Application Interface for Secure Elements for Electronic Identification, Authentication and Trusted Services - Part 1: Introduction and common definitions

This part is an informative introduction into the following parts. It gives guidance to the following parts in order to allow an efficient usage of the provided information. Therefore Part 1 provides history, application context, market perspective and a tutorial about the basic understanding of electronic signatures.
-   Clause 3 provides "Terms and definitions" covering all parts of this standards. The specific parts will contain a similar section which refers to the clause of this Part 1.
-   Clause 4 provides "Symbols and abbreviations" covering all parts of this standards. The specific parts will contain a similar section which refers to the clause of this Part 1.
-   Clause 5 provides a Management Summary that describes the market context in which electronic signatures are typically
-   Annex A provides the algorithm identifies for all parts of the standard.
-   Annex B provides the algorithm identifies for all parts of the standard.
-   Annex C provides the build scheme for object identifiers for all parts of the standard.
-   Annex D "Tutorial on Signature Technology" provides a tutorial which helps the first reader to get familiar with signature technology and its relation to the society that it serves.
-   Annex E "Guide to the EN 419212" explains the historical and technical evolution of the ESIGN activities which did finally lead to this version of the signature standard.

Anwendungsschnittstelle für sichere Elemente zur elektronischen Identifikation, Authentisierung und für vertrauenswürdige Dienste - Teil 1: Einführung und allgemeine Definitionen

Interface applicative des éléments sécurisés utilisés comme dispositifs de création de signature électronique qualifiée (cachet) - Partie 1 : Introduction et définitions communes

La présente partie constitue une introduction informative aux parties suivantes. Elle donne des lignes directrices pour les parties suivantes afin de permettre une utilisation efficace des informations présentées. Par conséquent, la Partie 1 décrit l’historique, le contexte d’application, les perspectives pour le marché et un tutoriel apportant des connaissances de base sur les signatures électroniques.
   L’Article 3 présente des « Termes et définitions » couvrant toutes les parties de la norme. Chacune des parties comprendra une section similaire renvoyant à l’Article de la présente Partie 1.
   L’Article 4 présente des « Symboles et abréviations » couvrant toutes les parties de la norme. Chacune des parties comprendra une section similaire renvoyant à l’article de la présente Partie 1.
   L’Article 5 présente une synthèse qui décrit le contexte des marchés où il est courant d’utiliser des signatures électroniques.
   L’Annexe A présente des identifiants d’algorithmes applicables à toutes les parties de la norme.
   L’Annexe B présente des identifiants d’algorithmes applicables à toutes les parties de la norme.
   L’Annexe C présente un schéma de construction des identifiants d’objets applicable à toutes les parties de la norme.
   L’Annexe D « Tutoriel sur la technologie des signatures » présente un tutoriel permettant au lecteur de se familiariser, dès sa première lecture, avec la technologie en matière de signature et ses relations avec la société qui y a recours.
   L’Annexe E « Guide pour l’EN 419212 » explique l’évolution historique et technique des activités liées à l’ESIGN ayant conduit, en fin de compte, à cette version de norme de signature.

Uporabniški vmesnik za varnostne elemente za elektronsko identifikacijo, avtentikacijo in zanesljivost storitev - 1. del: Uvod in splošne definicije

Ta del predstavlja informativen uvod v nadaljnje dele. Podaja smernice za nadaljnje dele, da se lahko pridobljene informacije učinkovito uporabijo. 1. del vsebuje zgodovino, kontekst uporabe, tržno perspektivo in napotke za razumevanje osnov elektronskih podpisov.  • 3. poglavje vsebuje izraze in definicije, ki se pojavljajo v vseh delih teh standardov. Posamezni deli vsebujejo podoben razdelek, ki se nanaša na poglavje v 1. delu.  • 4. poglavje vsebuje simbole in okrajšave, ki se pojavljajo v vseh delih teh standardov. Posamezni deli vsebujejo podoben razdelek, ki se nanaša na poglavje v 1. delu.  • 5. poglavje vsebuje povzetek poslovnega načrta, ki opisuje tržni okvir, v katerem se običajno uporabljajo elektronski podpisi.  • 6. poglavje opisuje razvoj od standardov ESIGN do današnjega standarda EN419212.  • Dodatek A vsebuje identifikatorje algoritmov za vse dele standarda.  • Dodatek B vsebuje identifikatorje algoritmov za vse dele standarda.  • Dodatek C vsebuje shemo izgradnje identifikatorjev objektov za vse dele standarda.  • Dodatek D »Napotki in priročnik za standard EN419212« vsebuje napotke, ki so novemu bralcu v pomoč, da se seznani s tehnologijo podpisov v povezavi z družbo, v kateri se uporablja.  • Dodatek E (informativni) »Priročnik za standard EN419212«.

General Information

Status
Published
Publication Date
19-Sep-2017
Withdrawal Date
30-Mar-2018
Current Stage

Relations

Buy Standard

Standard
EN 419212-1:2018
English language
57 pages
sale 10% off
Preview
sale 10% off
Preview
e-Library read for
1 day

Standards Content (Sample)


2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.Uporabniški vmesnik za varnostne elemente za elektronsko identifikacijo, avtentikacijo in zanesljivost storitev - 1. del: Uvod in splošne definicijeAnwendungsschnittstelle für sichere Elemente, die als qualifizierte elektronischer Signatur-/Siegelerstellungseinheiten verwendet werden - Teil 1: Allgemeine DiensteInterface applicative des éléments sécurisés utilisés comme dispositifs de création de signature électronique qualifiée (cachet) - Partie 1 : Introduction et définitions communesApplication Interface for Secure Elements for Electronic Identification, Authentication and Trusted Services - Part 1: Introduction and common definitions35.240.15Identification cards. Chip cards. BiometricsICS:Ta slovenski standard je istoveten z:EN 419212-1:2017SIST EN 419212-1:2018en,fr,de01-februar-2018SIST EN 419212-1:2018SLOVENSKI
STANDARDSIST EN 419212-2:2015SIST EN 419212-1:20151DGRPHãþD

EUROPEAN STANDARD NORME EUROPÉENNE EUROPÄISCHE NORM
EN 419212-1
September
t r s y ICS
u wä t v rä s w Supersedes EN
v s { t s tæ sã t r s vá EN
v s { t s tæ tã t r s vEnglish Version
Application Interface for Secure Elements for Electronic Identificationá Authentication and Trusted Services æ Part
sã Introduction and common definitions Interface applicative des éléments sécurisés utilisés comme dispositifs de création de signature et définitions communes
Anwendungsschnittstelle für sichere Elementeá die als qualifizierte elektronischer SignaturæAllgemeine Dienste This European Standard was approved by CEN on
x February
t r s yä
egulations which stipulate the conditions for giving this European Standard the status of a national standard without any alterationä Upætoædate lists and bibliographical references concerning such national standards may be obtained on application to the CENæCENELEC Management Centre or to any CEN memberä
translation under the responsibility of a CEN member into its own language and notified to the CENæCENELEC Management Centre has the same status as the official versionsä
CEN members are the national standards bodies of Austriaá Belgiumá Bulgariaá Croatiaá Cyprusá Czech Republicá Denmarká Estoniaá Finlandá Former Yugoslav Republic of Macedoniaá Franceá Germanyá Greeceá Hungaryá Icelandá Irelandá Italyá Latviaá Lithuaniaá Luxembourgá Maltaá Netherlandsá Norwayá Polandá Portugalá Romaniaá Serbiaá Slovakiaá Sloveniaá Spainá Swedená Switzerlandá Turkey and United Kingdomä
EUROPEAN COMMITTEE FOR STANDARDIZATION COMITÉ EUROPÉEN DE NORMALISATION EUROPÄISCHES KOMITEE FÜR NORMUNG
CEN-CENELEC Management Centre:
Avenue Marnix 17,
B-1000 Brussels
t r s y CEN All rights of exploitation in any form and by any means reserved worldwide for CEN national Membersä Refä Noä EN
v s { t s tæ sã t r s y ESIST EN 419212-1:2018

Contents Page European foreword . 5 Introduction . 6 1 Scope . 7 2 Normative references . 7 3 Terms and definitions . 7 4 Symbols and abbreviations . 15 5 Management Summary . 18 5.1 Motivation . 18 5.2 What is in behind?. 19 5.3 Use Cases . 20 5.4 Privacy and Security. 21 5.5 Overview - EU Directive and Regulation . 21 5.6 Facts and Figures . 22 Annex A (normative)
Algorithm Identifiers — Coding and specification . 23 Table A.1 — AlgIDs . 24 Table A.2 — Coding of byte 3 and 4 (for hash calculation - byte 2 = '01' to '0F) . 24 Table A.3 — Coding of byte 3 (for digital signature computation - byte 2 = '1x') . 25 Table A.4 — Coding of byte 4 (for digital signature computation - byte 2 = '1x') . 25 Table A.5 — Coding of byte 3 (for C/S authentication - byte 2 = '2x') . 25 Table A.6 — Coding of byte 4 (for C/S authentication - byte 2 = '2x') . 25 Table A.7 — Coding of byte 3 (for key decipherment - byte 2 = '3x') . 26 Table A.8 — Coding of byte 4 (for key decipherment - byte 2 = '3x') . 26 Table A.9 — Coding of byte 3 (for authentication protocol - byte 2 = '4x'). 26 Table A.10 — Coding of byte 4 (for authentication protocol – byte 2 = '4x') . 28 Table A.11 — Coding of byte 3 (for digital signature verification – byte 2 = '9x'). 28 Table A.12 — Coding of byte 4 (for digital signature verification – byte 2 = '9x'). 28 Table A.13 — Coding of byte 3 (for role authentication – byte 2 = 'Ax') . 29 Table A.14 — Coding of byte 3 (for privacy features – byte 2 = 'Cx') . 29 Table A.15 — Coding of byte 4 (for role authentication - byte 2 = 'Ax'). 29 Table A.16 — Coding of byte 4 (for privacy feature - byte 2 = 'Cx') . 29 Table A.17 — 1-byte Algorithm-ID coding. 30 Annex B (informative)
OID values . 32 B.1 OIDs for certificate signatures . 32 Table B.1 — Object identifier values related to a public key in a certificate . 32 B.2 OIDs for key transport protocol . 32 SIST EN 419212-1:2018

Table B.2 — Object identifier values for the key transport protocol . 33 B.3 OIDs for device authentication with privacy . 33 Table B.3 — Object identifier values for device authentication with privacy . 33 B.4 OIDs for password based mechanisms . 34 Table B.4 — PACE OIDs . 34 B.5 OIDs for mEAC protocol . 34 B.5.1 OIDs for Chip Device Authentication . 34 Table B.5 — Chip Device Authentication (DES/AES) . 34 B.5.2 OIDs for Terminal Device Authentication. 35 Table B.6 — Terminal Authentication (RSA/ECDSA) . 35 B.6 OIDs for privacy protocols . 36 B.6.1 OIDs for Restricted Identification . 36 Table B.7 — OIDs for Restricted Identification . 36 Table B.8 — OIDs for use in certificate extension . 36 B.6.2 OIDs for Restricted Identification . 36 Table B.9 — OIDs for use in auxiliary data verification . 36 B.7 OIDs for mEAC based eServices - OIDs for Terminal Device Authentication in mEAC-based eServices . 36 Table B.10 — OID values for the mEAC Terminal Authentication. 36 B.8 OIDs for the PCA mechanism . 37 Table B.11 — OID for the PCA mechanism . 37 Annex C (informative)
Build scheme for object identifiers defined by EN 419212 . 38 Figure C.1 — Build scheme for mEAC OIDs . 39 Annex D (informative)
Tutorial on Signature Technology . 40 D.1 General . 40 D.2 Signatures and keys . 41 Table D.1 — Generating RSA keys . 42 D.3 Signing documents . 42 D.4 About certificates . 43 D.5 The “chain of trust” . 44 D.6 Multi step signature generation . 44 D.6.1 General . 44 D.6.2 Device authentication protocols . 44 D.6.3 Secure Messaging . 45 D.6.4 Password based device authentication . 45 D.6.5 PIN entry . 45 D.7 Signing the document . 46 SIST EN 419212-1:2018

Annex E (informative)
Guide to the EN 419212 . 47 E.1 From EN 14890 to EN 419212 . 47 E.2 The EU Regulation 910/2014 and the Directive 1999/93/EU . 48 E.3 Secure Elements (SE) . 48 E.4 Specific protection required for contactless integrated circuits . 49 E.4.1 General . 49 E.4.2 Eavesdropping attacks . 49 E.4.3 Skimming attack . 49 E.4.4 Relay attack . 49 E.4.5 Denial of Service (DoS) attack . 49 E.4.6 Countermeasures .
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.