Classifications

• • G—PHYSICS
  • G07—CHECKING-DEVICES
  • G07C—TIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
  • G07C9/00—Individual registration on entry or exit
• • G—PHYSICS
  • G06—COMPUTING; CALCULATING OR COUNTING
  • G06F—ELECTRIC DIGITAL DATA PROCESSING
  • G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
  • G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
  • G06F21/55—Detecting local intrusion or implementing counter-measures
  • G06F21/552—Detecting local intrusion or implementing counter-measures involving long-term monitoring or reporting
• • G—PHYSICS
  • G06—COMPUTING; CALCULATING OR COUNTING
  • G06F—ELECTRIC DIGITAL DATA PROCESSING
  • G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
• • G—PHYSICS
  • G07—CHECKING-DEVICES
  • G07C—TIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
  • G07C9/00—Individual registration on entry or exit
  • G07C9/20—Individual registration on entry or exit involving the use of a pass
  • G07C9/28—Individual registration on entry or exit involving the use of a pass the pass enabling tracking or indicating presence
• • G—PHYSICS
  • G07—CHECKING-DEVICES
  • G07F—COIN-FREED OR LIKE APPARATUS
  • G07F7/00—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
  • G07F7/08—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
  • G07F7/10—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data

Definitions

• the method of establishing an item of evidence during a control of a person using an electronic document belonging to him is that of the controls of personal electronic documents, such as passports, cards identity card, residence permit or driving license for example. More specifically, the present invention relates to a method for establishing a piece of evidence of a control of a personal electronic document, during such a control.
• Personal electronic documents are intended to replace paper documents traditionally held by citizens. These paper documents, such as identity cards or driving licenses, will gradually disappear from circulation in favor of electronic documents such as smart cards or electronic passports containing various information on their holder.
• a smart card or electronic passport may contain the cardholder's fingerprint, address, data relating to alleged offenses, health status data, or any other personal information that this person wishes to keep confidential or at least not to reveal to everyone.
• the preservation of the confidentiality of personal information is essential in a world where communication is facilitated by all the means of communication available to all, whether through the Internet, mobile telephony or communication networks of future generations.
• a sworn officer for example a police, gendarmerie or customs officer
• this agent accesses personal data of his holder.
• Access to this data can be achieved by means of a control means, for example consisting of a contact chip card reader or an RFID type reader for a contactless reading.
• the electronic document includes, in addition to a chip in which are stored the personal data of his holder, an antenna allowing the reader to access the data stored in the chip.
• the control means in the case of the gendarmerie, is conventionally constituted by a card reader comprising two slots: one is intended for the insertion of the card of the controlled person, the other to read, for purposes authentication, data from the agent performing the check.
• a card reader comprising two slots: one is intended for the insertion of the card of the controlled person, the other to read, for purposes authentication, data from the agent performing the check.
• the checking officer's card it is not possible to read the data on the card of the person being checked. This avoids that after a theft of a reader and a personal card, the data stored therein can be read by the malicious person (the thief).
• the sworn agent may be a malicious person. During or after the access to the data on the electronic document of the controlled person, this agent can copy the data to which he has had access and exploit them fraudulently. This fraudulent exploitation may consist of disclosing, for example over the Internet, the personal data of the controlled person, who can only suffer the prejudice of his damage, except to report evidence of his control by this agent.
• the present invention specifically aims to allow a controlled person to report the proof of his control from an agent.
• the invention proposes a method of establishing an item of evidence during a control of a person using an electronic document belonging to him, this control consisting in reading, using of a control means, at least one datum present in the electronic document.
• the method consists in recording the data item read with at least one data relating to the control, and in signing the data item read and the item relating to the control by a public key of the controlled person, the signed data constituting the item proof of control.
• the controlling agent discloses the data or data read from the electronic document during the inspection
• the controlled person will be able, with the help of his private key, to prove that he has been controlled by such and such a person, at such and such place and on what date.
• the agent guilty of the disclosure of the personal data of the controlled person will therefore be easily unmasked. This ensures that people checked that, regardless of the data contained in their electronic documents acting as identity documents, driver's license or passport, they will not be revealed or that if they become, it will be possible to find the agent who has fraudulently disclosed this information.
• the solution proposed by the invention is intended to reassure the holder of such an electronic document that the information contained therein, will not be in the public domain or that, if they become so, that the author of their disclosure will be identified.
• the signed data are transmitted to an Internet site.
• This site is for example accessible to the person controlled following his request, for example according to the French model relating to the point license consisting in prefecture giving a password to the controlled person so that he can consult his balance of points on his driving licence.
• the signed data is stored in the electronic document that has been checked.
• the holder of the document can thus retrieve the data relating to his control.
• the signed data is stored in another electronic document, such as a smart card for this purpose for example.
• the signed data is printed, during the control, on a receipt that is given to the controlled person.
• the single appended figure represents a preferred mode of implementation of the method according to the invention.
• Step 10 is a start step.
• the electronic document of a person is controlled, for example during a gendarmerie check.
• This control may consist in inserting the electronic document of the controlled person in a control means such as a reader and in authorizing the reading of the data stored therein by the insertion of an electronic document belonging to the policeman carrying out the check.
• the reader after having authenticated the electronic document of the constable, authorizes the access to the data present on the electronic document of the controlled person.
• the data read by the reader are displayed on a screen so that they can be consulted by the gendarme and / or compared with other data (for example comparison of a fingerprint read in the electronic document with a fingerprint read on a reader. 'footprint).
• a step 12 of the method according to the invention consists in adding to the data read a data relating to the control.
• This data relating to the control is for example the place of the control, the date of the control, the identifier of the control means used, the mark of the control means used, the type of the control means used, the serial number of the means of control. used, the verification date of the means of control used, the name or reference of the agent who used the means of control used.
• the addition of this data can simply consist in concatenating the data read (or an identifier corresponding to this datum, such as for example a "fingerprint" or "address” mention) in the electronic document with this data relating to the control.
• the data read and the data relating to the control are signed by a public key of the controlled person.
• This public key is for example contained in the controlled electronic document. This ensures that only the controlled person can later access the data relating to his control.
• the signed data is stored.
• This storage may consist of copying the signed data into the controlled document, into a zone reserved for this purpose, or else into another electronic document, such as a smart card of the controlled person.
• the storage may also consist of the sending of the signed data to a website, from the control means.
• the controlled person will be able to access this data at a later date and, thanks to his private key, will be able to establish that it has been checked at this or that place by a particular agent. If this agent should have committed the fault of having published confidential data obtained during this control, the controlled person will be able to confuse it easily.

Landscapes

• Engineering & Computer Science (AREA)
• Physics & Mathematics (AREA)
• General Physics & Mathematics (AREA)
• Theoretical Computer Science (AREA)
• Computer Security & Cryptography (AREA)
• Software Systems (AREA)
• Computer Hardware Design (AREA)
• General Engineering & Computer Science (AREA)
• Storage Device Security (AREA)
• Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Priority Applications (1)

Applications Claiming Priority (3)

Publications (1)

Family

ID=42053575

Family Applications (2)

Family Applications Before (1)

Country Status (4)

Families Citing this family (2)

Citations (1)

Family Cites Families (8)

• 2009
  • 2009-11-10 EP EP09306084A patent/EP2330567A1/de not_active Withdrawn
• 2010
  • 2010-11-09 US US13/509,154 patent/US20130026231A1/en not_active Abandoned
  • 2010-11-09 KR KR1020127014911A patent/KR20120081630A/ko not_active Application Discontinuation
  • 2010-11-09 EP EP10774227A patent/EP2499617A1/de not_active Ceased
  • 2010-11-09 WO PCT/EP2010/067138 patent/WO2011058017A1/fr active Application Filing

Patent Citations (1)

Non-Patent Citations (1)

Also Published As

Similar Documents

Legal Events