Download (PDF, 589 KB, Datei ist nicht barrierefrei
29.11.2012 Views
Share Embed Flag

Download (PDF, 589 KB, Datei ist nicht barrierefrei

Download (PDF, 589 KB, Datei ist nicht barrierefrei

Download (PDF, 589 KB, Datei ist nicht barrierefrei

SHOW MORE
SHOW LESS
ePAPER READ
DOWNLOAD ePAPER
personalausweisportal.de

You also want an ePaper? Increase the reach of your titles

YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.

START NOW

EVoCAtIon MAnAGEMEnt<br />

A revocation key is required for generating service-specific<br />

revocation l<strong>ist</strong>s. to ensure that the process complies with the<br />

security requirements described above, this key has a length<br />

of 256 bits – something the identity card holder will certainly<br />

be unable to memorize.<br />

Cancellation of lost identity cards must be possible at any<br />

time: seven days a week, 24 hours a day, and especially while<br />

travelling as well. one solution would be to store the personal<br />

data of the card holder required for identification in the<br />

revocation service, together with the revocation key, which<br />

would in practice be equivalent to a nation-wide reg<strong>ist</strong>ry of<br />

persons.<br />

the methods used in the identity card take a different<br />

approach: only the hash value (revocation checksum)<br />

corresponding to the last and first names, date of birth and<br />

cancellation password are stored with the revocation key.<br />

this implementation permits effective cancellation of<br />

identity cards without requiring a central reg<strong>ist</strong>ry holding<br />

personal data.<br />

7. References<br />

rEFErEnCEs<br />

[PAuswG 2010] German ID Card Act (Gesetz über Personalausweise<br />

und den elektronischen Identitätsnachweis – Personalausweisgesetz<br />

– PAuswG), 17 August 2010, German Federal<br />

Law Gazette (Bundesanzeiger) I, p. 1346<br />

[PAuswV 2010] German ID Card Regulation (Verordnung über<br />

Personalausweise und den elektronischen Identitätsnachweis<br />

– PAuswV), 2010, German Federal Law Gazette (Bundesanzeiger)<br />

I<br />

[Bender 2008] Jens Bender, Dennis Kügler, Marian Margraf,<br />

Ingo naumann, Sicherheitsmechanismen für kontaktlose<br />

Chips im deutschen elektronischen Personalausweis, DuD •<br />

Datenschutz und Datensicherheit 3 | 2008, p. 173-177<br />

[Bender 2010] Jens Bender, Dennis Kügler, Marian Margraf,<br />

Ingo naumann, Das Sperrmanagement im neuen deutschen<br />

Personalausweis, DuD • Datenschutz und Datensicherheit 5 |<br />

2010, p. 295-298<br />

[tr-03110] BsI technical Guideline, Advanced Security Mechanisms<br />

for Machine Readable Travel Documents (BsI tr-03110)<br />

[tr-03112] BsI technical Guideline, eCard-API-Framework (BsI<br />

tr-03112)<br />

[tr-03128] BsI technical Guideline, EAC-PKI‘n für den elektronischen<br />

Personalausweis, Rahmenkonzept für den Aufbau und<br />

den Betrieb von Document Verifiern (BsI tr-03128)<br />

[tr-03130] BsI technical Guideline, eID-Server (BsI tr-03130)<br />

[tr-03131] BsI technical Guideline, EAC-Box Architecture and<br />

Interfaces (BsI tr-03131)<br />

22 23

logo

products

Resources

Company

Terms of service
Privacy policy
Cookie policy
Cookie settings
Imprint
Change language
Made with love in Switzerland
© 2024 Yumpu.com all rights reserved

Hooray! Your file is uploaded and ready to be published.

Saved successfully!

Ooh no, something went wrong!