical Report PKI for Machine Readable Travel Documents offering ICC read-only access TAG_15 Montreal, Tom Kinneging.
The detection and prevention of ID Fraud

The detection and prevention of ID Fraud
Security of JavaCard smart card applets Erik Poll University of Nijmegen

Security of JavaCard smart card applets Erik Poll University of Nijmegen
Match On Card Technology and its use for PKI Mgr. Miroslav Valeš Sales Manager Eastern Europe May 9, 2001 CATE 2001 Security and Protection.

Match On Card Technology and its use for PKI Mgr. Miroslav Valeš Sales Manager Eastern Europe May 9, 2001 CATE 2001 Security and Protection.
FIPS 201 Framework: Special Pubs 800-73,76,78 Jim Dray HSPD-12 Workshop May 4/5, 2005.

FIPS 201 Framework: Special Pubs ,76,78 Jim Dray HSPD-12 Workshop May 4/5, 2005.
12 November 2002Digital Identity Forum – London Biometrics and ID Bill Perry Independent Consultant Phone: 077 8683 6764.

12 November 2002Digital Identity Forum – London Biometrics and ID Bill Perry Independent Consultant Phone:
Www.regulaforensics.com 1. Documents types Visas (ID-2) ICAO standard passports (ID-3) ID cards and driving licences (ID-1) Travel and identity documents.

1. Documents types Visas (ID-2) ICAO standard passports (ID-3) ID cards and driving licences (ID-1) Travel and identity documents.
DIGITAL SIGNATURES and AUTHENTICATION PROTOCOLS - Chapter 13

DIGITAL SIGNATURES and AUTHENTICATION PROTOCOLS - Chapter 13
DIGITAL SIGNATURES and AUTHENTICATION PROTOCOLS - Chapter 13 DIGITAL SIGNATURES and AUTHENTICATION PROTOCOLS - Chapter 13 Digital Signatures Authentication.

DIGITAL SIGNATURES and AUTHENTICATION PROTOCOLS - Chapter 13 DIGITAL SIGNATURES and AUTHENTICATION PROTOCOLS - Chapter 13 Digital Signatures Authentication.
Lecture 6 User Authentication (cont)

Lecture 6 User Authentication (cont)
Review of Patents Agenda Item 3: Report of the New Technologies Working Group.

Review of Patents Agenda Item 3: Report of the New Technologies Working Group.
Nairobi, Kenya 29-31October 2007 1 Fifth Special Meeting of the Counter- Terrorism Committee with International, Regional and Subregional Organizations.

Nairobi, Kenya 29-31October Fifth Special Meeting of the Counter- Terrorism Committee with International, Regional and Subregional Organizations.
FAL Programme Presentation to ACI July 2004 Mary McMunn Chief FAL section Presentation to ACI July 2004 Mary McMunn Chief FAL section.

FAL Programme Presentation to ACI July 2004 Mary McMunn Chief FAL section Presentation to ACI July 2004 Mary McMunn Chief FAL section.
Civil Registry Agency of the Ministry of Justice, Georgia Digital Signature Services in Georgia Mikheil Kapanadze.

Civil Registry Agency of the Ministry of Justice, Georgia Digital Signature Services in Georgia Mikheil Kapanadze.
Biometrics – updates on ISO and ICAO Asbjørn Hovstø Porvoo7 Reykjavik, Iceland 27th May 2005.

Biometrics – updates on ISO and ICAO Asbjørn Hovstø Porvoo7 Reykjavik, Iceland 27th May 2005.
Cryptography and Authentication Lab ECE4112 Group4 Joel Davis Scott Allen Quinn.

Cryptography and Authentication Lab ECE4112 Group4 Joel Davis Scott Allen Quinn.
1 Automatic Border Passage at Amsterdam Airport Schiphol ACM ICPC, November 16th 2002 Art de Blaauw, manager projects.

1 Automatic Border Passage at Amsterdam Airport Schiphol ACM ICPC, November 16th 2002 Art de Blaauw, manager projects.
Dr. Kim Nguyen, ECC Workshop, Bochum, 20.9.2004, 1 Identity in the digital age Travel documents & Cryptography Dr. Kim Nguyen Bundesdruckerei GmbH, Berlin.

Dr. Kim Nguyen, ECC Workshop, Bochum, , 1 Identity in the digital age Travel documents & Cryptography Dr. Kim Nguyen Bundesdruckerei GmbH, Berlin.
Biometrics in New Zealand Passport issuing Border crossing System and information access Building access.

Biometrics in New Zealand Passport issuing Border crossing System and information access Building access.

Similar presentations

Ads by Google