WO2008034719A1 - Verfahren zur personalisierung von dokumenten, kryptographisches system, personalisierungssystem und dokument - Google Patents
Verfahren zur personalisierung von dokumenten, kryptographisches system, personalisierungssystem und dokument Download PDFInfo
- Publication number
- WO2008034719A1 WO2008034719A1 PCT/EP2007/059250 EP2007059250W WO2008034719A1 WO 2008034719 A1 WO2008034719 A1 WO 2008034719A1 EP 2007059250 W EP2007059250 W EP 2007059250W WO 2008034719 A1 WO2008034719 A1 WO 2008034719A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- data
- documents
- private key
- key
- personalization
- Prior art date
Links
Classifications
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07F—COIN-FREED OR LIKE APPARATUS
- G07F7/00—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
- G07F7/08—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
- G07F7/10—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
- G07F7/1008—Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/34—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
- G06Q20/341—Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/34—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
- G06Q20/355—Personalisation of cards for use
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/389—Keeping log of transactions for guaranteeing non-repudiation of a transaction
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
- G06Q20/409—Device specific authentication in transaction processing
- G06Q20/4097—Device specific authentication in transaction processing using mutual authentication between devices and transaction partners
- G06Q20/40975—Device specific authentication in transaction processing using mutual authentication between devices and transaction partners using encryption therefor
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07F—COIN-FREED OR LIKE APPARATUS
- G07F7/00—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
- G07F7/08—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07F—COIN-FREED OR LIKE APPARATUS
- G07F7/00—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
- G07F7/08—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
- G07F7/12—Card verification
- G07F7/122—Online card verification
Definitions
- the invention relates to a method for personalizing documents, in particular value or security documents, as well as a cryptographic system, a personalization system and a document with an integrated electronic circuit, in particular a value or security document.
- the data stored on an RFID transponder are made available via radio waves. At low frequencies, this is done inductively via a near field, at higher frequencies via an electromagnetic far field.
- the distance over which an RFID transponder can be addressed and read varies due to the design (passive / active), the frequency band used, the transmission strength and other environmental influences between a few centimeters and more than one kilometer.
- RFID-enabled documents A disadvantage of such RFID-enabled documents is that, without the consent of the document bearer, the RFID interface may be addressed if, for example, the document is in the carrier's wallet. Safeguards against unauthorized reading of data from such a document are also referred to as "Basic Access Control" and have been standardized by the International Civil Aviation Organization (ICAO).
- IAO International Civil Aviation Organization
- US 2002/0087894 A1 discloses a similar system in which the user himself selects the security level for the data transfer.
- the transmission of the input data from a government server to the computer system according to the invention is preferably carried out by a secure transmission, in particular via OSCI (Online Service Computer Interface).
- OSCI Online Service Computer Interface
- the control data is then transmitted individually or in a data packet to a personalization device located in a production environment.
- the personalization device is preferably a personalization system for the mass personalization of document blanks.
- the personalization system is loaded in batches with document blanks, which then in turn through the personalization system with the highest possible throughput to be personalized there.
- the storage of the personalization data can be done with different access conditions that must be met for external access to the personalization data. For example, access to the name and address of the document bearer is possible without any further access condition, since this information is anyway printed on the document.
- different accessibility conditions in particular biometric data objects, can be defined for different personalization data which are worthy of protection.
- the fingerprint data is stored with an access condition, according to which an external read access can only take place if an asymmetric cryptographic protocol including the private key of the document has been successfully processed.
- the private key associated with the data structure is also transmitted from the personalization device to the integrated electronic circuit of the document.
- the private key is stored in a memory area of the integrated electronic circuit with the access condition "never", ie an external access to the private key is basically impossible.
- the high security environment meets the legal requirements for a so-called trust center.
- the production environment may be subject to less stringent security requirements, in particular to allow access to the production personnel, which is also required with extensive automation.
- the computer system is connected to a cryptographic unit.
- the cryptographic unit may be a so-called key generator for generating the key pairs consisting of public and private keys.
- an end-to-end encryption method is used to protect the transmission of the private keys from the cryptographic unit to the integrated electronic circuits of the document blanks.
- the private keys are encrypted in such a way that only the integrated electronic circuits of the document blanks can decrypt these private keys again.
- neither the computer system nor the personalization device can decrypt the encrypted private key provided by the cryptographic unit.
- the end-to-end encryption in the cryptographic unit is realized by means of a secret symmetric key stored in the cryptographic unit.
- the same secret symmetric key is also present in the integrated electronic circuits of the document blanks.
- this symmetric key may be integrated into the operating systems of the integrated electronic circuits, such that it can not be read from the integrated electronic circuit.
- the cryptographic unit encrypts the private key using the symmetric key.
- the generated private key cipher is passed to the computer system along with the public key.
- the computer system binds the public key in the data structure and generates from the data structure and the ciphertext of the private key a control record for the personalization device.
- an integrated electronic circuit of one of the document blanks receives the data structure with the cipher of the private key.
- the integrated electronic circuit then decrypts the cipher so that it receives the private key, which is then stored with the access condition "never".
- Secure messaging can be a symmetric keyed or randomized or dynamic symmetric key based method.
- the dynamic symmetric keys may be derived from hardware-specific features, such as the serial number of the particular integrated electronic circuit.
- secure messaging techniques based on dynamic symmetric keys with symmetric key negotiation or asymmetric key negotiation can be used.
- static secure messaging in addition to the encryption of the transmitted data, an authentication of the transmitting Application Protocol Data Unit (APDU) by means of a symmetrical signature algorithm (Message Authentication Code - MAC) can be used.
- APDU Application Protocol Data Unit
- MAC Message Authentication Code
- the MAC calculation can be static or randomized, for example by using a variable initial chain value (ICV), which was previously requested by the personalization device from the integrated electronic circuit of the document blank to be personalized.
- IOV variable initial chain value
- This randomization causes an attacker, even after the APDU sequence has been transferred, among other things, to transfer the private key from the personalization device to the integrated electronic circuit, unable to replay the attack because the attacker is unable to recover the attacker requested random value, ie the ICV, to reproduce.
- the integrated electronic circuits are RFIDs.
- the present invention is by no means limited to RFIDs, but can also be used for other contact-based, contactless or dual-mode interfaces.
- the invention relates to a cryptographic system comprising means for receiving input data for the personalization of the documents, means for generating a key pair consisting of a public and a private key for each of the documents, means for generating a data structure from the input data and one of the public key for each of the documents and means for generating the control data from the data structures and the respective associated private keys.
- the invention relates to a personalization system, in particular a largely automated personalization system for the mass personalization of document blanks.
- the personalization system comprises means for receiving control data, the control data including data structures each having a public key and a private key associated with the respective public key, and means for transmitting the data structures and the respective associated private keys to the documents by executing the control data, such as that the data structures are each in a memory area of the integrated electronic circuit of a document to be personalized with an access condition, and the private data Key is stored in a memory area of the integrated electronic circuit so that no external access to the private key is possible.
- the invention relates to a document, in particular a value or security document, such as a machine-readable travel document, in particular a passport, identity card or visa, or a company card, credit card, driver's license, credential or the like
- a document in particular a value or security document, such as a machine-readable travel document, in particular a passport, identity card or visa, or a company card, credit card, driver's license, credential or the like
- sensitive data is stored in the integrated electronic circuit of the document, such as biometric data that can be accessed externally by a reader only after a cryptographic protocol based on the private key stored in the document has been processed.
- FIG. 1 shows a block diagram of a first embodiment of a cryptographic system according to the invention
- FIG. 2 shows a flowchart of a first embodiment of a method according to the invention
- FIG. 3 shows a block diagram of a further embodiment of a cryptographic system according to the invention
- FIG. 4 shows a flowchart of a further embodiment of a method according to the invention.
- FIG. 1 shows a production system for the production of document blanks.
- the production system consists of a high-security environment 100, which may be designed in particular as a so-called trust center, and a production environment 101, which may be subject to less stringent security requirements than the high-security environment 100.
- a computer system 102 with at least one processor 104 for executing program instructions 106 and 108.
- the program instructions 108 serve to instantiate a given data structure with input data 110.
- the data structure may be a standardized data structure, such as a logical data structure as specified by the ICAO.
- the program instructions 108 serve to generate control data 112 for a personalization terminal 114.
- the control data 112 includes executable instructions for the personalization terminal 114 as well as the actual personalization data.
- the control data 112 are generated, for example, in the form of a so-called script by the program instructions 108.
- the input data 110 is received, for example, from a government server via a network 116, preferably via a secure network connection, and fed to the computer system 102.
- the input data 110 includes, for example, a number of N input data sets for ordering a corresponding number of N documents.
- the cryptographic unit 118 includes a so-called key generator 120 for generating asymmetric key pairs, each consisting of a public key and a corresponding private key. Further, the cryptographic unit 118 includes a component 122 for generating a digital signature using a private key of the operator of the high security environment 100, such as Heilbuchisme GmbH.
- the personalization terminal 114 has a buffer 124 for storing the control data 112 until they are ready for execution by the processor 127.
- the buffer memory 124 functions according to the first-in-first-out (FIFO) principle.
- the operating system 134 is designed so that unauthorized modification or removal of the application 136 is not possible and access to the personalization data 140 is only possible via the application 136. This ensures that the protection of the personalization data 140 implemented, for example, by the application 136 can not be bypassed or broken by an unauthorized party.
- the application 136 may be embodied, for example, as a so-called applet, in particular as a Java applet.
- a Java virtual machine can be provided.
- the document 132 in principle be constructed in accordance with DE 10 2005 025 806 and / or DE 10 2006 027 253.
- the production environment 101 For loading the personalization terminal 114 with document blanks 132, the production environment 101 includes a conveyor 144 for transporting the document blanks 132 one by one to the personalization terminal 114, for example.
- the document blank 132 currently located at or in the personalization terminal 114 is personalized by establishing a communication link between the interfaces 126 and 128 and transmitting the personalization data 140 and the private key 142.
- the personalization data 140 Because of the receipt of the personalization data 140, they are written to the electronic memory 138 by the application 136. In each case, an access condition for this personalization data 140 is determined. The same applies to the private key 142, for which the access condition "never" is defined, so that in principle no external access to the private key is possible.
- the computer system 102 Upon receiving an input data set with the input data 110, the computer system 102 generates a request 146 for a key pair, which request 146 is directed to the cryptographic unit 118.
- the cryptographic unit 118 then generates with the aid of the key generator 120 such a key pair 148 and transfers this key pair to the computer system 102.
- This single control record may then be provided in the form of control data 112 from the computer system 102 to the personalization terminal 114 via a communication link or by data carrier.
- the computer system 102 it is also possible for the computer system 102 to first generate a larger number of control data records, for example for all of the N input data records, before they are transferred in their entirety as control data 112 to the personalization terminal 114.
- step 212 the computer system instantiates a given data structure using the input record i and the public key of the key pair i.
- step 214 the computer system requests a signature of this data structure so that the cryptographic component generates such a signature in step 216 and passes it on to the computer system in step 218.
- the transmission of the control records from the computer system to the personalization terminal occurs at such a rate that the buffer memory of the personalization terminal is never quite empty to prevent a slowing of the production process.
- FIG. 3 shows a block diagram of a further embodiment of a production system according to the invention.
- the cryptographic unit 118 according to the embodiment of FIG. 3 includes a secret symmetric key 154 also stored in the integrated electronic circuit 130, such as an integral part of the operating system 134.
- the resulting key pair which is transferred to the computer system in step 208, thus contains the public key in plain text and the private key only in encrypted form.
- the subsequent steps 210 to 230 are carried out as in the embodiment of Figure 2, with the difference that the encrypted private key is processed in plain text instead of the private key.
- step 231 the encrypted private key is decrypted by the integrated electronic circuit, to then store the personalization data of the instantiated data structure and the private key in the subsequent step 232.
- the communication between the document blank and the personalization terminal can be effected by a secure messaging method, in particular using a MAC.
Landscapes
- Business, Economics & Management (AREA)
- Engineering & Computer Science (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Accounting & Taxation (AREA)
- Strategic Management (AREA)
- General Business, Economics & Management (AREA)
- Theoretical Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Microelectronics & Electronic Packaging (AREA)
- Finance (AREA)
- Computer Security & Cryptography (AREA)
- Storage Device Security (AREA)
Abstract
Description
Claims
Priority Applications (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN200780034522.1A CN101517958B (zh) | 2006-09-18 | 2007-09-04 | 证件的个性化方法、密码系统、个性化系统和证件 |
EP07803214.1A EP2070250B1 (de) | 2006-09-18 | 2007-09-04 | Verfahren zur personalisierung von dokumenten, kryptographisches system, personalisierungssystem und dokument |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
DE102006044322.5 | 2006-09-18 | ||
DE102006044322A DE102006044322A1 (de) | 2006-09-18 | 2006-09-18 | Verfahren zur Personalisierung von Dokumenten, kryptographisches System, Personalisierungssystem und Dokument |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2008034719A1 true WO2008034719A1 (de) | 2008-03-27 |
Family
ID=38973645
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/EP2007/059250 WO2008034719A1 (de) | 2006-09-18 | 2007-09-04 | Verfahren zur personalisierung von dokumenten, kryptographisches system, personalisierungssystem und dokument |
Country Status (5)
Country | Link |
---|---|
EP (1) | EP2070250B1 (de) |
CN (1) | CN101517958B (de) |
DE (1) | DE102006044322A1 (de) |
RU (1) | RU2417533C2 (de) |
WO (1) | WO2008034719A1 (de) |
Families Citing this family (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
DE102010004425B3 (de) | 2010-01-13 | 2011-07-07 | Arbeiter, Peter, 33161 | Vorrichtung zum Befördern flacher Gegenstände |
US9994054B2 (en) * | 2014-08-19 | 2018-06-12 | Entrust, Inc. | Generating an identity document with personalization data and unique machine data |
Citations (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2000069113A1 (en) | 1999-05-07 | 2000-11-16 | Telefonaktiebolaget Lm Ericsson | Secure distribution and protection of encryption key information |
WO2001059720A2 (en) | 2000-02-08 | 2001-08-16 | Nbs Technologies | Method and system providing in-line pre-production data preparation and personalization solutions for smart cards |
US6367011B1 (en) | 1997-10-14 | 2002-04-02 | Visa International Service Association | Personalization of smart cards |
DE20100158U1 (de) * | 2001-01-05 | 2002-05-08 | Bundesdruckerei GmbH, 10969 Berlin | Identifikations- und Sicherheitskarte aus laminierten und/oder gespritzten Kunststoffen |
WO2002045336A1 (fr) | 2000-11-28 | 2002-06-06 | Nagravision Sa | Certification des transactions |
DE102004008841A1 (de) * | 2003-03-12 | 2004-09-23 | Bundesdruckerei Gmbh | Verfahren zur Herstellung einer Buchdeckeneinlage und eines buchartigen Wertdokuments sowie eine Buchdeckeneinlage und ein buchartiges Wertdokument |
DE102005025806A1 (de) | 2005-06-02 | 2006-12-07 | Bundesdruckerei Gmbh | Verfahren zum Zugriff von einer Datenstation auf ein elektronisches Gerät |
DE102006027253A1 (de) | 2006-06-09 | 2007-12-20 | Bundesdruckerei Gmbh | Lesegerät für ein Dokument, Verfahren zum Lesen eines Datenobjekts und Computerprogrammprodukt |
-
2006
- 2006-09-18 DE DE102006044322A patent/DE102006044322A1/de not_active Withdrawn
-
2007
- 2007-09-04 RU RU2009114721/09A patent/RU2417533C2/ru active
- 2007-09-04 EP EP07803214.1A patent/EP2070250B1/de active Active
- 2007-09-04 WO PCT/EP2007/059250 patent/WO2008034719A1/de active Application Filing
- 2007-09-04 CN CN200780034522.1A patent/CN101517958B/zh active Active
Patent Citations (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6367011B1 (en) | 1997-10-14 | 2002-04-02 | Visa International Service Association | Personalization of smart cards |
WO2000069113A1 (en) | 1999-05-07 | 2000-11-16 | Telefonaktiebolaget Lm Ericsson | Secure distribution and protection of encryption key information |
WO2001059720A2 (en) | 2000-02-08 | 2001-08-16 | Nbs Technologies | Method and system providing in-line pre-production data preparation and personalization solutions for smart cards |
WO2002045336A1 (fr) | 2000-11-28 | 2002-06-06 | Nagravision Sa | Certification des transactions |
DE20100158U1 (de) * | 2001-01-05 | 2002-05-08 | Bundesdruckerei GmbH, 10969 Berlin | Identifikations- und Sicherheitskarte aus laminierten und/oder gespritzten Kunststoffen |
DE102004008841A1 (de) * | 2003-03-12 | 2004-09-23 | Bundesdruckerei Gmbh | Verfahren zur Herstellung einer Buchdeckeneinlage und eines buchartigen Wertdokuments sowie eine Buchdeckeneinlage und ein buchartiges Wertdokument |
DE102005025806A1 (de) | 2005-06-02 | 2006-12-07 | Bundesdruckerei Gmbh | Verfahren zum Zugriff von einer Datenstation auf ein elektronisches Gerät |
DE102006027253A1 (de) | 2006-06-09 | 2007-12-20 | Bundesdruckerei Gmbh | Lesegerät für ein Dokument, Verfahren zum Lesen eines Datenobjekts und Computerprogrammprodukt |
Non-Patent Citations (6)
Title |
---|
"SmartMX platform features", PHILIPS ELECTRONICS N.V.: SHORT FORM SPECIFICATION 9397 750 XXXXX, no. Rev1.0, 24 March 2004 (2004-03-24), XP002469706, Retrieved from the Internet <URL:http://www.nxp.com/acrobat_download/other/identification/095710.pdf> [retrieved on 20080214] * |
"SmartMX platform features", PHILIPS ELECTRONICS N.V.: SHORT FORMED SPECIFICATION 9397, REV.1.0, 24 March 2004 (2004-03-24) |
BUNDESAMT FÜR SICHERHEIT IN DER INFORMATIONSTECHNIK: "Digitale Sicherheitsmerkmale im elektronischen Reisepass", 2005, pages 1 - 4, XP002469267, Retrieved from the Internet <URL:http://www.bsi.de/fachthem/epass/Sicherheitsmerkmale.pdf> [retrieved on 20080214] * |
D. KÜGLER: "Risiko Reisepass?", C'T - MAGAZIN FÜR COMPUTERTECHNIK, 2005, pages 84 - 89 |
D. KÜGLER: "Risiko Reisepass?", C'T - MAGAZIN FÜR COMPUTERTECHNIK, no. 5, 2005, pages 84 - 89, XP002469157 * |
SOPPERA A ET AL: "Wireless identification - privacy and security", BT TECHNOLOGY JOURNAL, KLUWER ACADEMIC PUBLISHERS, DO, vol. 23, no. 4, 1 October 2005 (2005-10-01), pages 54 - 64, XP019218859, ISSN: 1573-1995 * |
Also Published As
Publication number | Publication date |
---|---|
EP2070250B1 (de) | 2017-08-30 |
EP2070250A1 (de) | 2009-06-17 |
DE102006044322A1 (de) | 2008-03-27 |
RU2417533C2 (ru) | 2011-04-27 |
RU2009114721A (ru) | 2010-10-27 |
CN101517958A (zh) | 2009-08-26 |
CN101517958B (zh) | 2014-05-07 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
EP2041729B1 (de) | Lesegerät für ein dokument, verfahren zum lesen eines datenobjekts und computerprogrammprodukt | |
EP1891607B1 (de) | Verfahren zum zugriff von einer datenstation auf ein elektronisches gerät | |
EP1616291B1 (de) | Kontaktloser datenträger | |
EP2052370B1 (de) | Lesegerät für ein dokument, verfahren zum lesen eines datenobjekts und computerprogrammprodukt | |
DE102006031422A1 (de) | Wert- oder Sicherheitsdokument mit einer Anzeigevorrichtung | |
EP2274702A1 (de) | Verfahren zur authentifizierung eines rfid-tags | |
EP2203901B1 (de) | Dokument mit einer anzeigevorrichtung | |
EP2070250B1 (de) | Verfahren zur personalisierung von dokumenten, kryptographisches system, personalisierungssystem und dokument | |
EP2752785B1 (de) | Verfahren zur Personalisierung eines Secure Elements (SE) und Computersystem | |
EP2562669B1 (de) | Verfahren zur Durchführung eines Schreibzugriffs, Computerprogrammprodukt, Computersystem und Chipkarte | |
EP2126857B1 (de) | Dokument, lesegerät für ein dokument, verfahren zur zugriffskontrolle und computerprogrammprodukt | |
EP2893483B1 (de) | Verfahren zur personalisierung eines secure elements (se) und computersystem | |
EP2774074B1 (de) | Dokument, verfahren zur authentifizierung eines benutzers, insbesondere zur freischaltung einer chipkartenfunktion, und computersystem | |
EP3671506B1 (de) | Chipkarte, computersystem, verfahren zur aktivierung einer chipkarte und verfahren zur personalisierung einer chipkarte | |
DE102011079441A1 (de) | Verfahren zum Schutz eines Chipkarten-Terminals gegen unberechtigte Benutzung | |
EP2226790A2 (de) | Dokument mit einer integrierten Anzeigevorrichtung |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
WWE | Wipo information: entry into national phase |
Ref document number: 200780034522.1 Country of ref document: CN |
|
121 | Ep: the epo has been informed by wipo that ep was designated in this application |
Ref document number: 07803214 Country of ref document: EP Kind code of ref document: A1 |
|
REEP | Request for entry into the european phase |
Ref document number: 2007803214 Country of ref document: EP |
|
WWE | Wipo information: entry into national phase |
Ref document number: 2007803214 Country of ref document: EP |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
ENP | Entry into the national phase |
Ref document number: 2009114721 Country of ref document: RU Kind code of ref document: A |