Transcript Document
Update on European Citizen Card: Part 4 Kristina Unverricht Consumer Council of DIN, Germany Chairperson of ANEC Information Society Working Group October 2007 ANEC - General • Established in 1995 as a non-profit making international association with a secretariat based in Brussels • On the initiative of the European Commission and all consumer organisations in EU and EFTA countries Members & Experts • A European wide network of more than 200 consumer experts (volunteers) • Areas of priority: Child Safety, Design for All, Domestic Appliances, Environment, Information Society, Services, Traffic Safety European Citizen Card • CEN/TS 15480-1 (04/07): Physical, Electrical and Transport Protocol Characteristics • CEN/TS 15480-2 (04/07): Logical data structures and Card services • Working Draft CEN/TS 15480-3: European Citizen Card Interoperability using an application interface European Citizen Card Part 4 • Scope: Recommendations for European Citizen Card issuance, operation and use • Suggested by ANEC as a follow-up to parts 1 and 2 • First outcome of part 1 and 2: further explanation by application examples is needed on card issuance, operation and use Structure of ECC-4 • Section 1: General recommendations on card issuance and operational procedures • Section 2: Recommendations with regard to the end user • Section 3: Profiles for the ECC General recommendations on card issuance and operational procedures • Recommendations on ECC lifecycle • Process map • Reference to work of Smart Card Charter, CEN Workshop eAuthentication and ICAO specifications Recommendations with regard to the end-user • Jurisdictional Issues • Data Protection Principles • Accessibility Principles • Inclusive Design • Early consideration of the needs of disabled citizen • Testing • Training of citizen and staff • Alternative Method Recommendations with regard to the end-user • Usability • Location of user interface and Signs • Ease of use • Assistance to use • Reference to work of CEN TC 224 WG6 User Interface, Smart Card Charter and CEN Workshop eAuthentication (eURI) Profiles for the ECC • A profile is a recommended set of technical characteristics of ECC-2 • Conditional or mandatory technical features • Profile template • Common structure to facilitate profile application • Profile registration Profiles for the ECC 2 • Profile 1: eID Application with mandatory ICAO functionality and conditional digital signature functionality • Profile 2: eSIGN Application with conditional digital signature functionality Global Profiles for the ECC • Global Profile 1: eURI Application • Global Profile 2: card requirements to access/offer services in an ISO/IEC 24727 framework • Global Profiles are horizontal profiles that can coexist with every other ECC profile Future tasks • Examples for card issuance and operational procedures needed • Include more profiles to care for different settings/situations • Include eURI global profile • Finalize discussions on security mechanisms e.g. PACE (Password Authenticated Connection Establishment) protocol Thank you! ANEC B-1040 Bruxelles phone: +32-2-7432470 e-mail: [email protected] internet: www.anec.org Kristina Unverricht Consumer Council of DIN D-10772 Berlin phone: +49-30-2601-2460 e-mail: [email protected] internet: www.verbraucherrat.din.de