PD CEN/TS 15480-3:2014
Current
The latest, up-to-date edition.
Identification card systems. European Citizen Card European Citizen Card Interoperability using an application interface
Hardcopy , PDF
English
30-04-2014
Foreword
1 Scope
2 Normative references
3 Terms and definitions
4 Symbols and abbreviations
5 ECC fitting in ISO/IEC 24727 model
6 Card Discovery Mechanisms
7 Authentication protocols
8 IFD-API Web Service Binding
9 Card-Info Structure - Introduction
10 XML-based Service Access Layer Interface
11 Federative Framework-wise Authenticate API
Annex A (informative) - Interface Device Layer
Architecture and Management
Annex B (informative) - IFD-API - C Language
Binding
Annex C (informative) - SAL-API Post-issuance
personalisation requests
Annex D (informative) - Additional features
versus ISO/IEC 24727 (all parts)
Annex E (informative) - C-Language Binding for
ExecuteSAL function
Annex F (informative) - Java-Language Binding
for ExecuteSAL function
Annex G (informative) - Application Discovery
Profile: card requirements to access/offer
services in ISO/IEC 24727 framework
Bibliography
Gives an Interoperability Model, which will enable an e-Service compliant with technical requirements, to interoperate with different implementations of the European Citizen Card.
| Committee |
IST/17
|
| DevelopmentNote |
Supersedes DD CEN/TS 15480-3. (04/2014)
|
| DocumentType |
Standard
|
| Pages |
96
|
| PublisherName |
British Standards Institution
|
| Status |
Current
|
| Supersedes | |
| UnderRevision |
This Technical Specification provides an Interoperability Model, which will enable an eService compliant with technical requirements, to interoperate with different implementations of the European Citizen Card.
This Interoperability model will be developed as follows:
starting from the ECC Part 2, Part 3 of the ECC series provides additional technical specifications for a middleware architecture based on ISO/IEC 24727 (all parts); this middleware will provide an API to an eService as per ISO/IEC 24727-3.
a set of additional API provides the middleware stack with means to facilitate ECC services.
a standard mechanism for the validation of the e-ID credential is stored in the ECC and retrieved by the eService.
In order to support the ECC services over an ISO/IEC 24727 middelware configuration, this part of the standard specifies the following:
a set of mandatory requests to be supported by the middleware implementation based on ISO/IEC 24727 (all parts).
data set content for interoperability to be personalised in the ECC.
three middleware architecture solutions: one based on a stack of combined ISO/IEC 24727 configurations and the other based on Web Service configuration whereas the third one is relying on a SAL Lite component.
an Application DiscoveryProfile featuring the guidelines for card-applications to fit in ISO/IEC 24727 framework.
| Standards | Relationship |
| CEN/TS 15480-3:2014 | Identical |
| ISO/IEC 24727-6:2010 | Identification cards Integrated circuit card programming interfaces Part 6: Registration authority procedures for the authentication protocols for interoperability |
| ISO/IEC 19794-2:2011 | Information technology — Biometric data interchange formats — Part 2: Finger minutiae data |
| ISO/IEC 9798-3:1998 | Information technology Security techniques Entity authentication Part 3: Mechanisms using digital signature techniques |
| ISO/IEC 24727-1:2014 | Identification cards Integrated circuit card programming interfaces Part 1: Architecture |
| ISO/IEC 24727-2:2008 | Identification cards Integrated circuit card programming interfaces Part 2: Generic card interface |
| CEN/TS 15480-1:2012 | Identification card systems - European Citizen Card - Part 1: Physical, electrical and transport protocol characteristics |
| EN ISO 3166-1:2014 | Codes for the representation of names of countries and their subdivisions - Part 1: Country codes (ISO 3166-1:2013) |
| ISO/IEC 20060:2010 | Information technology Open Terminal Architecture (OTA) Virtual machine |
| CEN/TS 15480-5:2013 | Identification card systems - European Citizen Card - Part 5: General Introduction |
| CEN/TS 15480-2:2012 | Identification card systems - European Citizen Card - Part 2: Logical data structures and security services |
| ISO/IEC 7816-4:2013 | Identification cards Integrated circuit cards Part 4: Organization, security and commands for interchange |
| ISO/IEC 24727-4:2008 | Identification cards Integrated circuit card programming interfaces Part 4: Application programming interface (API) administration |
| ISO/IEC 9796-2:2010 | Information technology Security techniques Digital signature schemes giving message recovery Part 2: Integer factorization based mechanisms |
| ISO/IEC 15946-2:2002 | Information technology Security techniques Cryptographic techniques based on elliptic curves Part 2: Digital signatures |
| ISO/IEC 10118-3:2004 | Information technology Security techniques Hash-functions Part 3: Dedicated hash-functions |
| ISO/IEC 7812-1:2017 | Identification cards — Identification of issuers — Part 1: Numbering system |
| EN 1332-4:2007 | Identification card systems - Man-machine interface - Part 4: Coding of user requirements for people with special needs |
| ISO 3166-1:2013 | Codes for the representation of names of countries and their subdivisions Part 1: Country codes |
| ISO/IEC 24727-5:2011 | Identification cards Integrated circuit card programming interfaces Part 5: Testing procedures |
| CEN/TS 15480-4:2012 | Identification card systems - European Citizen Card - Part 4: Recommendations for European Citizen Card issuance, operation and use |
| ANSI X9.63 : 2011 | FINANCIAL SERVICES - PUBLIC KEY CRYPTOGRAPHY FOR THE FINANCIAL SERVICES INDUSTRY, KEY AGREEMENT AND KEY TRANSPORT USING ELLIPTIC CURVE CRYPTOGRAPHY |
| ISO/IEC 7816-15:2016 | Identification cards Integrated circuit cards Part 15: Cryptographic information application |
| ISO/IEC 24727-3:2008 | Identification cards Integrated circuit card programming interfaces Part 3: Application interface |
| EN 14890-1:2008 | Application Interface for smart cards used as Secure Signature Creation Devices - Part 1: Basic services |
Important note : Users cannot be edited or removed once added to your Multi user PDF.Access your standards online with a subscription
Features
-
Simple online access to standards, technical information and regulations.
-
Critical updates of standards and customisable alerts and notifications.
-
Multi-user online standards collection: secure, flexible and cost effective.