An on-line secure e-passport protocol

Vijayakrishnan Pasupathinathan; Josef Pieprzyk; Huaxiong Wang

doi:10.1007/978-3-540-79104-1_2

An on-line secure e-passport protocol

Vijayakrishnan Pasupathinathan^*, Josef Pieprzyk, Huaxiong Wang

^*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceeding › Conference proceeding contribution › peer-review

17 Citations (Scopus)

Abstract

The first generation e-passport standard is proven to be insecure and prone to various attacks. To strengthen, the European Union (EU) has proposed an Extended Access Control (EAC) mechanism for e-passports that intends to provide better security in protecting biometric information of the e-passport bearer. But, our analysis shows, the EU proposal fails to address many security and privacy issues that are paramount in implementing a strong security mechanism. In this paper we propose an on-line authentication mechanism for electronic passports that addresses the weakness in existing implementations, of both The International Civil Aviation Organisation (ICAO) and EU. Our proposal utilises ICAO PKI implementation, thus requiring very little modifications to the existing infrastructure which is already well established.

Original language	English
Title of host publication	Information Security Practice and Experience - 4th International Conference, ISPEC 2008, Proceedings
Editors	Liqun Chen, Yi Mu, Willy Susilo
Place of Publication	Berlin; New York
Publisher	Springer, Springer Nature
Pages	14-28
Number of pages	15
Volume	4991
ISBN (Print)	3540791035, 9783540791034
DOIs	https://doi.org/10.1007/978-3-540-79104-1_2
Publication status	Published - 2008
Event	4th Information Security Practice and Experience Conference, ISPEC 2008 - Sydney, NSW, Australia Duration: 21 Apr 2008 → 23 Apr 2008

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	4991 LNCS
ISSN (Print)	03029743
ISSN (Electronic)	16113349

Other

Other	4th Information Security Practice and Experience Conference, ISPEC 2008
Country/Territory	Australia
City	Sydney, NSW
Period	21/04/08 → 23/04/08

Access to Document

10.1007/978-3-540-79104-1_2

Cite this

Pasupathinathan, V., Pieprzyk, J., & Wang, H. (2008). An on-line secure e-passport protocol. In L. Chen, Y. Mu, & W. Susilo (Eds.), Information Security Practice and Experience - 4th International Conference, ISPEC 2008, Proceedings (Vol. 4991, pp. 14-28). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 4991 LNCS). Springer, Springer Nature. https://doi.org/10.1007/978-3-540-79104-1_2

Pasupathinathan, Vijayakrishnan ; Pieprzyk, Josef ; Wang, Huaxiong. / An on-line secure e-passport protocol. Information Security Practice and Experience - 4th International Conference, ISPEC 2008, Proceedings. editor / Liqun Chen ; Yi Mu ; Willy Susilo. Vol. 4991 Berlin; New York : Springer, Springer Nature, 2008. pp. 14-28 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{d78af74c548d440883eceef34d1c9cc4,

title = "An on-line secure e-passport protocol",

abstract = "The first generation e-passport standard is proven to be insecure and prone to various attacks. To strengthen, the European Union (EU) has proposed an Extended Access Control (EAC) mechanism for e-passports that intends to provide better security in protecting biometric information of the e-passport bearer. But, our analysis shows, the EU proposal fails to address many security and privacy issues that are paramount in implementing a strong security mechanism. In this paper we propose an on-line authentication mechanism for electronic passports that addresses the weakness in existing implementations, of both The International Civil Aviation Organisation (ICAO) and EU. Our proposal utilises ICAO PKI implementation, thus requiring very little modifications to the existing infrastructure which is already well established.",

author = "Vijayakrishnan Pasupathinathan and Josef Pieprzyk and Huaxiong Wang",

year = "2008",

doi = "10.1007/978-3-540-79104-1_2",

language = "English",

isbn = "3540791035",

volume = "4991",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer, Springer Nature",

pages = "14--28",

editor = "Liqun Chen and Yi Mu and Willy Susilo",

booktitle = "Information Security Practice and Experience - 4th International Conference, ISPEC 2008, Proceedings",

address = "United States",

note = "4th Information Security Practice and Experience Conference, ISPEC 2008 ; Conference date: 21-04-2008 Through 23-04-2008",

}

Pasupathinathan, V, Pieprzyk, J & Wang, H 2008, An on-line secure e-passport protocol. in L Chen, Y Mu & W Susilo (eds), Information Security Practice and Experience - 4th International Conference, ISPEC 2008, Proceedings. vol. 4991, Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 4991 LNCS, Springer, Springer Nature, Berlin; New York, pp. 14-28, 4th Information Security Practice and Experience Conference, ISPEC 2008, Sydney, NSW, Australia, 21/04/08. https://doi.org/10.1007/978-3-540-79104-1_2

An on-line secure e-passport protocol. / Pasupathinathan, Vijayakrishnan; Pieprzyk, Josef; Wang, Huaxiong.
Information Security Practice and Experience - 4th International Conference, ISPEC 2008, Proceedings. ed. / Liqun Chen; Yi Mu; Willy Susilo. Vol. 4991 Berlin; New York: Springer, Springer Nature, 2008. p. 14-28 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 4991 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference proceeding contribution › peer-review

TY - GEN

T1 - An on-line secure e-passport protocol

AU - Pasupathinathan, Vijayakrishnan

AU - Pieprzyk, Josef

AU - Wang, Huaxiong

PY - 2008

Y1 - 2008

N2 - The first generation e-passport standard is proven to be insecure and prone to various attacks. To strengthen, the European Union (EU) has proposed an Extended Access Control (EAC) mechanism for e-passports that intends to provide better security in protecting biometric information of the e-passport bearer. But, our analysis shows, the EU proposal fails to address many security and privacy issues that are paramount in implementing a strong security mechanism. In this paper we propose an on-line authentication mechanism for electronic passports that addresses the weakness in existing implementations, of both The International Civil Aviation Organisation (ICAO) and EU. Our proposal utilises ICAO PKI implementation, thus requiring very little modifications to the existing infrastructure which is already well established.

AB - The first generation e-passport standard is proven to be insecure and prone to various attacks. To strengthen, the European Union (EU) has proposed an Extended Access Control (EAC) mechanism for e-passports that intends to provide better security in protecting biometric information of the e-passport bearer. But, our analysis shows, the EU proposal fails to address many security and privacy issues that are paramount in implementing a strong security mechanism. In this paper we propose an on-line authentication mechanism for electronic passports that addresses the weakness in existing implementations, of both The International Civil Aviation Organisation (ICAO) and EU. Our proposal utilises ICAO PKI implementation, thus requiring very little modifications to the existing infrastructure which is already well established.

UR - http://www.scopus.com/inward/record.url?scp=41549094864&partnerID=8YFLogxK

U2 - 10.1007/978-3-540-79104-1_2

DO - 10.1007/978-3-540-79104-1_2

M3 - Conference proceeding contribution

AN - SCOPUS:41549094864

SN - 3540791035

SN - 9783540791034

VL - 4991

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 14

EP - 28

BT - Information Security Practice and Experience - 4th International Conference, ISPEC 2008, Proceedings

A2 - Chen, Liqun

A2 - Mu, Yi

A2 - Susilo, Willy

PB - Springer, Springer Nature

CY - Berlin; New York

T2 - 4th Information Security Practice and Experience Conference, ISPEC 2008

Y2 - 21 April 2008 through 23 April 2008

ER -

Pasupathinathan V, Pieprzyk J, Wang H. An on-line secure e-passport protocol. In Chen L, Mu Y, Susilo W, editors, Information Security Practice and Experience - 4th International Conference, ISPEC 2008, Proceedings. Vol. 4991. Berlin; New York: Springer, Springer Nature. 2008. p. 14-28. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-540-79104-1_2

An on-line secure e-passport protocol

Abstract

Publication series

Other

Access to Document

Other files and links

Fingerprint

Cite this