Extended Access Control

Extended Access Control (EAC) is a set of advanced security features for electronic passports that protects and restricts access to sensitive personal data contained in the RFID chip. In contrast to common personal data (like the bearer's photograph, names, date of birth, etc.) which can be protected by basic mechanisms, more sensitive data (like fingerprints or iris images) must be protected further for preventing unauthorized access and skimming. A chip protected by EAC will allow that this sensitive data is read (through an encrypted channel) only by an authorized passport inspection system.[1][2]

EAC was introduced by ICAO[3][4] as an optional security feature (additional to Basic Access Control) for restricting access to sensitive biometric data in an electronic MRTD. A general idea is given: the chip must contain chip-individual keys, must have processing capabilities and additional key management will be required. However, ICAO leaves the actual solution open to the implementing States.

There are several different proposed implementations of the mechanism, all of which must retain backward-compatibility with the legacy Basic Access Control (BAC), which is mandatory in all EU countries. The European Commission described that the technology will be used to protect fingerprints in member states' e-passports. The deadline for member states to start issuing fingerprint-enabled e-passports was set to be 28 June 2009. The specification selected for EU e-passports was prepared by the German Federal Office for Information Security (BSI) in their technical report TR-03110.[5] Several other countries implement their own EAC.

EAC as defined by the EU

EAC as defined by the EU has two requirements: chip and terminal authentication.[6]

Chip authentication (for strong session encryption)

The chip authentication specification defines a handheld device (CAP reader) with a smart card slot, a decimal keypad, and a display capable of displaying at least 12 characters. Chip authentication (CA) has two functions:

  • To authenticate the chip and prove that the chip is genuine. Only a genuine chip can implement communication securely.
  • To establish a strongly secured communication channel, using a chip-specific key pair with strong encryption and integrity protection.

Chip authentication has an add-on Basic Access Control (BAC) with protection against skimming and eavesdropping.

Terminal authentication (access restricted to authorized terminals)

Terminal authentication (TA) is used to determine whether the inspection system (IS) is allowed to read sensitive data from the e-passport. The mechanism is based on digital certificates which come in the format of card verifiable certificates.

  • Each inspection system is granted a card verifiable certificate (CVC) from a document verifier (DV). The inspection system's certificate is valid only for a short time period, typically between 1 day and 1 month.
  • An inspection system may have several CVCs installed at any time, one for each country that allows it to read sensitive data.
  • The CVC allows the inspection system to request one or more items of sensitive data, such as data for iris or fingerprint recognition.[7]

A document verifier certificate is granted from the country verification certificate authority (CVCA). These certificates can be for domestic or foreign document verifiers. The certificates are typically issued for medium amounts of time, between half a month and 3 months. The CVCA is generated by each country and is typically valid for 6 months to 3 years.[7]

  1. ^ G. S. Kc; P. A. Karger (1 April 2005). "Security and privacy issues in machine readable travel documents (MRTDs)" (PDF). RC 23575 (W0504-003). IBM. Retrieved 4 Jan 2012.
  2. ^ Javier López; Pierangela Samarati; Josep L. Ferrer (2007). Public key infrastructure: 4th European PKI Workshop : theory and practice, EuroPKI 2007. Springer. p. 41. ISBN 978-3-540-73407-9.
  3. ^ "5.8 Security for additional biometrics". ICAO Doc 9303, Machine Readable Travel Documents, Part 1: Machine Readable Passports, Volume 2: Specifications for Electronically Enabled Passports with Biometric Identification Capability (Sixth ed.). International Civil Aviation Organization (ICAO). 2006. p. 84.
  4. ^ "Temporat Secure Digital Identity" (PDF). EPassport Extended Access Control. White Paper. Archived from the original (PDF) on 21 October 2006. Retrieved 19 June 2013.
  5. ^ "Advanced Security Mechanisms for Machine Readable Travel Documents – Extended Access Control (EAC)" (PDF). BSI. Retrieved 2009-11-26.
  6. ^ Kugler, Dennis (1 June 2006). "Extended Access Control; Infrastructure and control" (PDF). Retrieved 19 June 2013.
  7. ^ a b Kügler, Dennis. "Extended Access Control: Infrastructure and Protocol" (PDF). Retrieved 2016-05-03.[permanent dead link]

Read other articles:

Saint-Germain-sur-Renon

Saint-Germain-sur-RenonSaint-Germain-sur-Renon Lokasi di Region Auvergne-Rhône-Alpes Saint-Germain-sur-Renon Koordinat: 46°04′54″N 5°03′29″E / 46.0817°N 5.0581°E / 46.0817; 5.0581NegaraPrancisRegionAuvergne-Rhône-AlpesDepartemenAinArondisemenBourg-en-BresseKantonVillars-les-DombesAntarkomuneCentre DombesPemerintahan • Wali kota (2008–2014) Christophe MonierLuas • Land115,8 km2 (61 sq mi) • Populasi2241&...

 

Army of the Tsardom of Russia

Army of Tsardom of RussiaВойско Русского государства (Russian)Founded15th centuryDisbanded1682HeadquartersMoscowLeadershipFormer MilitaryArmies of Rus'Related articlesHistoryMilitary history of Russia Muscovite–Lithuanian WarsRusso-Kazan Wars (1439-1552)Russian-Livonian War (1480-1481)Smolensk War (1632-1634) Army of the Tsardom of Russia (Russian: Армия Русского государства) known also as the Forces of the Russian State (Russian: Во�...

 

Bartolomeo Pacca

Disambiguazione – Se stai cercando l'omonimo cardinale vissuto tra il 1817 e il 1880, vedi Bartolomeo Pacca il Giovane. Bartolomeo Paccacardinale di Santa Romana ChiesaRitratto del cardinale Pacca  Incarichi ricoperti Arcivescovo titolare di Damiata (1785-1801) Nunzio apostolico a Colonia (1786-1794) Nunzio apostolico in Portogallo (1794-1801) Abate commendatario di Santa Maria di Valdiponte (1802-1844) Cardinale presbitero di San Silvestro in Capite (1802-1818) Camerlengo del Collegi...

Gaetano Fichera

Gaetano Fichera Gaetano Fichera (Acireale, 8 febbraio 1922 – Roma, 1º giugno 1996) è stato un matematico italiano. Indice 1 Biografia 2 Note 3 Bibliografia 4 Voci correlate 5 Altri progetti 6 Collegamenti esterni Biografia Figlio di un docente di matematica delle scuole superiori, che gli aveva saputo infondere l'amore per la disciplina, dopo gli studi secondari e il primo biennio universitario svolto presso l'Università degli Studi di Catania (1937-39), dove era stato ammesso appena qui...

 

Martin Gardner

American mathematics and science writer (1914–2010) Martin GardnerBorn(1914-10-21)October 21, 1914Tulsa, Oklahoma, U.S.DiedMay 22, 2010(2010-05-22) (aged 95)Norman, Oklahoma, U.S.OccupationAuthorAlma materUniversity of ChicagoGenreRecreational mathematics, puzzles, close-up magic, annotated literary works, debunkingLiterary movementScientific skepticismNotable worksFads and Fallacies in the Name of Science, Mathematical Games (Scientific American column), The Annotated Alice, The ...

 

Andi Bataralifu

Andi Bataralifu Andi Bataralifu (lahir 6 September 1971) adalah seorang birokrat Indonesia kelahiran Wajo. Ia menyelesaikan pendidikan sarjananya di Institut Ilmu Pemerintahan Jakarta dengan jurusan Ilmu Pemerintahan. Kemudian, ia menjalani pendidikan magister di Universitas Hasanuddin dengan jurusan Ilmu Perencanaan Kota dan Daerah. Pada 21 Februari 2024, ia diangkat menjadi pelaksana jabatan bupati Wajo.[1] Referensi ^ Profil Andi Bataralifu, Pejabat Kemendagri Dipercaya Tito Karnav...

Кухня. Война за отель

Кухня. Война за отель Постер второго сезона Жанры ситуационная комедиямелодрама Режиссёры Евгений Шелякин (1 сезон)Михаил Морсков (2 сезон) Сценаристы Андрей МухортовДмитрий ЗверьковВадим ФоминыхКонстантин МаньковскийЕкатерина КолесникАрсений ВанинАртём СкубаИван Ф�...

 

Tennessee State Guard

Tennessee State GuardThe Tennessee State Guard insigniaActive1915 – 19171941 – 19471985 – presentCountry United StatesAllegiance TennesseeTypeState defense forceRoleMilitary reserve forceSize~500[1]Part ofTennessee Military DepartmentGarrison/HQNashville, TNWebsiteTNSG Official WebsiteCommandersCivilian LeadershipGovernor Bill LeeGovernor of the State of TennesseeState Military LeadershipBrigadier General Warner Ross Adjutant General of the State of Tennessee Brig...

 

Daily Collegian

Independent student newspaper of Pennsylvania State University For other uses, see The Collegian. A major contributor to this article appears to have a close connection with its subject. It may require cleanup to comply with Wikipedia's content policies, particularly neutral point of view. Please discuss further on the talk page. (May 2020) (Learn how and when to remove this message) The Daily CollegianFront page of The Daily Collegian on Jan. 16, 2020.TypeStudent newspaperFormatBroadsheetSch...

Suzzara

Cet article est une ébauche concernant une localité italienne et la Lombardie. Vous pouvez partager vos connaissances en l’améliorant (comment ?) selon les recommandations des projets correspondants. Suzzara Administration Pays Italie Région Lombardie  Province Mantoue  Code postal 46029 Code ISTAT 020065 Code cadastral L020 Préfixe tel. 0376 Démographie Population 20 648 hab. (31-12-2010[1]) Densité 344 hab./km2 Géographie Coordonnées 45° 00′...

 

Peter Pan

Disambiguazione – Se stai cercando altri significati, vedi Peter Pan (disambigua). Questa voce o sezione sull'argomento personaggi immaginari non cita le fonti necessarie o quelle presenti sono insufficienti. Puoi migliorare questa voce aggiungendo citazioni da fonti attendibili secondo le linee guida sull'uso delle fonti. Peter PanPeter Pan in una rappresentazione di Oliver Herford, The Peter Pan Alphabet, Charles Scribner's Sons, New York, 1907. UniversoPeter Pan Lingua orig.In...

 

内华达州

内華達州 美國联邦州State of Nevada 州旗州徽綽號:產銀之州、起戰之州地图中高亮部分为内華達州坐标:35°N-42°N, 114°W-120°W国家 美國建州前內華達领地加入聯邦1864年10月31日(第36个加入联邦)首府卡森城最大城市拉斯维加斯政府 • 州长(英语:List of Governors of {{{Name}}}]]) • 副州长(英语:List of lieutenant governors of {{{Name}}}]])喬·隆巴爾多(R斯塔...

قائمة الأفلام المصرية سنة 1944

يفتقر محتوى هذه المقالة إلى الاستشهاد بمصادر. فضلاً، ساهم في تطوير هذه المقالة من خلال إضافة مصادر موثوق بها. أي معلومات غير موثقة يمكن التشكيك بها وإزالتها. (مارس 2016) هذه قائمة بالأفلام المصرية لسنة 1944 مرتبة أبجديا 1944 الأسم إخراج تأليف تمثيل النوع ملاحظات أما جنان هنري برك�...

 

European College of Business and Management

This article does not cite any sources. Please help improve this article by adding citations to reliable sources. Unsourced material may be challenged and removed.Find sources: European College of Business and Management – news · newspapers · books · scholar · JSTOR (January 2021) (Learn how and when to remove this message) European College of Business and ManagementLogo of the European College of Business and ManagementOther nameECBMFormer nameEurope...

 

Carroll Park

Park in Baltimore, Maryland, US For the park in New York City, see Carroll Gardens, Brooklyn. Carroll ParkMount Clare MansionTypePublic parkLocation1500 Washington BoulevardBaltimore, MD 21230[1]Coordinates39°16′34″N 76°39′14″W / 39.276°N 76.654°W / 39.276; -76.654Area117 acresCreated1890Operated byCity of Baltimore Carroll Park is a nearly 117-acre (47 ha) public park located in the historic Washington Village-Pigtown neighborhood in sout...

Tamago kake gohan

Japanese breakfast dish of rice and egg Tamago kake gohan (left), along with tsukemono and miso soup Tamago kake gohan (卵かけご飯, egg on rice) is a popular Japanese breakfast food consisting of cooked Japanese rice topped or mixed with raw egg and soy sauce. Background Tamago kake gohan is a dish in which a raw egg is put on top of or mixed with rice, or a recipe for such a dish.[1] Beaten eggs are sometimes used, as are non-beaten. Sometimes only the yolk of the egg is used. T...

 

Blondie (confection)

Rich, sweet vanilla dessert bar BlondiesHazelnut and white chocolate blondiesAlternative namesBlonde brownie, blondie bar, blondies, butterscotch brownie.TypeDessert barPlace of originUnited StatesMain ingredientsFlour, sugar, butter, eggs, baking powder, vanilla Cookbook: Blondies  Media: Blondies Blondies are a type of dessert bar that is similar to brownies but with a different flavor. They are made with brown sugar instead of cocoa and are often baked in a pan, and then cut into ...

 

2014 Tim Hortons Brier

Curling competition at Kamloops, British Columbia 2014 Tim Hortons BrierHost cityKamloops, British ColumbiaArenaInterior Savings CentreDatesMarch 1–9Attendance65,005Winner AlbertaCurling clubGlencoe CC, CalgarySkipKevin KoeThirdPat SimmonsSecondCarter RycroftLeadNolan ThiessenAlternateJamie KingCoachJohn DunnFinalist British Columbia (John Morris)« 2013 2015 » The 2014 Tim Hortons Brier was held from March 1 to 9 at the Interior Savings Centre in Kamloops, British ...

广南东路

宋 两广与海南岛 广东历史 百越南越 史前-前221 秦朝南海郡 前221—前206 南越国 前206—前111 西汉交趾刺史部 前111—8 交趾刺史部(邓让割据) 8-30 东汉交趾刺史部 30—191 交州刺史部(士燮割据)191—226 孙吳廣州 226—280 晋朝廣州 280—420 刘宋廣州 420-479 萧齐廣州 479-502 萧梁廣州 502-557 陈朝廣州 557-589 冼冯政权 589—689 唐朝岭南道 689—907 后梁岭南道 907—917 南汉 917—971 宋朝�...

 

Aidan Hutchinson

American football player (born 2000) American football player Aidan HutchinsonHutchinson with the Lions in 2022No. 97 – Detroit LionsPosition:Defensive endPersonal informationBorn: (2000-08-09) August 9, 2000 (age 23)Plymouth, Michigan, U.S.Height:6 ft 7 in (2.01 m)Weight:268 lb (122 kg)Career informationHigh school:Divine Child (Dearborn, Michigan)College:Michigan (2018–2021)NFL draft:2022 / Round: 1 / Pick: 2Career history Detroit Lions ...