User–Centric Identity Using ePassports

Oostdijk, Martijn; van Dijk, Dirk-Jan; Wegdam, Maarten

doi:10.1007/978-3-642-05284-2_17

User–Centric Identity Using ePassports

Martijn Oostdijk¹⁸,
Dirk-Jan van Dijk¹⁸ &
Maarten Wegdam¹⁸

Conference paper

686 Accesses

Part of the book series: Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering ((LNICST,volume 19))

Abstract

The worldwide introduction of ePassports presents a unique opportunity for the online identity community to implement trustworthy identity providers. The ePassport provides citizens with a strong authentication token within a global Public Key Infrastructure backed by government administrations. This paper studies the possibilities for leveraging the ePassport for user-centric identity and reports on an experiment in which ePassports are combined with the user-centric identity management framework Information Card. Note that no changes to already deployed ePassports are needed for our solution to work.

This is a preview of subscription content, log in via an institution.

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 39.99; Price excludes VAT (USA)

Softcover Book: USD 54.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Learn about institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

References

Aussel, J.-D.: Smart Cards and Digital Identity. Teletronikk 3/4, 66–78 (2007) ISSN 0085-7130
Google Scholar
Broekhaar, S., Verschuren, J.: How to Obtain CSCA Certificates – The CSCA Overview List, MRTD report, 2, ICAO, 32–35 (2007)
Google Scholar
Bruegger, B.P., Hühnlein, D., Kreutzer, M.: Towards global eID-Interoperability. In: BIOSIG 2007. LNI, vol. 108, pp. 127–140 (2007)
Google Scholar
Cameron, K.: The Laws of Identity – as of 5/12/2005, Microsoft Corporation (2005)
Google Scholar
Hoepman, J.-H., Hubbers, E., Jacobs, B., Oostdijk, M., Schreur, R.W.: Crossing Borders: Security and Privacy Issues of the European e-Passport. In: Yoshiura, H., Sakurai, K., Rannenberg, K., Murayama, Y., Kawamura, S.-i. (eds.) IWSEC 2006. LNCS, vol. 4266, pp. 152–167. Springer, Heidelberg (2006)
Chapter Google Scholar
ICAO: Machine Readable Travel Documents, ICAO Doc 9303, part 1: Specifications for Electronically Enabled Passports with Biometric Identification Capability, 6th edn., vol. 2 (2006)
Google Scholar
ISO: Information technology — Security techniques — Digital signature schemes giving message recovery — Part 2: Integer factorization based mechanisms, ISO/IEC 9796-2, 2nd edn. (2002)
Google Scholar
Juels, A., Molnar, D., Wagner, D.: Security and Privacy Issues in E-passports. In: Proc. SecureComm 2005, pp. 74–88. IEEE Computer Society, Los Alamitos (2005)
Google Scholar
Lekkas, D., Gritzalis, D.: e-Passports as a means towards the first world-wide Public Key Infrastructure. In: López, J., Samarati, P., Ferrer, J.L. (eds.) EuroPKI 2007. LNCS, vol. 4582, pp. 34–48. Springer, Heidelberg (2007)
Chapter Google Scholar
Liu, Y., Kasper, T., Lemke-Rust, K., Paar, C.: E-Passport - Cracking Basic Access Control Keys. In: Meersman, R., Tari, Z. (eds.) OTM 2007, Part II. LNCS, vol. 4804, pp. 1531–1547. Springer, Heidelberg (2007)
Chapter Google Scholar
Nadalin, A.J.: Mobile Identity. In: The European e-Identity Conference, The Hague (2008), http://www.eema.org/downloads/annual08/nadalin2c.pdf
Nanda, A.: Identity Selector Interoperability Profile, V1.0, Microsoft Corporation (2007)
Google Scholar
OpenID: OpenID Authentication 2.0 – Final (2007), http://openid.net/specs/openid-authentication-2_0.html
Ortiz-Yepes, D.A.: Enhancing Authentication in eBanking with NFC-Enabled Mobile Phones. ERCIM News 76, 63–64 (2009)
Google Scholar
SAML, OASIS specification (2005), http://saml.xml.org/saml-specifications
Vaudenay, S., Monnerat, J., Vuagnoux, M.: About Machine-Readable Travel Documents. In: Proc. International Conference on RFID Security 2007, pp. 15–28 (2007)
Google Scholar
Vaudenay, S.: E-Passport Threats. IEEE Security & Privacy, 72–75 (November/December 2007)
Google Scholar

Download references

Author information

Authors and Affiliations

Novay, P.O. Box 589, 7500AN, Enschede, The Netherlands
Martijn Oostdijk, Dirk-Jan van Dijk & Maarten Wegdam

Authors

Martijn Oostdijk
View author publications
You can also search for this author in PubMed Google Scholar
Dirk-Jan van Dijk
View author publications
You can also search for this author in PubMed Google Scholar
Maarten Wegdam
View author publications
You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

Department of Electrical Engineering and Computer Science, Robert R. McCormick School of Engineering and Application Science, Northwestern University, 2145 Sheridian Road, 60208-3118, Evanston, IL, USA
Yan Chen
Athens Information Technology, Markopoulo Ave., GR-19002, Peania, Greece
Tassos D. Dimitriou
Institute for Infocomm Research, 1 Fusionopolis Way, 21-01 Connexis, South Tower, 138632, Singapore
Jianying Zhou

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Oostdijk, M., van Dijk, DJ., Wegdam, M. (2009). User–Centric Identity Using ePassports. In: Chen, Y., Dimitriou, T.D., Zhou, J. (eds) Security and Privacy in Communication Networks. SecureComm 2009. Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering, vol 19. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-05284-2_17

Download citation

DOI: https://doi.org/10.1007/978-3-642-05284-2_17
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-05283-5
Online ISBN: 978-3-642-05284-2
eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics