EP2499617A1

EP2499617A1 - Method for establishing an element of proof when checking an individual using an electronic document belonging to him

Info

Publication number: EP2499617A1
Application number: EP10774227A
Authority: EP
Inventors: Bruno Rouchouze; Stéphane MOUILLE; Patrice Plessis
Original assignee: Gemalto SA
Current assignee: Thales DIS France SA
Priority date: 2009-11-10
Filing date: 2010-11-09
Publication date: 2012-09-19
Also published as: KR20120081630A; WO2011058017A1; US20130026231A1; EP2330567A1

Abstract

The invention relates to a method for establishing an element of proof when checking an individual using an electronic document belonging to him. The check consists in using a checking means to read at least one data item present in the electronic document. According to the invention, the method consists in recording the read data item with at least one data item relating to the check and in signing the read data item and the data item relating to the check using a public key of the checked individual, the signed data items constituting the element of proof of the check.

Description

The method of establishing an item of evidence during a control of a person using an electronic document belonging to him The field of the invention is that of the controls of personal electronic documents, such as passports, cards identity card, residence permit or driving license for example. More specifically, the present invention relates to a method for establishing a piece of evidence of a control of a personal electronic document, during such a control.

Personal electronic documents are intended to replace paper documents traditionally held by citizens. These paper documents, such as identity cards or driving licenses, will gradually disappear from circulation in favor of electronic documents such as smart cards or electronic passports containing various information on their holder.

For example, a smart card or electronic passport may contain the cardholder's fingerprint, address, data relating to alleged offenses, health status data, or any other personal information that this person wishes to keep confidential or at least not to reveal to everyone. The preservation of the confidentiality of personal information is essential in a world where communication is facilitated by all the means of communication available to all, whether through the Internet, mobile telephony or communication networks of future generations.

When a sworn officer, for example a police, gendarmerie or customs officer, checks an electronic document of an individual, for example his electronic identity card, this agent accesses personal data of his holder. Access to this data can be achieved by means of a control means, for example consisting of a contact chip card reader or an RFID type reader for a contactless reading. In the latter case, the electronic document includes, in addition to a chip in which are stored the personal data of his holder, an antenna allowing the reader to access the data stored in the chip.

The control means, in the case of the gendarmerie, is conventionally constituted by a card reader comprising two slots: one is intended for the insertion of the card of the controlled person, the other to read, for purposes authentication, data from the agent performing the check. In the absence of the checking officer's card, it is not possible to read the data on the card of the person being checked. This avoids that after a theft of a reader and a personal card, the data stored therein can be read by the malicious person (the thief).

The problem that the present invention proposes to solve is the following: the sworn agent may be a malicious person. During or after the access to the data on the electronic document of the controlled person, this agent can copy the data to which he has had access and exploit them fraudulently. This fraudulent exploitation may consist of disclosing, for example over the Internet, the personal data of the controlled person, who can only suffer the prejudice of his damage, except to report evidence of his control by this agent.

The present invention specifically aims to allow a controlled person to report the proof of his control from an agent.

For this purpose, the invention proposes a method of establishing an item of evidence during a control of a person using an electronic document belonging to him, this control consisting in reading, using of a control means, at least one datum present in the electronic document.

According to the invention, the method consists in recording the data item read with at least one data relating to the control, and in signing the data item read and the item relating to the control by a public key of the controlled person, the signed data constituting the item proof of control.

Thus, if the controlling agent discloses the data or data read from the electronic document during the inspection, the controlled person will be able, with the help of his private key, to prove that he has been controlled by such and such a person, at such and such place and on what date. The agent guilty of the disclosure of the personal data of the controlled person will therefore be easily unmasked. This ensures that people checked that, regardless of the data contained in their electronic documents acting as identity documents, driver's license or passport, they will not be revealed or that if they become, it will be possible to find the agent who has fraudulently disclosed this information.

Conversely, the solution proposed by the invention is intended to reassure the holder of such an electronic document that the information contained therein, will not be in the public domain or that, if they become so, that the author of their disclosure will be identified.

In a first mode of implementation, the signed data are transmitted to an Internet site. This site is for example accessible to the person controlled following his request, for example according to the French model relating to the point license consisting in prefecture giving a password to the controlled person so that he can consult his balance of points on his driving licence.

In a second embodiment, the signed data is stored in the electronic document that has been checked. The holder of the document can thus retrieve the data relating to his control. Alternatively, the signed data is stored in another electronic document, such as a smart card for this purpose for example.

In a third mode of implementation, the signed data is printed, during the control, on a receipt that is given to the controlled person.

The control data advantageously corresponds to one of the following elements:

- the place of control;

- the date of the check;

the identifier of the control means used; - the mark of the control means used;

- the type of control means used;

- the serial number of the control means used;

- the date of verification of the means of control used;

- the name or reference of the agent who used the means of control used.

Other features and advantages of the invention will become apparent on reading the following of an advantageous embodiment of the invention, given by way of illustration and without limitation, and of the single appended figure representing this mode of implementation. of the process according to the invention.

The single appended figure represents a preferred mode of implementation of the method according to the invention.

Step 10 is a start step. During step 1 1, the electronic document of a person is controlled, for example during a gendarmerie check. This control may consist in inserting the electronic document of the controlled person in a control means such as a reader and in authorizing the reading of the data stored therein by the insertion of an electronic document belonging to the policeman carrying out the check. The reader, after having authenticated the electronic document of the constable, authorizes the access to the data present on the electronic document of the controlled person. The data read by the reader are displayed on a screen so that they can be consulted by the gendarme and / or compared with other data (for example comparison of a fingerprint read in the electronic document with a fingerprint read on a reader. 'footprint). After this reading 11, a step 12 of the method according to the invention consists in adding to the data read a data relating to the control. This data relating to the control is for example the place of the control, the date of the control, the identifier of the control means used, the mark of the control means used, the type of the control means used, the serial number of the means of control. used, the verification date of the means of control used, the name or reference of the agent who used the means of control used. The addition of this data can simply consist in concatenating the data read (or an identifier corresponding to this datum, such as for example a "fingerprint" or "address" mention) in the electronic document with this data relating to the control.

During a step 13, the data read and the data relating to the control are signed by a public key of the controlled person. This public key is for example contained in the controlled electronic document. This ensures that only the controlled person can later access the data relating to his control.

In a step 14, before an end step 15, the signed data is stored. This storage may consist of copying the signed data into the controlled document, into a zone reserved for this purpose, or else into another electronic document, such as a smart card of the controlled person. The storage may also consist of the sending of the signed data to a website, from the control means.

The controlled person will be able to access this data at a later date and, thanks to his private key, will be able to establish that it has been checked at this or that place by a particular agent. If this agent should have committed the fault of having published confidential data obtained during this control, the controlled person will be able to confuse it easily.

The foregoing description has been given for illustrative and non-limiting purposes only and those skilled in the art will readily imagine other embodiments of the present invention within the scope of the claims.

Claims

1. A method of establishing an item of evidence when controlling a person with an electronic document belonging to him, said control consisting in reading (1 1), using a means of control, at least one data present in said electronic document, characterized in that it consists in recording said read data with at least one datum relating to said control, and in signing (13) said read data and said data relating to said control by a public key of said controlled person, the signed data constituting said piece of evidence of said control.

2. Method according to claim 1, characterized in that said signed data are transmitted to an Internet site.

3. Method according to claim 1, characterized in that said signed data are stored in said electronic document or any other electronic document.

4. Method according to one of claims 1 to 3, characterized in that said data relating to said control corresponds to one of the following:

- the place of control;

- the date of the check;

the identifier of the said control means used;

- the mark of the said control means used;

the type of said control means used;

the serial number of the said control means used;

the date of verification of the said control means used;

the name or reference of the agent having used said control means used.