Security Mechanisms and Access Control Infrastructure for e-Passports and General Purpose e-Documents

TitleSecurity Mechanisms and Access Control Infrastructure for e-Passports and General Purpose e-Documents
Publication TypeJournal Article
Year of Publication2009
AuthorsP. Najera, F. Moyano, and J. Lopez
JournalJournal of Universal Computer Science
Volume15
Pagination970-991
ISSN Number0948-695X
Abstract

Traditional paper documents are not likely to disappear in the near future as they are present everywhere in daily life, however, paper-based documentation lacks the link with the digital world for agile and automated processing. At the same time it is prone to cloning, alteration and counterfeiting attacks. E-passport defined by ICAO and implemented in 45 countries is the most relevant case of hybrid documentation (i.e. paper format with electronic capabilities) to date, but, as the advantages of hybrid documentation are recognized more and more will undoubtedly appear. In this paper, we present the concept and security requirements of general-use e-documents, analyze the most comprehensive security solution (i.e. ePassport security mechanisms) and its suitability for general-purpose e-documentation. Finally, we propose alternatives for the weakest and less suitable protocol from ePassports: the BAC (Basic Access Control). In particular, an appropriate key management infrastructure for access control to document memory is discussed in conjunction with a prototype implementation.

URLhttp://www.jucs.org/jucs_15_5/security_mechanisms_and_access
DOI10.3217/jucs-015-05-0970
Citation KeyNajera2009
Paper File: 
https://nics.uma.es:8082/sites/default/files/papers/Najera2009.pdf

Supported by ARES CRISIS IDENTICA