| 主权项 |
1. A method for machine checking of personal data stored electronically in a passport booklet, comprising:
upon presentation of the passport booklet at a reader device, the passport booklet obscuring the personal data to obtain obscured personal data, and transferring the obscured personal data to the reader device using a key that is negotiated between the passport booklet and the reader device,
wherein the transfer of the obscured personal data to the reader device comprises a plurality of responses from the passport booklet, andwherein, for each response in the plurality of responses, the passport booklet forms a first message authentication code MAC, and transmits the first message authentication code MAC in the response to the reader device, the reader device performing a plausibility check of the obscured personal data arriving at the reader device, the reader device checking the obscuring in the received obscured personal data for correctness,
wherein, for each response in the plurality of responses, the reader device generates a second message authentication code MAC*, and compares the generated second message authentication code MAC* with the first message authentication code MAC transferred in the response, andwherein the reader device performs the plausibility check prior to the checking of the obscuring for correctness, if the correctness of the obscuring is confirmed, removing the obscuring from the obscured personal data, thus obtaining recovered personal data, checking the recovered personal data for authenticity, and, upon successful checking of the recovered personal data for authenticity, issuing a positive signal, wherein the checking of the obscuring for correctness and the removal of the obscuring and the authenticity check occur only after all personal data to be read from the passport booklet are completely transferred to the reader device. |
