Abstract
The concept of the Austrian citizen card enables the generation of electronic signatures, provides mechanisms to establish confidential communication channels, and supports features for user authentication in public services. This document specifies a mechanism —based on the Austrian citizen card— and a trustworthy component —called security layer— to fulfil all requirements for authentication processes, suitable for electronic administrations. The additional trustworthy component (security-layer) forms the interface between diverse applications and the smart card (citizen card). But this layer also offers features which can be used very efficiently in conjunction with certificate-based user authentication. Depending on the used technology, three different levels (qualities) of user authentication can be realized. In the following, a short introduction is given to the concept of the Austrian citizen card followed by common descriptions of three mechanisms suitable for usage in the environment of public services.
The original version of this chapter was revised: The copyright line was incorrect. This has been corrected. The Erratum to this chapter is available at DOI: 10.1007/978-0-387-35612-9_23
Chapter PDF
References
Esposito: Browser Helper Object: “The Browser the Way You Want IT”, Microsoft Corporation, January 1999.
Certicom, “Elliptic Curve Cryptosystem for Smart cards”, Certicom White Paper, 05/1998.
ANSI X9.62, “Public Key Cryptography for the Financial Services Industry”: The Elliptic Curve Digital Signature Algorithm (ECDSA), 1999.
American National Standard Institute, “Public Key Cryptography for the Financial Services Industry: The Elliptic Curve Digital Signature Algorithm (ECDSA)”, ANSI X9. 62–1998, 1998.
Karlinger: “XML Electronic Signatures Application according to the international standard XML Signature Syntax and Processing”, CMS 2001 Darmstadt, Germany, 2001.
Lenstra: “Selecting Cryptographic Key Size”, The Journal of the International Association for Cryptology Research, Vol. 14 Number 4, 2001.
R. Rivest: “The MD5 Message-Digest Algorithm”, RFC1321, April 1992.
L. Daigle, D. van Gulik, R. Iannella, P. Faltstrom: “URN Namespace Definition Mechanisms”, RFC2611, June 1999.
Gettys, Mogul, Frystyk, Masinter, Leach, and Berners-Lee: “Hypertext Transfer Protocol HTTP/1.1”,RFC2616, June 1999.
Franks, Hallam-Baker, Hostetler, Lawrence, Leach, Luotonen, and Stewart: “Basic and Digest Access Authentication”, RFC2617, June 1999.
Reagle: “XML Signature Requirements”, RFC2807, July 2000.
Reagle, Eastlake, Solo: “XML Signature Syntax and processing”, RFC3075, March 2001.
IETF W3C: “XML-Signature Syntax and Processing”.
The European Parliament and the Council of the European Union: “DIRECTIVE 1999/93/EC OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL”, Official Journal of the European Communities, Article5, December 1999
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2002 IFIP International Federation for Information Processing
About this chapter
Cite this chapter
Hollosi, A., Payer, U., Posch, R. (2002). Automatic Authentication Based on the Austrian Citizen Card. In: Jerman-Blažič, B., Klobučar, T. (eds) Advanced Communications and Multimedia Security. IFIP — The International Federation for Information Processing, vol 100. Springer, Boston, MA. https://doi.org/10.1007/978-0-387-35612-9_18
Download citation
DOI: https://doi.org/10.1007/978-0-387-35612-9_18
Publisher Name: Springer, Boston, MA
Print ISBN: 978-1-4757-4405-7
Online ISBN: 978-0-387-35612-9
eBook Packages: Springer Book Archive