the digital tachograph - oasis pki · 2017. 2. 19. · 2 transport inspectorate ernst bovelander...
TRANSCRIPT
-
1
T ransport Inspectorate
The Digital Tachograph
-
2
T ransport Inspectorate
Ernst Bovelander
• Senior Security Consultant• 15 years of experience in smart cards and PKI• Projects for the government:
– Multi functional smart card for the Dutch MoD– The Dutch passport
• Projects for financial world:– Visa– MasterCard– ABN-Amro
• PKIgovernment• SmartVision
-
3
T ransport Inspectorate
The tachograph
Instrument for registration of driving and rest periods for trucks etc.
-
4
T ransport Inspectorate
The Digital Tachograph
• European Council Regulation 2135/98– Technical Specification: Annex 1B (290 pages !!)
• Instrument for registration of driving and rest periods for trucks etc.– Replacement of the current, analogue tachograph– Improved security– Improved enforcement
• Technical implementation based on:– Smart cards for data storage– PKI for digital signatures
-
5
T ransport Inspectorate
TARJETA DEL CONDUCTORFØRERKORT
FAHRERKARTEΚΑΡΤΑ Ο∆ΗΓΟΨ
DRIVER CARDCARTE DE CONDUCTEUR
CÁRTA TIOMÁNAÍCARTA DEL CONDUCENTE
BESTUURDERSKAARTCARTÃO DE CONDUTORKULJETTAJAKORTTILLA
FÖRARKORT
6.
NAME OF AUTHORITY AND ADDRESS
DRIVER CARD MEMBER STATE1. Bovelander2. Ernst3. 10/10/19614a. 05/06/2004 4b. 05-06/20094c. Inspectie Verkeer en Vervoer(4d.) EU36876/nl5a. 31153579075b. D6638756876
7.
(8.) Oceaanpad 19, NL-2614 XA Delft
NL
Please return to:
1. Surname 2. First name(s)3. Birth date4a. Date of start of validity of card4b. Administrative expiry date of card4c. Issuing authority(4d.) No for national administrative purposes5a. Driving license number 5b. Card number6. Photograph7. Signature (8.) Address
Digital Tachograph and Security
• Registration of driving and rest periods– Integrity (‘complete and accurate’)– Authenticity (‘personal’)– Availability
• Enforcement– Undisputable evidence (non-repudiation)– Efficient enforcement
-
6
T ransport Inspectorate
Digital tachograph: functional
Motion sensor Vehicle Unit Tachograph Card
Pulse generationClock
Vehicle identificationRecording tachograph data
Driver identificationRecording driver data
External Mediadownload
downloadDigital Tachograph
Print
-
7
T ransport Inspectorate
Processor SecurityComponents
Processor SecurityComponents
VUdata
Vehicle Unit
Tacho Card
Processor SecurityComponents
Motion Sensor
MSdata
Secure Messaging
Mutual Authentication
VU downloadTC download
TC download
Digital Signature(signature + hash)
TCdata
SecureCryptographic
Device
Pairing
Security Mechanisms
-
8
T ransport Inspectorate
Smartcards
Processor
Co-processor
Non-Volatile Memory (ROM)• Card Operating System• Tachograph application (optional)
Non-Volatile Memory (EEPROM)• driver identification data• card identification data• driving and rest data• cryptographic keys and certificates• application and application data
Security logic
I/O ports
NAME OF AUTHORITY AND ADDRESSPlease return to:
1. Surname 2. First name(s)3. Birth date4a. Date of start of validity of card4b. Administrative expiry date of card4c. Issuing authority(4d.) No for national administrative purposes5a. Driving license number 5b. Card number6. Photograph7. Signature (8.) Address
TARJETA DEL CONDUCTORFØRERKORT
FAHRERKARTEΚΑΡΤΑ Ο∆ΗΓΟΨ
DRIVER CARDCARTE DE CONDUCTEUR
CÁRTA TIOMÁNAÍCARTA DEL CONDUCENTE
BESTUURDERSKAARTCARTÃO DE CONDUTORKULJETTAJAKORTTILLA
FÖRARKORT
6.
DRIVER CARD MEMBER STATE1. Bovelander2. Ernst3. 10/10/19614a. 05/06/2004 4b. 05-06/20094c. Inspectie Verkeer en Vervoer(4d.) EU36876/nl5a. 31153579075b. D6638756876
7.
(8.) Oceaanpad 19, NL-2614 XA Delft
NL
-
9
T ransport Inspectorate
Number of cards to be issued
0
50000
100000
150000
200000
250000
2004 2005 2006 2007 2008 2009 2010 2011 2012 2013
jaar
aantal sm artcards
vervangingskaartenoverige kaartentw eede kaarten na vijf jaarinitiële bestuurderskaarten
-
10
T ransport Inspectorate
Card Issuing Process
WorkflowManagement
System
CardManagement
System
Card Personalisation
Member State Certification
Authority (MSCA)
Carddistribution
Card IssuerCHREOV
Personalisationdata
Public keyCard
Certificates
European Certification
Authority (ERCA)
Public keyMSCA
MS Certificate
Card Stock
-
11
T ransport Inspectorate
How it all might work…
WorkflowManagment
System
CardManagment
System
SmartCard Personalisation
Member State Certification
Authority (MSCA)
SmartCard Distributiom
nllux
nllux
nl
nl nl
nl
EuropeanCertification
Authority
Card Stock(nl + lux)
Name, address etc 185 days critrium
Tachonet Driving License Card Database
Certificate Database
ENFORCING
OCSP interface
mobile internet
WorkflowManagment
System
luxlux lux lux
Name, address 185 days criterium Tachonet Driving License
-
12
T ransport Inspectorate
Card Distribution
Personalisationdata
Personalisation
Key Generation
HardwareSecurityModule
NationaleCertification
Authority
CertificateContent Public key Card Certificate
MS CertificateEuropean Public Key
CardIssuer
Privatekey
Response file
PIN Generation
PIN letter
Personalistion bureau
Tachograph Card Personalisation
-
13
T ransport Inspectorate
Card Issuer
CertificateProcessing
Key StorageHardwareSecurityModule
Key Generation
Certificate Generation
Records of certified PKs
European Root CACard Personaliser
To NCA:• EQT.CHA• EQT.CHR• EQT.EOV
To NCA:• EQT.PKFrom NCA:• EQT.C• MS.C• EUR.PK
From NCA:• MS.CHR• MS.PK To NCA:• MS.C• EUR.PK
Member State Certification Authority
Member State Certification Authority
-
14
T ransport Inspectorate
Member State CA
• Separation of RA-tasks and CA-tasks• Key generation for cards at personaliser• Non-standard certificates• What is the business model of existing CA’s• Insourcing, outsourcing or what…?
– Buy a CA service– Buy a CA product
WFMS CMS Personalisation
MSCA
Distribution
Card Issuer
Root CA
-
15
T ransport Inspectorate
Organizational challenges
• European regulation, national implementation– Hierarchical PKI model – Harmonisation at member state level
• Taskforce PKIoverheid model– Building upon ‘existing’ card issuing infrastructure
• Very tight schedule– 12 months after publication: type approved cards– 21 months after publication: fully operational
• Complex project– Unique in size and nature– Interesting issues: legal implications, enforcement,
cooperation with other member states etc.
-
16
T ransport Inspectorate
Technical challenges
• Regulation based on non-standard security mechanisms– Non X.509 certificates
• Requirements in ‘Annex 1b’ are not always unambiguous or clearly formulated– IT S EC vs. CC
• And how about ‘new’ developments…?– GPS, GSM– Migration to standard certificate format
-
17
T ransport Inspectorate
PKIgovernment model
• Organizational structure follows the requirements of the PKIgovernment– Separation of roles– CSP requirements– Card issuing processes
• Technical implementation differs with respect to: – The certificate format– One certificate for all purposes
• And we all know: PKI is only for 20% a technology issue!
-
18
T ransport Inspectorate
Status and milestones
• EU Council Regulation– Publication: June 2002 (we hope!)– Type approval tachograph cards: 1 June 2003 – Fully operational: 1 April 2004
• Tendering– Workflow and card management– Personalisation– Member State Certification Authority– Distribution
• Card Issuing organization– Organizational structure in place 2003
-
19
T ransport Inspectorate
“The best way to escape from a problem is to solve it.”
Thank you for your attention!
For more information:
Ernst Bovelandere-mail: [email protected]
Phone: +31 (0)6 2954 5681