E-Passport Survey Serge Vaudenay and Martin Vuagnoux COLE - - PowerPoint PPT Presentation

e passport survey
SMART_READER_LITE
LIVE PREVIEW

E-Passport Survey Serge Vaudenay and Martin Vuagnoux COLE - - PowerPoint PPT Presentation

Sep 22, 2022 324 likes •475 views

E-Passport Survey Serge Vaudenay and Martin Vuagnoux COLE POLYTECHNIQUE FDRALE DE LAUSANNE http://lasecwww.epfl.ch/ SV 2007 e-passport survey Eurocrypt 2007 1 / 13 Machine-Readable Travel Document (MRTD) History 1968: ICAO starts

slide-1
SLIDE 1

E-Passport Survey

Serge Vaudenay and Martin Vuagnoux

ÉCOLE POLYTECHNIQUE FÉDÉRALE DE LAUSANNE

http://lasecwww.epfl.ch/

SV 2007 e-passport survey Eurocrypt 2007 1 / 13

slide-2
SLIDE 2

Machine-Readable Travel Document (MRTD) History

1968: ICAO starts working on MRTD 1980: first standard (OCR-B Machine Readable Zone (MRZ)) 1997: ICAO-NTWG (New Tech. WG) starts working on biometrics 2001 9/11: US want to speed up the process 2004: version 1.1 of standard with biometrics and contacless ICC 2006: EU develops extended access control + more private data

SV 2007 e-passport survey Eurocrypt 2007 2 / 13

slide-3
SLIDE 3

How to Distinguish a Compliant MRTD

SV 2007 e-passport survey Eurocrypt 2007 3 / 13

slide-4
SLIDE 4

MRTD in a Nutshell

MRTD MRZ LDS

❄ ❄ ❄ ❄ ❄ ❄

  • ptical access

radio access

data authentication by digital signature + PKI aka passive authentication access control + key agreement based on MRZ info aka basic access control (BAC) chip authentication by public-key cryptgraphy aka active authentication (AA)

SV 2007 e-passport survey Eurocrypt 2007 4 / 13

slide-5
SLIDE 5

MRZ

document type issuing country holder name

  • doc. number + CRC

nationality date of birth + CRC gender date of expiry + CRC

  • ptions + CRC

SV 2007 e-passport survey Eurocrypt 2007 5 / 13

slide-6
SLIDE 6

LDS

DG1 (mandatory): same as MRZ DG2 (mandatory): encoded face DG3: encoded finger(s) DG4: encoded eye(s) DG5: displayed portrait DG6: (reserved) DG7: displayed signature DG8: data feature(s) DG9: structure feature(s) DG10: substance feature(s) DG11: add. personal detail(s) DG12: add. document detail(s) DG13: optional detail(s) DG14: (reserved) DG15: KPuAA DG16: person(s) to notify DG17: autom. border clearance DG18: electronic visa DG19: travel record(s) SOD (mandatory): digital sign.

SV 2007 e-passport survey Eurocrypt 2007 6 / 13

slide-7
SLIDE 7

The Eurocrypt 07 Survey

# e-passports 3 # countries 3 Switzerland, UK, France

SV 2007 e-passport survey Eurocrypt 2007 7 / 13

slide-8
SLIDE 8

Shield (Faraday Cage)

prevent from unauthorized access by means of a metallic cover Switzerland UK no France TBC: passports from the USA have shields

SV 2007 e-passport survey Eurocrypt 2007 8 / 13

slide-9
SLIDE 9

Privacy-Enhanced RFID Singulation

unlinkability by means of PRG Switzerland UK 08xxxxxx France TBC: passports from Italy, New Zealand, USA use constants passports from Australia use xxxxxxxx (against ISO 14443B Part 3)

SV 2007 e-passport survey Eurocrypt 2007 9 / 13

slide-10
SLIDE 10

Basic Access Control

access control + secure messaging by means of symmetric-crypto Switzerland implemented UK France ? TBC: passports from the USA don’t have BAC

SV 2007 e-passport survey Eurocrypt 2007 10 / 13

slide-11
SLIDE 11

Data Beyond MRZ + Face

identification by means of (extra) biometrics Switzerland no UK France ? TBC: only passports from the USA have extra information (DG11–12)

SV 2007 e-passport survey Eurocrypt 2007 11 / 13

slide-12
SLIDE 12

Active Authentication

proof of genuity by means of public-key crypto Switzerland no UK France ? TBC: only passports from Belgium use AA

SV 2007 e-passport survey Eurocrypt 2007 12 / 13

slide-13
SLIDE 13

If you do hold an e-passport...

please contact us during the conference

SV 2007 e-passport survey Eurocrypt 2007 13 / 13