ISO/IEC 18013-3:2009/DAmd 3

DRAFT AMENDMENT
ISO/IEC 18013-3: DAM 1
ISO/IEC JTC 1/SC 17 Secretariat: BSI
Voting begins on: Voting terminates on:
2015-08-17 2015-11-17
Information technology — Personal identification — ISO-
compliant driving licence —
Part 3:
Access control, authentication and integrity validation
AMENDMENT 3: PACE

Technologies de l’information — Identification des personnes — Permis de conduire conforme à l’ISO —

All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized otherwise in any form

or by any means, electronic or mechanical, including photocopying, or posting on the internet or an intranet, without prior

written permission. Permission can be requested from either ISO at the address below or ISO’s member body in the country of

ISO (the International Organization for Standardization) and IEC (the International Electrotechnical

Commission) form the specialized system for worldwide standardization. National bodies that are members of

ISO or IEC participate in the development of International Standards through technical committees

established by the respective organization to deal with particular fields of technical activity. ISO and IEC

technical committees collaborate in fields of mutual interest. Other international organizations, governmental

and non-governmental, in liaison with ISO and IEC, also take part in the work. In the field of information

technology, ISO and IEC have established a joint technical committee, ISO/IEC JTC 1.

International Standards are drafted in accordance with the rules given in the ISO/IEC Directives, Part 2.

The main task of the joint technical committee is to prepare International Standards. Draft International

Standards adopted by the joint technical committee are circulated to national bodies for voting. Publication as

an International Standard requires approval by at least 75 % of the national bodies casting a vote.

Attention is drawn to the possibility that some of the elements of this document may be the subject of patent

rights. ISO and IEC shall not be held responsible for identifying any or all such patent rights.

Amendment 3 to ISO/IEC 18013-3:2009 was prepared by Joint Technical Committee ISO/IEC JTC 1,

It describes the optional PACE mechanism enabling access control to the data stored on an integrated circuit.

The PACE protocol is a password authenticated Diffie Hellman key agreement protocol based on a (short)

input string that provides secure communication between a secure integrated circuit on an ISO-compliant

driving licence and a terminal and allows various implementation options (mappings, input strings, algorithms).

The PACE protocol implementation for the IDL is restricted to Elliptic Curve Diffie Hellman (ECDH) generic

mapping and can be used as a stand-alone protocol or in combination with the EACv1 protocol. In the interest

of interoperability of cards used for personal identification, this amendment further simplifies the authentication

protocols in the IDL Active Authentication is harmonised with other ISO standards, whilst BAP configurations

ICAO Technical Report – Supplemental Access Control for Machine Readable Travel Documents, v1.01, 2010

alternative mechanism to BAP to confirm that an inspection system (IS) has physical access to a secure

integrated circuit (SIC) on a driving licence card before the IS is allowed to access to the data stored on the

SIC and to establish a secure communication channel between the IS and SIC once access is authorised.

An IDL supporting ECDSA shall use a prime curve with uncompressed points for this computation. In this

case the output of the computation shall be the concatenation of the values r and s (r||s). The input for this

computation shall be compressed with a hash algorithm with an output length shorter or equal to the length of

Note The plain signature format (r||s) for the ECDSA is according to TR-03111 [15].

Based on a suitable algorithm catalogue, the length of the key for ECDSA should be chosen to provide the

If ECDSA based signature algorithm is used for Active Authentication by the SIC, the SecurityInfos in

LDS Data Group 14 of the IDL application shall contain following SecurityInfo entry:

The object identifiers for signatureAlgorithm are defined in TR-03111 [15]. ecdsa-plain-SHA1 and

Note 1: See 8.1.5.1 for the definition of the Object Identifier id-icao-mrtd-security.

Note 2: SecurityInfos may contain entries for other protocols, e.g. Chip Authentication, Terminal

In Table Amd1.1, replace the content of the Specification column against the row for IDL MRZ character

Note: If the second character of the MRZ is set to 1, PACE may be supported in addition to BAP configuration

“It describes the optional Extended Access Control (EAC) v1 mechanism as a replacement for Extended

Access Protection (EAP), enabling access control to sensitive biometric data stored on the integrated circuit.”

by "EACv1 replaces EAP. This standard no longer supports EAP. EACv1 consists of:"

This standard only supports EACv1 Terminal Authentication with the ECDSA mechanism.”

b) If BAP is performed before EACv1, the driving licence number, as it appears in DG1, shall be used as

SIC identifier (ID ). If PACE is performed before EACv1, the SIC identifier (ID ) is computed from the

Replace the last sentence by “The support of EACv1 requires a BAP configuration 1 or PACE configuration for

The PACE protocol confirms that an IS has physical access to a SIC before the IS is allowed to access to the

data stored on the chip. Once access is authorized, PACE protects the subsequent communication by a

secure channel between SIC and IS. The PACE protocol can be used as an alternative to BAP and allows

PACE is specified in Annex H. This standard only supports PACE with ECDH generic mapping. The first byte

of the input string shall be '50' ("P") if PACE is used as a stand-alone protocol, ie not us