iTeh StandardsiTeh Standards
EURUSD
Your shopping cart is empty.
SIST

SIST-TS CEN/TS 15480-3:2014

(Main)

Identification card systems - European Citizen Card - Part 3: European Citizen Card Interoperability using an application interface

Identification card systems - European Citizen Card - Part 3: European Citizen Card Interoperability using an application interface

CEN/TS 15480-3 provides an Interoperability Model, which will enable an eService compliant with technical requirements, to interoperate with different implementations of the European Citizen Card. This Interoperability model will be developed as follows: - starting from the ECC Part 2, Part 3 of the ECC series provides additional technical specifications for a middleware architecture based on ISO/IEC 24727 (all parts); this middleware will provide an API to an eService as per ISO/IEC 24727-3. - a set of additional API provides the middleware stack with means to facilitate ECC services. - a standard mechanism for the validation of the e-ID credential is stored in the ECC and retrieved by the eService. In order to support the ECC services over an ISO/IEC 24727 middelware configuration, this part of the standard specifies the following: - a set of mandatory requests to be supported by the middleware implementation based on ISO/IEC 24727 (all parts). - data set content for interoperability to be personalised in the ECC. - three middleware architecture solutions: one based on a stack of combined ISO/IEC 24727 configurations and the other based on Web Service configuration whereas the third one is relying on a SAL Lite component. - an Application DiscoveryProfile featuring the guidelines for card-applications to fit in ISO/IEC 24727 framework.

Identifikationskartensysteme - Europäische Bürgerkarte - Teil 3: Anwendungsschnittstelle für die Interoperabilität von Europäischen Bürgerkarten

Systèmes de carte d’identification - Carte Européenne du Citoyen - Partie 3 : Interopérabilité de la Carte européenne du Citoyen utilisant une interface applicative

Sistemi z identifikacijskimi karticami - Kartica evropskih državljanov - 3. del: Interoperabilnost kartice evropskih državljanov z uporabo aplikacijskega vmesnika

CEN/TS 15480-3 predstavlja model medobratovalnosti, ki bo zagotovil skladnost elektronske storitve s tehničnimi zahtevami in s tem medsebojno delovanje z različnimi izvedbami kartice evropskih državljanov. Ta model medobratovalnosti bo razvit, kakor je opisano v nadaljevanju: – od 2. dela kartice evropskih državljanov 3. del kartice evropskih državljanov zagotavlja dodatne tehnične specifikacije za arhitekturo vmesniške programske opreme na podlagi standarda ISO/IEC 24727 (vsi deli); ta vmesniška programska oprema bo zagotavljala API za elektronsko storitev po standardu ISO/IEC 24727-3; – nabor dodatnih API-jev zagotavlja sklad vmesniške programske opreme z namenom olajševanja storitev kartice evropskih državljanov; – mehanizem standarda za potrditev elektronskih identifikacijskih poverilnic se shrani na kartici evropskih državljanov in ga elektronska storitev pridobi. V podporo storitvam kartice evropskih državljanov prek konfiguracije vmesniške programske opreme po ISO/IEC 24727 ta del standarda določa naslednje: – nabor obveznih zahtev, ki jih mora uvedba vmesniške programske opreme podpirati po standardu ISO/IEC 24727 (vsi deli); – vsebino nabora podatkov za medobratovalnost, prilagojeno za kartico evropskih državljanov; – tri arhitekturne rešitve vmesniške programske opreme: eno, zasnovano na skladu kombiniranih konfiguracij po ISO/IEC 24727, drugo, zasnovano na konfiguraciji spletne storitve, ter tretjo, ki je odvisna od komponente SAL Lite; – profil za odkritje aplikacije, ki vsebuje smernice za kartične aplikacije za skladnost z okvirjem po ISO/IEC 24727.

General Information

Status
Published
Publication Date
12-Jun-2014
ICS
35.240.15 - Identification cards. Chip cards. Biometrics
Technical Committee
ITC - Information technology
Current Stage
6060 - National Implementation/Publication (Adopted Project)
Start Date
07-May-2014
Due Date
12-Jul-2014
Completion Date
13-Jun-2014
Ref Project
CEN/TS 15480-3:2014 - Identification card systems - European Citizen Card - Part 3: European Citizen Card Interoperability using an application interface

Relations

Replaces
SIST-TS CEN/TS 15480-3:2011 - Identification card systems - European Citizen Card - Part 3: European Citizen Card Interoperability using an application interface
Effective Date
01-Jul-2014
Replaces
SIST-TS CEN/TS 15480-3:2011 - Identification card systems - European Citizen Card - Part 3: European Citizen Card Interoperability using an application interface
Effective Date
08-Jun-2022

Buy Standard

TS CEN/TS 15480-3:2014TS CEN/TS 15480-3:2014
PreviousNext
Technical specification
TS CEN/TS 15480-3:2014
English language
92 pages
sale 10% off
Preview
sale 10% off
Preview
e-Library read for
1 day
TS CEN/TS 15480-3:2014TS CEN/TS 15480-3:2014
PreviousNext
Technical specification
TS CEN/TS 15480-3:2014
English language
92 pages
sale 10% off
Preview
sale 10% off
Preview
e-Library read for
1 day

Standards Content (Sample)

SLOVENSKI STANDARD
SIST-TS CEN/TS 15480-3:2014
01-julij-2014
Nadomešča:
SIST-TS CEN/TS 15480-3:2011
Sistemi z identifikacijskimi karticami - Kartica evropskih državljanov - 3. del:
Interoperabilnost kartice evropskih državljanov z uporabo aplikacijskega vmesnika
Identification card systems - European Citizen Card - Part 3: European Citizen Card
Interoperability using an application interface
Identifikationskartensysteme - Europäische Bürgerkarte - Teil 3:
Anwendungsschnittstelle für die Interoperabilität von Europäischen Bürgerkarten
Systèmes de carte d’identification - Carte Européenne du Citoyen - Partie 3 :
Interopérabilité de la Carte européenne du Citoyen utilisant une interface applicative
Ta slovenski standard je istoveten z: CEN/TS 15480-3:2014
ICS:
35.240.15 Identifikacijske kartice. Čipne Identification cards. Chip
kartice. Biometrija cards. Biometrics
SIST-TS CEN/TS 15480-3:2014 en,fr,de
2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.

---------------------- Page: 1 ----------------------
SIST-TS CEN/TS 15480-3:2014

---------------------- Page: 2 ----------------------
SIST-TS CEN/TS 15480-3:2014

TECHNICAL SPECIFICATION
CEN/TS 15480-3

SPÉCIFICATION TECHNIQUE

TECHNISCHE SPEZIFIKATION
April 2014
ICS 35.240.15 Supersedes CEN/TS 15480-3:2010
English Version
Identification card systems - European Citizen Card - Part 3:
European Citizen Card Interoperability using an application
interface
Systèmes de carte d'identification - Carte Européenne du Identifikationskartensysteme - Europäische Bürgerkarte -
Citoyen - Partie 3 : Interopérabilité de la Carte européenne Teil 3: Anwendungsschnittstelle für die Interoperabilität von
du Citoyen utilisant une interface applicative Europäischen Bürgerkarten
This Technical Specification (CEN/TS) was approved by CEN on 14 October 2013 for provisional application.

The period of validity of this CEN/TS is limited initially to three years. After two years the members of CEN will be requested to submit their
comments, particularly on the question whether the CEN/TS can be converted into a European Standard.

CEN members are required to announce the existence of this CEN/TS in the same way as for an EN and to make the CEN/TS available
promptly at national level in an appropriate form. It is permissible to keep conflicting national standards in force (in parallel to the CEN/TS)
until the final decision about the possible conversion of the CEN/TS into an EN is reached.

CEN members are the national standards bodies of Austria, Belgium, Bulgaria, Croatia, Cyprus, Czech Republic, Denmark, Estonia,
Finland, Former Yugoslav Republic of Macedonia, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania,
Luxembourg, Malta, Netherlands, Norway, Poland, Portugal, Romania, Slovakia, Slovenia, Spain, Sweden, Switzerland, Turkey and United
Kingdom.





EUROPEAN COMMITTEE FOR STANDARDIZATION
COMITÉ EUROPÉEN DE NORMALISATION

EUROPÄISCHES KOMITEE FÜR NORMUNG

CEN-CENELEC Management Centre: Avenue Marnix 17, B-1000 Brussels
© 2014 CEN All rights of exploitation in any form and by any means reserved Ref. No. CEN/TS 15480-3:2014 E
worldwide for CEN national Members.

---------------------- Page: 3 ----------------------
SIST-TS CEN/TS 15480-3:2014
CEN/TS 15480-3:2014 (E)
Contents Page
Foreword .5
1 Scope .7
2 Normative references .7
3 Terms and definitions .8
4 Symbols and abbreviations .8
5 ECC fitting in ISO/IEC 24727 model . 10
5.1 ISO/IEC 24727 main features . 10
5.2 General security issues – Applicable ISO/IEC 24727-4 Stack Configurations for the ECC
environment . 12
5.3 ECC-3 Middleware Architecture . 16
5.3.1 General . 16
5.3.2 Service Access Layer (SAL) . 17
5.3.3 Generic Card Access Layer (GCAL) . 17
5.3.4 Interface Device Layer and API (IFD API) . 17
5.3.5 ECC-3 Stack Distribution and Connection Handling . 17
5.3.6 Multi-stack composed configuration . 20
5.3.7 A Web Service based architecture for ECC-3 framework . 22
5.3.8 XML-based SAL interface . 27
6 Card Discovery Mechanisms . 28
6.1 General . 28
6.2 Discovery decision tree . 29
6.3 Migration path towards ECC and provision for legacy cards . 29
6.3.1 General . 29
6.3.2 Interoperable access to the Repository . 30
6.4 Set of data for interoperability . 30
6.5 Application and Card Capability Descriptors . 31
6.6 ISO/IEC 7816-15 implementation . 34
6.6.1 General . 34
6.6.2 Profile designation within EF.DIR . 34
6.6.3 ISO/IEC 24727-3 data structures mapping . 35
6.6.4 ISO/IEC 24727-3 data structures storage onto the card . 35
6.6.5 General discovery mechanism . 37
6.7 Other data descriptor . 39
7 Authentication protocols . 39
7.1 General . 39
7.2 Authentication Mechanisms based on ISO/IEC 24727 SAL-API . 39
7.3 Asymmetric internal authentication. 40
7.4 Asymmetric external authentication . 40
7.5 Symmetric internal authentication . 41
7.6 Symmetric external authentication . 41
7.7 Mutual authentication with key establishment . 41
7.8 Device authentication with non traceability . 41
7.9 Key transport protocol based on RSA . 41
7.10 Terminal Authentication . 42
8 IFD-API Web Service Binding . 42
9 Card-Info Structure — Introduction . 42
2

---------------------- Page: 4 ----------------------
SIST-TS CEN/TS 15480-3:2014
CEN/TS 15480-3:2014 (E)
10 XML-based Service Access Layer Interface . 43
11 Federative Framework-wise Authenticate API . 43
11.1 General . 43
11.2 Authenticate method . 44
11.3 Web Service Binding for Authenticate API . 47
11.3.1 General . 47
11.3.2 Authenticate.XSD definition . 47
11.3.3 Authenticate.WSDL definition . 48
Annex A (informative) Interface Device Layer Architecture and Management . 51
A.1 Scope . 51
A.2 IFD-Layer Architecture . 51
A.3 Resource Manager . 52
A.3.1 General . 52
A.3.2 IFD-Handlers . 52
A.3.3 Card transactions . 52
A.3.4 Application threads . 52
A.4 Administrative functions . 52
A.4.1 IFD-Handler related functions . 52
A.4.2 Interface Device related functions . 53
Annex B (informative) IFD-API – C Language Binding . 54
Annex C (informative) SAL-API Post-issuance personalisation requests . 60
C.1 General . 60
C.2 Post-issuance personalisation requests . 60
C.3 Canonical protocol . 60
C.3.1 General . 60
C.3.2 DataSetCreate . 61
C.3.3 DSICreate. 68
C.3.4 DIDCreate . 70
C.3.5 DIDUpdate . 71
C.3.6 CardApplicationServiceCreate . 72
C.4 General recommendation and conclusion . 74
Annex D (informative) Additional features versus ISO/IEC 24727 (all parts) . 75
D.1 General . 75
D.2 Discovery Mechanism . 75
D.3 General Procedures (SAL) . 75
D.4 Architecture . 77
D.5 Differences between IFD-API in ISO/IEC 24727-4 and ECC-3 . 77
D.5.1 More generale SlotCapabilityType . 77
D.5.2 Transmit with support for batch processing . 80
D.5.3 Additional error code for SignalEvent . 82
Annex E (informative) C-Language Binding for ExecuteSAL function . 83
Annex F (informative) Java-Language Binding for ExecuteSAL function . 84
Annex G (informative) Application Discovery Profile: card requirements to access/offer services
85
in ISO/IEC 24727 framework .
G.1 General . 85
G.2 OID . 85
G.3 General . 85
G.4 interfaces / transport protocols . 85
G.5 Data elements and data structures . 86
G.6 Command set . 88
G.7 Data structure of Card Applications . 89
G.7.1 General . 89
G.7.2 DF/ADF content . 89
3

---------------------- Page: 5 ----------------------
SIST-TS CEN/TS 15480-3:2014
CEN/TS 15480-3:2014 (E)
G.7.3 EF DCOD content . 89
G.7.4 EF AOD content . 90
G.7.5 EF SKD content . 90
G.7.6 Ef PrKD content . 90
Bibliography . 91

4

---------------------- Page: 6 ----------------------
SIST-TS CEN/TS 15480-3:2014
CEN/TS 15480-3:2014 (E)
Foreword
This document (CEN/TS 15480-3:2014) has been prepared by Technical Committee CEN/TC 224 “Personal
identification, electronic signature and cards and their related systems and operations”, the secretariat of
which is held by AFNOR.
Attention is drawn to the possibility that some of the elements of this document may be the subject of patent
rights. CEN [and/or CENELEC] shall not be held responsible for identifying any or all such patent rights.
This document supersedes CEN/TS 15480-3:2010.
CEN/TS 15480, Identification card systems — European Citizen Card, is composed of the following parts:
— Part 1: Physical, electrical and transport protocol characteristics;
— Part 2: Logical data structures and security services;
— Part 3: European Citizen Card Interoperability using an application interface (the present document);
— Part 4: Recommendations for European Citizen Card issuance, operation and use;
— Part 5: General Introduction.
The following technical changes have been made in this new edition of CEN/TS 15480-3:
— addition of mention of SAL Lite component, abstraction of GCI and GCAL through Registry processed at
SAL level, decision tree update, scope update, etc (5.3.5.3);
— removal of all subclauses under 6.6.3 (Data structures mapping) that were already incorporated in
ISO/IEC 24727-4;
— removal of Annex J dedicated to ECC-3 API (handling ISO/IEC 7816-15 objects) considered not
appropriate in ECC-3 because implementation-specific and not fundamental to interoperability;
— removal of XML Binding details for SAL API from Clause 10 and Annex G (removal of Annex G); it was
incorporated in ISO/IEC 24727-3:2008/DAmd 1, Annex F;
— maintainance of the annex investigating SAL post-issuance personalisation;
— removal of Annex H describing XML binding for Authentication protocols since these protocols are now
part of ISO/IEC 24727-3:2008/DAmd 1, i.e. EACv2 protocol binding doesn’t need to be reflected in ECC-3
since it is incorporated in ISO/IEC 24727-3:2008, Annex E;
— removal of Annex D “example of CIA implementation for Card –Application Service description” since it is
updated and incorporated in ISO/IEC 24727-4:2008/DAmd 1;
— removal of XML-based CardInfo Types (XML Registry) since it is incorporated in
ISO/IEC 24727-3:2008/DAmd 1, Annex D, Clause D.3;
— IFD-API shows enhancements in comparison with ISO/IEC 24727 (e.g. SlotCapabilityType with support of
transmission protocol descriptor, Transmit command with support of batch APDU, SignalEvent error
coding with additional error code), therefore IFD API Annex B are removed from ECC-3 and the clauses
describing enhancements are reflected in ECC-3, Annex D amongst the differences with ISO/IEC 24727;
5

---------------------- Page: 7 ----------------------
SIST-TS CEN/TS 15480-3:2014
CEN/TS 15480-3:2014 (E)
— addition of Annex D, Additional features versus ISO/IEC 24727 (all parts), to incorporate the description
of IFD API extensions in terms of API definition and binding;
— removal of 6.2.1.1, Definition for CardInfoRepository.XSD, and 6.2.1.2, Definition for
CardInfoRepository.WSDL, since these binding descriptions are now part of
ISO/IEC 24727-4:2008/DAmd, 1;
— addition of a new Clause 11 dedicated to Authenticate API: the Authenticate() call makes the service
layer module transparent to the Service Provider, it occurs above SAL layer;
— provision of an introductory text describing the layout where Authenticate API fits;
— IFD API C-Language Binding remains in ECC-3 till its endorsement in ISO/IEC 24727 if deemed useful;
— maintainance of ExecuteSAL API in ECC-3 (both C-language binding and java binding);
— incorporation under Annex G of “Application Discovery Profile” for the purposes of integration in
ISO/IEC 24727 framework.
According to the CEN-CENELEC Internal Regulations, the national standards organizations of the following
countries are bound to announce this Technical Specification: Austria, Belgium, Bulgaria, Croatia, Cyprus,
Czech Republic, Denmark, Estonia, Finland, Former Yugoslav Republic of Macedonia, France, Germany,
Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, Netherlands, Norway, Poland,
Portugal, Romania, Slovakia, Slovenia, Spain, Sweden, Switzerland, Turkey and the United Kingdom.
6

---------------------- Page: 8 ----------------------
SIST-TS CEN/TS 15480-3:2014
CEN/TS 15480-3:2014 (E)
1 Scope
This Technical Specification provides an Interoperability Model, which will enable an eService compliant with
technical requirements, to interoperate with different implementations of the European Citizen Card.
This Interoperability model will be developed as follows:
— starting from the ECC Part 2, Part 3 of the ECC series provides additional technical specifications for a
middleware architecture based on ISO/IEC 24727 (all parts); this middleware will provide an API to an
eService as per ISO/IEC 24727-3.
— a set of additional API provides the middleware stack with means to facilitate ECC services.
— a standard mechanism for the validation of the e-ID credential is stored in the ECC and retrieved by the
eService.
In order to support the ECC services over an ISO/IEC 24727 middelware configuration, this part of the
standard specifies the following:
— a set of mandatory requests to be supported by the middleware implementation based on ISO/IEC 24727
(all parts).
— data set content for interoperability to be personalised in the ECC.
— three middleware architecture solutions: one based on a stack of combined ISO/IEC 24727 configurations
and the other based on Web Service configuration whereas the third one is relying on a SAL Lite
component.
— an Application DiscoveryProfile featuring the guidelines for card-applications to fit in ISO/IEC 24727
framework.
2 Normative references
The following documents, in whole or in part, are normatively referenced in this document and are
indispensable for its application. For dated references, only the edition cited applies. For undated references,
the latest edition of the referenced document (including any amendments) applies.
CEN/TS 15480-2:2012, Identification card systems — European Citizen Card — Part 2: Logical data
structures and security services
CEN/TS 15480-4, Identification card systems — European Citizen Card — Part 4: Recommendations for
European Citizen Card issuance, operation and use
ISO/IEC 7816-4, Identification cards — Integrated circuit cards — Part 4: Organization, security and
commands for interchange
ISO/IEC 7816-15, Identification cards — Integrated circuit cards — Part 15: Cryptographic information
application
ISO/IEC 24727-1, Identification cards — Integrated circuit card programming interfaces — Part 1: Architecture
7

---------------------- Page: 9 ----------------------
SIST-TS CEN/TS 15480-3:2014
CEN/TS 15480-3:2014 (E)
)
1
ISO/IEC 24727-2:2008 , Identification cards — Integrated circuit card programming interfaces — Part 2:
Generic card interface
)
2
ISO/IEC 24727-3:2008 , Identification cards — Integrated circuit card programming interfaces — Part 3:
Application interface
)
3
ISO/IEC 24727-4:2008 , Identification cards — Integrated circuit card programming interfaces — Part 4:
Application programming interface (API) administration
ISO/IEC 24727-5, Identification cards — Integrated circuit card programming interfaces — Part 5: Testing
procedures
ISO/IEC 24727-6, Identification cards — Integrated circuit card programming interfaces — Part 6: Registration
authority procedures for the authentication protocols for interoperability
3 Terms and definitions
For the purposes of this document, the following terms and definitions apply.
3.1
descriptive elements
information nested in data objects and intended for the discovery mechanism and encapsulated along with
procedural elements in the ACD and CCD
3.2
procedural elements
translation code to process any request at the Generic Card Interface (GCI) and every relevant card response
Note 1 to entry: The translation has one entry point, theTranslationCode() function as per ISO/IEC 24727-2.
3.3
middleware
set of abstraction layers which serves as the intermediate between a client-application and an application
resident in the ECC.and behind which the actual pieces of software running these abstraction layers are
implementation-specific and out of the scope of this document
3.4
eService
application based locally on the client PC or based somewhere in the internet (eg government eService,
eBuisness eService,…) which offers in combination with the ECC smart card the execution of a task
4 Symbols and abbreviations
ADF Application Dedicated File
AID Application Identifier
AJAX Asynchronous JavaScript and XML
AMB Access Mode Byte
AT Authentication Template

1) This document is currently impacted by the draft amendment ISO/IEC 24727-2:2008/DAmd 1.
2) This document is currently impacted by the draft amendment ISO/IEC 24727-3:2008/DAmd 1.
3) This document is currently impacted by the draft amendment ISO/IEC 24727-4:2008/DAmd 1.
8

---------------------- Page: 10 ----------------------
SIST-TS CEN/TS 15480-3:2014
CEN/TS 15480-3:2014 (E)
ATR Answer to Reset
ATS Answer to Select
BER Basic Encoding Rules
BHT Biometric Header Template
BIT Biometric Information Template
CA Certification Authority
CAPICOM Cryptographic API COM Object (http://msdn.microsoft.com)
CAR Certification Authority Reference
CBC Cipher Block Chaining
CCT Cryptographic Checksum Template
CED Certificate Effective Date
CHA Certificate Holder Authorization
CHR Certificate Holder Reference
CIA Cryptographic Information Application
CPI Certificate Profile Identifier
CRT Control Reference Template
CryptoAPI Cryptographic Application Programming Interface (http://msdn.microsoft.com)
CSP Crytographic Service Provider
CT Confidentiality Template
CV Card Verifiable
CXD Certificate Expiration Date
DES Data Encryption Standard
DF Dedicated File
DH Diffie Hellman
DOCP Data Object Control Parameters
DST Digital Signature Template
ECDH Elliptic Curve DH
ELC Elliptic Curve Cryptosystem
ECDSA Elliptic Curve Digital Signature Algorithm
EF Elementary File
FCI File Control Information
FCP File Control Parameters
GCAL Generic Card Access Layer
HT Hash Template
ICC Integrated Circuit Card
DID Differential Identity according to ISO/IEC 24727-3
IFD Interface Device
IFDH Interface Device Handler
JSON Java Script Object Notation (http://www.json.org)
9

---------------------- Page: 11 ----------------------
SIST-TS CEN/TS 15480-3:2014
CEN/TS 15480-3:2014 (E)
KAT Control reference template for key agreement
LSB Least Significant Byte
MAC Message Authentication Code
MF Master File
M.U.S.C.L.E Movement for the Use of Smart Card in Linux Environment
MSE Manage Security Environment
OID Object Identifier
PAN Pr
...

SLOVENSKI STANDARD
SIST-TS CEN/TS 15480-3:2014
01-julij-2014
1DGRPHãþD
SIST-TS CEN/TS 15480-3:2011
Sistemi z identifikacijskimi karticami - Kartica evropskih državljanov - 3. del:
Medobratovalnost kartice evropskih državljanov z uporabo aplikacijskega
vmesnika
Identification card systems - European Citizen Card - Part 3: European Citizen Card
Interoperability using an application interface
Identifikationskartensysteme - Europäische Bürgerkarte - Teil 3:
Anwendungsschnittstelle für die Interoperabilität von Europäischen Bürgerkarten
Systèmes de carte d’identification - Carte Européenne du Citoyen - Partie 3 :
Interopérabilité de la Carte européenne du Citoyen utilisant une interface applicative
Ta slovenski standard je istoveten z: CEN/TS 15480-3:2014
ICS:
35.240.15 Identifikacijske kartice in Identification cards and
sorodne naprave related devices
SIST-TS CEN/TS 15480-3:2014 en,fr,de
2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.

---------------------- Page: 1 ----------------------

SIST-TS CEN/TS 15480-3:2014

---------------------- Page: 2 ----------------------

SIST-TS CEN/TS 15480-3:2014

TECHNICAL SPECIFICATION
CEN/TS 15480-3

SPÉCIFICATION TECHNIQUE

TECHNISCHE SPEZIFIKATION
April 2014
ICS 35.240.15 Supersedes CEN/TS 15480-3:2010
English Version
Identification card systems - European Citizen Card - Part 3:
European Citizen Card Interoperability using an application
interface
Systèmes de carte d'identification - Carte Européenne du Identifikationskartensysteme - Europäische Bürgerkarte -
Citoyen - Partie 3 : Interopérabilité de la Carte européenne Teil 3: Anwendungsschnittstelle für die Interoperabilität von
du Citoyen utilisant une interface applicative Europäischen Bürgerkarten
This Technical Specification (CEN/TS) was approved by CEN on 14 October 2013 for provisional application.

The period of validity of this CEN/TS is limited initially to three years. After two years the members of CEN will be requested to submit their
comments, particularly on the question whether the CEN/TS can be converted into a European Standard.

CEN members are required to announce the existence of this CEN/TS in the same way as for an EN and to make the CEN/TS available
promptly at national level in an appropriate form. It is permissible to keep conflicting national standards in force (in parallel to the CEN/TS)
until the final decision about the possible conversion of the CEN/TS into an EN is reached.

CEN members are the national standards bodies of Austria, Belgium, Bulgaria, Croatia, Cyprus, Czech Republic, Denmark, Estonia,
Finland, Former Yugoslav Republic of Macedonia, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania,
Luxembourg, Malta, Netherlands, Norway, Poland, Portugal, Romania, Slovakia, Slovenia, Spain, Sweden, Switzerland, Turkey and United
Kingdom.





EUROPEAN COMMITTEE FOR STANDARDIZATION
COMITÉ EUROPÉEN DE NORMALISATION

EUROPÄISCHES KOMITEE FÜR NORMUNG

CEN-CENELEC Management Centre: Avenue Marnix 17, B-1000 Brussels
© 2014 CEN All rights of exploitation in any form and by any means reserved Ref. No. CEN/TS 15480-3:2014 E
worldwide for CEN national Members.

---------------------- Page: 3 ----------------------

SIST-TS CEN/TS 15480-3:2014
CEN/TS 15480-3:2014 (E)
Contents Page
Foreword .5
1 Scope .7
2 Normative references .7
3 Terms and definitions .8
4 Symbols and abbreviations .8
5 ECC fitting in ISO/IEC 24727 model . 10
5.1 ISO/IEC 24727 main features . 10
5.2 General security issues – Applicable ISO/IEC 24727-4 Stack Configurations for the ECC
environment . 12
5.3 ECC-3 Middleware Architecture . 16
5.3.1 General . 16
5.3.2 Service Access Layer (SAL) . 17
5.3.3 Generic Card Access Layer (GCAL) . 17
5.3.4 Interface Device Layer and API (IFD API) . 17
5.3.5 ECC-3 Stack Distribution and Connection Handling . 17
5.3.6 Multi-stack composed configuration . 20
5.3.7 A Web Service based architecture for ECC-3 framework . 22
5.3.8 XML-based SAL interface . 27
6 Card Discovery Mechanisms . 28
6.1 General . 28
6.2 Discovery decision tree . 29
6.3 Migration path towards ECC and provision for legacy cards . 29
6.3.1 General . 29
6.3.2 Interoperable access to the Repository . 30
6.4 Set of data for interoperability . 30
6.5 Application and Card Capability Descriptors . 31
6.6 ISO/IEC 7816-15 implementation . 34
6.6.1 General . 34
6.6.2 Profile designation within EF.DIR . 34
6.6.3 ISO/IEC 24727-3 data structures mapping . 35
6.6.4 ISO/IEC 24727-3 data structures storage onto the card . 35
6.6.5 General discovery mechanism . 37
6.7 Other data descriptor . 39
7 Authentication protocols . 39
7.1 General . 39
7.2 Authentication Mechanisms based on ISO/IEC 24727 SAL-API . 39
7.3 Asymmetric internal authentication. 40
7.4 Asymmetric external authentication . 40
7.5 Symmetric internal authentication . 41
7.6 Symmetric external authentication . 41
7.7 Mutual authentication with key establishment . 41
7.8 Device authentication with non traceability . 41
7.9 Key transport protocol based on RSA . 41
7.10 Terminal Authentication . 42
8 IFD-API Web Service Binding . 42
9 Card-Info Structure — Introduction . 42
2

---------------------- Page: 4 ----------------------

SIST-TS CEN/TS 15480-3:2014
CEN/TS 15480-3:2014 (E)
10 XML-based Service Access Layer Interface . 43
11 Federative Framework-wise Authenticate API . 43
11.1 General . 43
11.2 Authenticate method . 44
11.3 Web Service Binding for Authenticate API . 47
11.3.1 General . 47
11.3.2 Authenticate.XSD definition . 47
11.3.3 Authenticate.WSDL definition . 48
Annex A (informative) Interface Device Layer Architecture and Management . 51
A.1 Scope . 51
A.2 IFD-Layer Architecture . 51
A.3 Resource Manager . 52
A.3.1 General . 52
A.3.2 IFD-Handlers . 52
A.3.3 Card transactions . 52
A.3.4 Application threads . 52
A.4 Administrative functions . 52
A.4.1 IFD-Handler related functions . 52
A.4.2 Interface Device related functions . 53
Annex B (informative) IFD-API – C Language Binding . 54
Annex C (informative) SAL-API Post-issuance personalisation requests . 60
C.1 General . 60
C.2 Post-issuance personalisation requests . 60
C.3 Canonical protocol . 60
C.3.1 General . 60
C.3.2 DataSetCreate . 61
C.3.3 DSICreate. 68
C.3.4 DIDCreate . 70
C.3.5 DIDUpdate . 71
C.3.6 CardApplicationServiceCreate . 72
C.4 General recommendation and conclusion . 74
Annex D (informative) Additional features versus ISO/IEC 24727 (all parts) . 75
D.1 General . 75
D.2 Discovery Mechanism . 75
D.3 General Procedures (SAL) . 75
D.4 Architecture . 77
D.5 Differences between IFD-API in ISO/IEC 24727-4 and ECC-3 . 77
D.5.1 More generale SlotCapabilityType . 77
D.5.2 Transmit with support for batch processing . 80
D.5.3 Additional error code for SignalEvent . 82
Annex E (informative) C-Language Binding for ExecuteSAL function . 83
Annex F (informative) Java-Language Binding for ExecuteSAL function . 84
Annex G (informative) Application Discovery Profile: card requirements to access/offer services
85
in ISO/IEC 24727 framework .
G.1 General . 85
G.2 OID . 85
G.3 General . 85
G.4 interfaces / transport protocols . 85
G.5 Data elements and data structures . 86
G.6 Command set . 88
G.7 Data structure of Card Applications . 89
G.7.1 General . 89
G.7.2 DF/ADF content . 89
3

---------------------- Page: 5 ----------------------

SIST-TS CEN/TS 15480-3:2014
CEN/TS 15480-3:2014 (E)
G.7.3 EF DCOD content . 89
G.7.4 EF AOD content . 90
G.7.5 EF SKD content . 90
G.7.6 Ef PrKD content . 90
Bibliography . 91

4

---------------------- Page: 6 ----------------------

SIST-TS CEN/TS 15480-3:2014
CEN/TS 15480-3:2014 (E)
Foreword
This document (CEN/TS 15480-3:2014) has been prepared by Technical Committee CEN/TC 224 “Personal
identification, electronic signature and cards and their related systems and operations”, the secretariat of
which is held by AFNOR.
Attention is drawn to the possibility that some of the elements of this document may be the subject of patent
rights. CEN [and/or CENELEC] shall not be held responsible for identifying any or all such patent rights.
This document supersedes CEN/TS 15480-3:2010.
CEN/TS 15480, Identification card systems — European Citizen Card, is composed of the following parts:
— Part 1: Physical, electrical and transport protocol characteristics;
— Part 2: Logical data structures and security services;
— Part 3: European Citizen Card Interoperability using an application interface (the present document);
— Part 4: Recommendations for European Citizen Card issuance, operation and use;
— Part 5: General Introduction.
The following technical changes have been made in this new edition of CEN/TS 15480-3:
— addition of mention of SAL Lite component, abstraction of GCI and GCAL through Registry processed at
SAL level, decision tree update, scope update, etc (5.3.5.3);
— removal of all subclauses under 6.6.3 (Data structures mapping) that were already incorporated in
ISO/IEC 24727-4;
— removal of Annex J dedicated to ECC-3 API (handling ISO/IEC 7816-15 objects) considered not
appropriate in ECC-3 because implementation-specific and not fundamental to interoperability;
— removal of XML Binding details for SAL API from Clause 10 and Annex G (removal of Annex G); it was
incorporated in ISO/IEC 24727-3:2008/DAmd 1, Annex F;
— maintainance of the annex investigating SAL post-issuance personalisation;
— removal of Annex H describing XML binding for Authentication protocols since these protocols are now
part of ISO/IEC 24727-3:2008/DAmd 1, i.e. EACv2 protocol binding doesn’t need to be reflected in ECC-3
since it is incorporated in ISO/IEC 24727-3:2008, Annex E;
— removal of Annex D “example of CIA implementation for Card –Application Service description” since it is
updated and incorporated in ISO/IEC 24727-4:2008/DAmd 1;
— removal of XML-based CardInfo Types (XML Registry) since it is incorporated in
ISO/IEC 24727-3:2008/DAmd 1, Annex D, Clause D.3;
— IFD-API shows enhancements in comparison with ISO/IEC 24727 (e.g. SlotCapabilityType with support of
transmission protocol descriptor, Transmit command with support of batch APDU, SignalEvent error
coding with additional error code), therefore IFD API Annex B are removed from ECC-3 and the clauses
describing enhancements are reflected in ECC-3, Annex D amongst the differences with ISO/IEC 24727;
5

---------------------- Page: 7 ----------------------

SIST-TS CEN/TS 15480-3:2014
CEN/TS 15480-3:2014 (E)
— addition of Annex D, Additional features versus ISO/IEC 24727 (all parts), to incorporate the description
of IFD API extensions in terms of API definition and binding;
— removal of 6.2.1.1, Definition for CardInfoRepository.XSD, and 6.2.1.2, Definition for
CardInfoRepository.WSDL, since these binding descriptions are now part of
ISO/IEC 24727-4:2008/DAmd, 1;
— addition of a new Clause 11 dedicated to Authenticate API: the Authenticate() call makes the service
layer module transparent to the Service Provider, it occurs above SAL layer;
— provision of an introductory text describing the layout where Authenticate API fits;
— IFD API C-Language Binding remains in ECC-3 till its endorsement in ISO/IEC 24727 if deemed useful;
— maintainance of ExecuteSAL API in ECC-3 (both C-language binding and java binding);
— incorporation under Annex G of “Application Discovery Profile” for the purposes of integration in
ISO/IEC 24727 framework.
According to the CEN-CENELEC Internal Regulations, the national standards organizations of the following
countries are bound to announce this Technical Specification: Austria, Belgium, Bulgaria, Croatia, Cyprus,
Czech Republic, Denmark, Estonia, Finland, Former Yugoslav Republic of Macedonia, France, Germany,
Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, Netherlands, Norway, Poland,
Portugal, Romania, Slovakia, Slovenia, Spain, Sweden, Switzerland, Turkey and the United Kingdom.
6

---------------------- Page: 8 ----------------------

SIST-TS CEN/TS 15480-3:2014
CEN/TS 15480-3:2014 (E)
1 Scope
This Technical Specification provides an Interoperability Model, which will enable an eService compliant with
technical requirements, to interoperate with different implementations of the European Citizen Card.
This Interoperability model will be developed as follows:
— starting from the ECC Part 2, Part 3 of the ECC series provides additional technical specifications for a
middleware architecture based on ISO/IEC 24727 (all parts); this middleware will provide an API to an
eService as per ISO/IEC 24727-3.
— a set of additional API provides the middleware stack with means to facilitate ECC services.
— a standard mechanism for the validation of the e-ID credential is stored in the ECC and retrieved by the
eService.
In order to support the ECC services over an ISO/IEC 24727 middelware configuration, this part of the
standard specifies the following:
— a set of mandatory requests to be supported by the middleware implementation based on ISO/IEC 24727
(all parts).
— data set content for interoperability to be personalised in the ECC.
— three middleware architecture solutions: one based on a stack of combined ISO/IEC 24727 configurations
and the other based on Web Service configuration whereas the third one is relying on a SAL Lite
component.
— an Application DiscoveryProfile featuring the guidelines for card-applications to fit in ISO/IEC 24727
framework.
2 Normative references
The following documents, in whole or in part, are normatively referenced in this document and are
indispensable for its application. For dated references, only the edition cited applies. For undated references,
the latest edition of the referenced document (including any amendments) applies.
CEN/TS 15480-2:2012, Identification card systems — European Citizen Card — Part 2: Logical data
structures and security services
CEN/TS 15480-4, Identification card systems — European Citizen Card — Part 4: Recommendations for
European Citizen Card issuance, operation and use
ISO/IEC 7816-4, Identification cards — Integrated circuit cards — Part 4: Organization, security and
commands for interchange
ISO/IEC 7816-15, Identification cards — Integrated circuit cards — Part 15: Cryptographic information
application
ISO/IEC 24727-1, Identification cards — Integrated circuit card programming interfaces — Part 1: Architecture
7

---------------------- Page: 9 ----------------------

SIST-TS CEN/TS 15480-3:2014
CEN/TS 15480-3:2014 (E)
)
1
ISO/IEC 24727-2:2008 , Identification cards — Integrated circuit card programming interfaces — Part 2:
Generic card interface
)
2
ISO/IEC 24727-3:2008 , Identification cards — Integrated circuit card programming interfaces — Part 3:
Application interface
)
3
ISO/IEC 24727-4:2008 , Identification cards — Integrated circuit card programming interfaces — Part 4:
Application programming interface (API) administration
ISO/IEC 24727-5, Identification cards — Integrated circuit card programming interfaces — Part 5: Testing
procedures
ISO/IEC 24727-6, Identification cards — Integrated circuit card programming interfaces — Part 6: Registration
authority procedures for the authentication protocols for interoperability
3 Terms and definitions
For the purposes of this document, the following terms and definitions apply.
3.1
descriptive elements
information nested in data objects and intended for the discovery mechanism and encapsulated along with
procedural elements in the ACD and CCD
3.2
procedural elements
translation code to process any request at the Generic Card Interface (GCI) and every relevant card response
Note 1 to entry: The translation has one entry point, theTranslationCode() function as per ISO/IEC 24727-2.
3.3
middleware
set of abstraction layers which serves as the intermediate between a client-application and an application
resident in the ECC.and behind which the actual pieces of software running these abstraction layers are
implementation-specific and out of the scope of this document
3.4
eService
application based locally on the client PC or based somewhere in the internet (eg government eService,
eBuisness eService,…) which offers in combination with the ECC smart card the execution of a task
4 Symbols and abbreviations
ADF Application Dedicated File
AID Application Identifier
AJAX Asynchronous JavaScript and XML
AMB Access Mode Byte
AT Authentication Template

1) This document is currently impacted by the draft amendment ISO/IEC 24727-2:2008/DAmd 1.
2) This document is currently impacted by the draft amendment ISO/IEC 24727-3:2008/DAmd 1.
3) This document is currently impacted by the draft amendment ISO/IEC 24727-4:2008/DAmd 1.
8

---------------------- Page: 10 ----------------------

SIST-TS CEN/TS 15480-3:2014
CEN/TS 15480-3:2014 (E)
ATR Answer to Reset
ATS Answer to Select
BER Basic Encoding Rules
BHT Biometric Header Template
BIT Biometric Information Template
CA Certification Authority
CAPICOM Cryptographic API COM Object (http://msdn.microsoft.com)
CAR Certification Authority Reference
CBC Cipher Block Chaining
CCT Cryptographic Checksum Template
CED Certificate Effective Date
CHA Certificate Holder Authorization
CHR Certificate Holder Reference
CIA Cryptographic Information Application
CPI Certificate Profile Identifier
CRT Control Reference Template
CryptoAPI Cryptographic Application Programming Interface (http://msdn.microsoft.com)
CSP Crytographic Service Provider
CT Confidentiality Template
CV Card Verifiable
CXD Certificate Expiration Date
DES Data Encryption Standard
DF Dedicated File
DH Diffie Hellman
DOCP Data Object Control Parameters
DST Digital Signature Template
ECDH Elliptic Curve DH
ELC Elliptic Curve Cryptosystem
ECDSA Elliptic Curve Digital Signature Algorithm
EF Elementary File
FCI File Control Information
FCP File Control Parameters
GCAL Generic Card Access Layer
HT Hash Template
ICC Integrated Circuit Card
DID Differential Identity according to ISO/IEC 24727-3
IFD Interface Device
IFDH Interface Device Handler
JSON Java Script Object Notation (http://www.json.org)
9

---------------------- Page: 11 ----------------------

SIST-TS CEN/TS 15480-3:2014
CEN/TS 15480-3:2014 (E)
KAT Control reference template for key agreement
LSB Least Significant Byte
MAC Message Authentication Code
MF Master File
M.U.S.C.L.E Movement for the Use of Smart Card in Linux Environment
MSE Manage Security Environment
OID Object Identifie
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.

This May Also Interest You

SIST
SIST-TS CEN/TS 17661:2022(Main)
Personal identification – European enrolment guide for biometric ID documents (EEG)
CEN/TS 17661:2021

This technical specification provides guidance on
• capturing of facial images to be used as reference images in identity or similar documents,
• capturing of fingerprint images to be used as reference images in identity or similar documents,
• data quality maintenance for biometric reference data,
• data authenticity maintenance for biometric reference data.
The TS addresses the following aspects which are specific for biometric reference data capturing:
• biometric data quality and interoperability ensurance,
• data authenticity ensurance,
• morphing and other presentation attack detection,
• accessibility and usability,
• privacy and data protection,
• optimal process design.
The following aspects are out of scope:
• IT security,
• data capturing for verification purposes, e.g., in ABC gates.
• self-taken images, although a section on this has been included

  • Technical specification
    73 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST-TS CEN/TS 17631:2021(Main)
Personal identification - Biometric group access control
CEN/TS 17631:2021

This technical specification provides guidance on providing access
• To areas with physical access control, e.g., entertainment facilities, train stations, shops, libraries,banks, or border control,
• For small groups of persons, e.g., families with small children or seniors, or other accompanied persons in need of support,
• By means of biometric authentication technologies, e.g., facial, fingerprint, or vein recognition,
• In the European regulatory context.
The TS addresses the following aspects which are specific for biometric and group access:
• Accessibility and usability,
• User guidance including group guidance and interaction control,
• Privacy including data set content,
• Presentation attack detection,
• Applicable biometric technologies,
• Storage of reference data,
• Biometric process integration,
• Specific needs considering biometrics for groups,
• Biometric performance and error rates, and
• Group internal linkage.
The following aspects which reflect on generic access control issues are out of scope:
• IT security,
• Application specific physical security,
• Policy definition,
• Processes not related to biometric authentication, and
• Specific performance requirements of identification (1:N) and verification (1:1) applications.

  • Technical specification
    18 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST ISO/IEC 4909:2021(Main)
Identification cards -- Financial transaction cards -- Magnetic stripe data content for track 3
ISO/IEC 4909:2006

ISO/IEC 4909:2006 establishes specifications for financial transaction cards using track 3 and is intended to permit interchange based on the use of magnetic stripe encoded information. It specifies the data content and physical location of read/write information on track 3 and is to be used in conjunction with the relevant parts of ISO/IEC 7811 and ISO/IEC 7812.
ISO/IEC 4909:2006 recognizes the need for formats of track 3 which can be used independently of, or in conjunction with, track 2 as defined in ISO/IEC 7813. This approach is intended to permit the greatest degree of flexibility within the financial community in facilitating international interchange.
Using track 3 in conjunction with track 2 is a mode of operation in both on-line and off-line interchange environments. This mode of operation requires that the original encoded data on track 2 be read; the data on track 3 be read; and, if update is required, all the data on track 3 be rewritten.
Independent use of track 3 is an alternative mode of operation permitting both on-line interchange and off-line interchange based on mutual agreement between interested parties. It requires reading only of the data on track 3 and, if update is required, the rewriting of all the data on track 3.

  • Standard
    19 pages
    English language
    sale 10% off
    e-Library read for
    1 day
  • Standard
    14 pages
    English language
    sale 15% off
SIST
SIST-TS CEN/TS 17489-1:2020(Main)
Personal identification - Secure and interoperable European Breeder Documents - Part 1: Framework overview
CEN/TS 17489-1:2020

This document provides an overview of a framework on breeder documents. It introduces the document structure of FprCEN/TS 17489 (all parts) that specifies how citizens retain the control of breeder document data and how they can use them to support identity proofing and verification. Moreover, the framework provides methodologies to assess and increase the level of trust in breeder documents.
This framework specifies methods for:
-   defining physical and logical/digital representations of a secure breeder document (hardware based, paper-based, server-based),
-   securing breeder document processes,
-   linking the document to its legitimate holder.
The following types of breeder documents are in the scope of the framework:
-   birth certificates,
-   marriage and partnership certificates,
-   death certificates.
The following breeder documents management processes including first-time application, later-in-life registration of an identity, and content update (e.g. name-changing) are in the scope of this framework:
-   registration,
-   issuance,
-   renewal,
-   inspection/verification,
-   revocation.
The specification of policies is out of scope.

  • Technical specification
    14 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN 1332-3:2020(Main)
Identification card systems - User Interface — Part 3: Key pads
EN 1332-3:2020

This European Standard covers the ergonomic layout and usability of keypads. The keypad may consist of numeric, command and function keys and alphanumeric characters. On the basis that keypad layout impacts performance (keying speed, and errors), this European Standard aims to:
-   enhance usability;
-   ensure ease of use through consistency;
-   increase customer confidence;
-   reduce customer error;
-   improve operating time;
-   ensure ergonomic data entry.
This European Standard specifies the arrangement, the number and location of numeric, function and command keys, including placement of alphabetic characters on numeric keys. Design requirements and recommendations are also provided.
This standard applies to all identification card systems with a numeric keypad for use by the public for stationary or non-stationary devices. This standard also covers keypads on touch sensitive devices.

  • Standard
    20 pages
    English language
    sale 10% off
    e-Library read for
    1 day
  • Draft
    19 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST-TS CEN/TS 16794-2:2019(Main)
Public transport - Communication between contactless readers and fare media - Part 2: Test plan for ISO/IEC 14443
CEN/TS 16794-2:2019

This document comes as a complement to the technical requirements expressed in CEN/TS 16794-1, for ensuring contactless communication interoperability between Public Transport (PT) devices or between PT devices compliant to CEN/TS 16794-1 and NFC mobiles devices compliant to NFC Forum specifications.
This document lists all the test conditions to be performed on a PT reader or a PT object in order to ensure that all the requirements specified in CEN/TS 16794-1 are met for the PT device under test.
This document applies to PT devices only:
-   PT readers which are contactless fare management system terminals acting as a PCD contactless reader based on the ISO/IEC 14443 series;
-   PT objects which are contactless fare media acting as a PICC contactless object based on the ISO/IEC 14443 series.
This document applies solely to the contactless communication layers described in Parts 1 to 4 of the ISO/IEC 14443 series. Application-to-application exchanges executed once contactless communication has been established at RF level fall outside the scope of this document. However, a test application will be used so as to make end-to-end transactions during tests on the RF communication layer.
This document does not duplicate the contents of the ISO/IEC 14443 series or ISO/IEC DIS 10373-6 standard. It makes reference to the ISO/IEC DIS 10373-6 applicable test methods, specifies the test conditions to be used and describes the additional specific test conditions that may be run.
The list of test conditions applicable to the PT device under test will be conditioned by the Information Conformance Statement (ICS) declaration made by the device manufacturer. For each test case, the test conditions are clearly specified in order to determine the pertinence to run or not the test case in accordance with the device capabilities or in accordance with the device manufacturer’s choice.
In order to facilitate the test report issuance, a test report template is included in Annex A of this document.
Although this document aims at becoming the primary basis for certification of contactless communication protocol applicable to PT readers and PT objects, it does not describe any certification or qualification processes as such processes should be defined between local or global transit industry stakeholders.

  • Technical specification
    32 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST-TS CEN/TS 16794-1:2019(Main)
Public transport - Communication between contactless readers and fare media - Part 1: Implementation requirements for ISO/IEC 14443
CEN/TS 16794-1:2019

This document constitutes the 3rd edition of CEN/TS 16794 1. It sets out the technical requirements to be met by contactless Public Transport (PT) devices in order to be able to interface together using the ISO/IEC 14443 series contactless communications protocol.
This document applies to PT devices:
-   PT readers which are contactless fare management system terminals acting as a PCD contactless reader based on the ISO/IEC 14443 series;
-   PT objects which are contactless fare media acting as a PICC contactless object based on the ISO/IEC 14443 series.
This edition addresses interoperability of consumer-market NFC mobile devices, compliant to NFC Forum specifications, with above mentioned PT devices, aligns with the 4th edition of the ISO/IEC 14443 series and maintains the possibility for PT readers to comply with the requirements from EMV Contactless Interface Specification [1] and the present document.
An interface–oriented test approach is used to evaluate the conformity of PT devices and is defined in CEN/TS 16794 2.
Application-to-application exchanges executed once contactless communication has been established at RF level fall outside the scope of this document. In line with the rules on independence between OSI protocol layers, this document works on the assumption that application-to-application exchanges are not contingent on the type of contactless communication established or the parameters used for the low-level protocol layers that serve as the platform for these application-to-application exchanges.

  • Technical specification
    38 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN 17054:2019(Main)
Biometrics multilingual vocabulary based upon the English version of ISO/IEC 2382-37:2012
EN 17054:2019

This European Standard establishes a systematic description of the concepts in the field of biometrics pertaining to recognition of human beings and reconciles variant terms in use in pre-existing biometric standards against the preferred terms, thereby clarifying the use of terms in this field.
Excluded from the scope of this document are concepts (represented by terms) from information technology, pattern recognition, biology, mathematics, etc. Biometrics uses such fields of knowledge as a basis.
In principle, mode specific terms are outside the scope of this European Standard.
Words in bold are defined in this document. Words that are not in bold are to be understood in their natural language sense. The authority for natural language use of terms in this document is the Concise Oxford English Dictionary (COD), Thumb Index Edition (tenth edition, revised, 2002). Words used in their natural language sense are considered out-of-scope for further definition in this document.

  • Standard
    76 pages
    English, French and German language
    sale 10% off
    e-Library read for
    1 day
  • Draft
    77 pages
    English, French and German language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST-TS CEN/TS 17261:2019(Main)
Biometric authentication for critical infrastructure access control - Requirements and Evaluation
CEN/TS 17261:2018

The technical specification
i) Specifies design, performance and attack resistance requirements for biometric systems used as part of an automated access control system protecting access to Critical Infrastructure (defined in Council directive 2008 /114 / EC)
ii) Describes methodologies for evaluation of biometric access control products against these requirements

  • Technical specification
    18 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST-TS CEN/TS 17262:2019(Main)
Personal identification - Robustness against biometric presentation attacks - Application to European Automated Border Control
CEN/TS 17262:2018

This Technical Specification is an application profile for the International Standard ISO/IEC 30107 Biometric presentation attack detection. It provides best practice recommendations for the implementation of Automated Border Control (ABC) systems in Europe.
Presentation Attack Detection (PAD) is addressed for facial and fingerprint recognition.
The biometric reference data can be stored in electronic Machine Readable Travel Documents (eMRTD) and/or EU Visa Information System (VIS).
The TS covers the robustness of the system, privacy and data protection aspects, usability and acceptance as well as countermeasures including their evaluation from the Biometrics perspective. Enrolment, issuance and verification applications of eMRTD other than border control are not in scope.

  • Technical specification
    23 pages
    English language
    sale 10% off
    e-Library read for
    1 day