Gisela Meister

New Authentication Concepts for Electronic Identity Tokens

The national funded project [BioP@ss] researches the possibilities of an IP based smart card interface based on the international smart card application interface standards [CEN 15480] and [ISO/IEC 24727]. Instead of the classical APDU based communication a TCP/IP based web service communication with the smart card is established. This solution offers the benefit that this interface relies on well established standardized Internet protocols and hence reduces the necessity of an intermediate middleware implementation which translates web service calls into APDU’s. Additionally, we define a [SAML(v2.0)] profile, which allows the implementation of an Identity Provider directly on a smart card.

Application of Standardised Techniques to Session Key Establishment for Smart Cards

An essential feature of cryptographic systems which is too often neglected is the generation and distribution of cryptographic keys. Without the assurance that keys have been securely generated and distributed to, and only to, the entities that require them, users can place no trust in the overall system.

Secure E-Business applications based on the European Citizen Card

The introduction of ID cards enhanced with electronic authentication services opens up the possibility to use these for identification and authentication in e-business applications. To avoid incompatible national solutions, the specification of the European Citizen Card aims at defining interoperable services for such use cases. Especially the given device authentication methods can help to eliminate security problems with current e-business and online banking applications.

Interaktionen TPM und Smart Card

Trusted Platform Module (TPM) entsprechend dem Industriestandard der Trusted Computing Group (TCG) ahneln von ihrer Funktionalitat einer Smart Card. Doch wahrend eine Smart Card als Plastikkarte mit Chip oder als Token transportabel ist, wird das TPM fest in ein Gerat (z.B. Mainboard des PCs) oder einen anderen Hardwarebaustein integriert

ISOIIEC 24727 — A Future Standard for Smart Card Middleware

This paper describes the features of the future-oriented ISO/IEC 24727 smart card middleware standard for a broad audience; i.e., from a basic to a good technical understanding. Not only technical aspects are covered, but business and market aspects as well.

Personalisierung von Chipkarten nach Signaturgesetz und Signaturverordnung

Am 22.07.1997 wurde das Gesetz zur digitalen Signatur (Signaturgesetz — SigG) verabschiedet. In diesem Beitrag wird basierend auf der vom AK DIN NI-17.4 im Auftrag des BSI und der Regulierungsbehorde ausgearbeiteten Spezifikation (Stand 0.75 vom 10.12.97) und aufbauend auf dem von beiden Behorden gemeinsam vorgestellten Masnahmenkatalog fur digitale Signaturen (Stand 1.0 vom 18.11.97) ein Konzept zur Personalisierung von Chipkarten vorgestellt.