Method for authentication, RF chip document, RF chip reader and computer program products

摘要

An authentication method for trusted communication between a first party (A) and a second party (B) is intended to be efficient and secure.;For this purpose, provision is made to combine password-based authentication and certificate-based authentication. For certificate-based authentication, the first party (A) has a static key pair consisting of a private static key and a public static key and a certificate for the public static key issued by a certification body (C). The certification body (C) is assigned a public key which is known by the second party (B). During the certificate-based authentication, the party A calculates a transformation between its own ephemeral key pair from the password-based authentication and its own static key pair from the certificate-based authentication so as to obtain a transformation parameter for carrying out the transformation. The practice of reusing the party's own ephemeral key pair from the password-based authentication in the certificate-based authentication reduces the overall calculation and communication complexity, on the one hand, and links the two protocols, on the other hand, thus ensuring that both protocols are executed by the same party. This increases the security while simultaneously reducing the complexity.;The novel method is suitable for authenticating electronic passports.

主权项

1. An authentication method for trusted communication between a chip document and a card reader by combining password-based authentication and certificate-based authentication in such a manner that, for the certificate-based authentication, the chip document has a static key pair consisting of a private static key and a public static key and a certificate for the public static key issued by a certification body and the certification body is assigned a public key which is known by the card reader, the chip document including a first processor and a first memory, the card reader including a second processor and a second memory, the method comprising:
a password-based authentication process that includes the chip document and the card reader performing the following steps: a) each generating an ephemeral key pair consisting of a private ephemeral key and a public ephemeral key, b) each interchanging the public ephemeral key and validating the latter using a common password stored in the first memory and the second memory, and c) each generating and validating a session key, on the basis of which a secure communication channel is established; and a certificate-based authentication process including the following steps: d) the chip document calculating, to obtain a transformation parameter, a transformation between its own ephemeral key pair from the password-based authentication process and the static key pair from the certificate-based authentication, e) the chip document transmitting, to the card reader via the secure communication channel, the transformation parameter and the certificate issued by the certification body f) the card reader applying the received transformation parameter to the public ephemeral key and/or the public static key associated with the chip document to obtain at least one transformed public key, the correctness of which is checked, and g) the card reader validating the certificate received from the chip document using the public key associated with the certification body.