"multipurpose smart id card with pki dr. unho choi unhcr national smart idcredit card – pos -...
Post on 29-Mar-2015
277 Views
Preview:
TRANSCRIPT
"Multipurpose Smart ID Card with PKI“
Dr. Unho Choi UNHCR
National Smart ID Credit card – POS - ATM
Smart Card Logon
Bio Digital Signature with Smart Card + e-ID + Credit Card
PKI – DEVELOPING COUNTRY
Panama
Vietnam
Philippines
Egypt
Kenya
Indonesia
completed Proceeding Started
Equator
Cameroon
Brunei
Morocco
Costa Rica
Iran
Mongolia
Rwanda Jordan
Iraq
Nigeria, Kenya ……
ICAO, e-UNLP ……
US, France, Sweden, Germany, Turkey, Norway ……
NIGERIA - CHIP DESIGN
Sample
The credit card provider said it was rolling out a pilot scheme that will initially target 13m people. The project ties in with the Nigerian government’s plans to introduce identity cards and reduce Nigerians’ reliance on cash transactions.
Ajay Banga, MasterCard’s chief executive, said recently that the governments in Nigeria and Kenya were talking about moving towards becoming “cashless” societies.
NIGERIA = NID + CREDIT CARD
Sample
EIDMIGRATION TO MULTIAPP: EID, EGOV, ESERVICE
eID eGov eServices
China Portugal
Hong Kong
MalaysiaFinland
Sweden
Belgium
Examples
Indo-nesia
Three policies are established.
EID - MULTIAPPMulti App
1 App
eService
3 App´s 5 App´s 10 App´s
eServiceeHealtheTicketing
eServiceeDLeGateeBankingeLibrary
eIDeServiceeHealtheTicketingATMeDLePurseeGatesTravel document
ExampleFinlandFINID
ItalyCNS
Hong KongHKSAR
MalaysiaMyKad
EID
Idea Definition
Framework Specification
Test/StudyPhase
Roll OutPhase
Government projects needs typically 3 to 5 years to start roll outs.
Current StatusNational eID/eGov
(Examples)
• Argentina• Bolivia• Botswana • Hungary• Indonesia, 2G• Japan, 2G• Kenya• Poland• Romania• Rwanda • South Korea• Sri Lanka• …
• Albania• Algeria• Austria 1G• Bahrain• Belgium• China• Ecuador• Estonia, 2G• Finland, 2G• Germany, 1G• Hong Kong• Indonesia, 1G• Ireland• Italy, 2G• Japan, 1G• Macao• Malaysia, 2G• Morocco• Netherlands, 2G• Oman• Portugal• Saudi Arabia• Serbia• Spain• Sweden• U.A.E, 2G• …
• Armenia• Austria 2G• Brazil• Chile• Cyprus• Egypt• France• India• Kirgizstan• Nigeria• Norway• RSA• Russia• Tanzania• Turkey• Venezuela• …
• Bangladesh• Bosnia• Germany, 2G• Greece• Italy, 3G• Mexico• Taiwan• Vietnam• …
Japan, 1G (JUKI)
SMART CARD - BIO SIGNATURE ?: Concept is simple * You are you *- Continue use of “match on card” in existing and new industry specifications. - “match on card” is more generally accepted recognizable in the biometric industry. - ISO/IEC 19795-7:2010 — Biometric performance testing and reporting : Testing of on-card biometric comparison algorithms - ISO/IEC 24787-1:2010 used on-card comparison and will use on-card biometric comparison - NIST SP 800-76-2 uses On-card comparison Fingerprint on-card comparison On-card biometric comparison- Revisions to the PIV Biometrics Specifications FIPS 201 Updates at Sep 2012
On Card Biometric Comparison (OCC) authentication : The cardholder’s fingerprint biometric representation is captured by the reader and transferred to the card, where it is matched against the cardholder’s stored biometrics.
LOGICAL ACCES TO COMPUTER
Sample
MASTERCARD IS PARTNERING WITH THE UN WFP
- WORLD FOOD PROGRAMME - WFP And MasterCard
Launch Partnership For "Digital Food"
SMART ?
FRANCE
Money at Your Fingertips: Supermarket Tests Biometric Payments By Scanning Fingerprints Instead of Credit Cards
Sample
END OF CHIP AND PIN? SHOPPERS TEST PAYMENT BY FINGERPRINT
Sample
KENYA 2013 – FINGERPRINT ATM
Banks go for fingerprint identification to curb ATM fraud
The Kenya Bankers Association in turn launched a cost-shared Sh2.5 billion plan to migrate all banks to secure ATMs and plastic cards by September 30.
Nearly 11 million cards will be affected by the move, but some banks having already issued the new cards.
Sample
BYOD SECURITY ? CLOUD COMPUTING ?
IPHONE 5 ADDED TO US GOVERNMENT SERVICESall Federal employees to utilize their PIV cards when accessing Government resources.
Sample
SAMSUNG AND LG ON THE RUN TO INTEGRATE INFERIOR FINGERPRINT TECHNOLOGY INTO THEIR SOMEWHAT SMARTPHONES ?
Sample
NFCRFID
Smart Payment with Smart (Card + Phone) for Smart TV
Built in VPN PKI
1. Fingerprint / Iris 2. PKI ( OTP ) Matching On Card
One Stop Smart shop
Smart card + POS + ATM
SMART CARDS WITH AN INTEGRATED FINGERPRINT SENSOR
NFCRFID
1. Fingerprint / Iris 2. PKI ( OTP ) Matching On Card
Embedded Fingerprint Sensing Device for ID Cards
The finger sensing device may be embedded into
standard laminated identification (ID) cards. A
finger sensing device that can image the user's finger
through standard laminations used in smartcard and RF-ID card fabrication may now be economically built into those
cards, using standard low cost card assembly
processes. By Patently Apple 2013
Biometric Security
Pay + Report + Transfer
VIRTUAL MONEY ?
INTERNET BANK? - U.S. SENATE HEARING
Sample
HASH ? ADDRESS ?
Bitcoin payment Addresses
- 27-34 alphanumeric characters
- Bitcoin functions using public-key cryptography, in which a pair of cryptographic keys, one public and one private, are generated.[24] In the case of Bitcoin, the public key functions as an address to which payments can be sent, and the private key acts as a safeguard; it must be presented when making a payment from an address. Because anyone with a private key can spend all of the bitcoins associated with its corresponding public key, securing and protecting is important to prevent theft, which has occurred on numerous occasions.[22] The practical day-to-day security of Bitcoin wallets remains an on-going concern.
DIGITAL BANK ?
The financial services industry is becoming what I call the BIT industry (banking, information and technology), where information, through technology, is transformed into knowledge. In this new world, banks should transform into “digital” banks, or rather into new forms of information services company.
A new financial ecosystem is being created. In two decades, we will go from 20,000 “analogue” banks today worldwide to no more than several dozen “digital” banks.
APP COMMERCE - INTERNET COMMERCE ?
E - Wallet
Bank AccountBank Account
USIM
Card Account
Bank AccountBank Account
Sample
1. Public-key infrastructure (PKI) is a system for the creation, storage, and distribution of digital certificates for encryption, authentication and digital signature etc. (ITU standard)
2. e.g.: maximum supports 9 PKI keys (physically separated 9 different block for each )
3. e.g.: it’s compatible with the commercial Smartcard Framework (WSF) and supports applications such as Domain logon, VPN, email, secure Web access, and wireless LAN authentication.
National ID
PKI+
Data
DriverLicens
e
PKI+
Data
Medical
PKI+
Data
e-Votin
g
PKI+
Data
Pension
PKI+
Data
Passport
ICAO
PKI+
Data
Tax
PKI+
Data
Physical
Access
PKI
PCLogo
n
PKI
Smart Phone
PKI
MUTUAL RECOGNITION ?
PKI – BIO DIGITAL SIGNATURE SOLVE ? Each e-ID + Credit card like Nigeria case Bit Coin + Internet Bank for Smart Wallet Smart Phone App commerce Smart card + Smart Phone + Smart TV Smart Car + Smart Phone like Infotainment
issue at CES 2014 Smart Phone with Smart Appliance Automatic Container Tracking for Import/Export
by WCO, US TWIC etc. Smart Card for TAXI / Rent car Safety Smart Home Commerce like Internet Commerce
etc.
NEXT PKI FOR BIO DIGITAL SIGNATURE ? Global Root CA for National eID?
UN Root CA ?
Smart Phone / Smart Card / Smart Car ?
ITU : PKI + Biometrics + Cloud etc.
ITU + ISO Standard body ?
Q&A
“ Take chain of Mountain view ”
Unho Choi Ph.D., CGEIT, CRISC, ISO 27001, CISSP, PMP choi@unhcr.org
top related