1、BSI Standards Publication PD ISO/IEC TR 19446:2015 Differences between the driving licences based on the ISO/IEC 18013 series and the European Union specificationsPD ISO/IEC TR 19446:2015 PUBLISHED DOCUMENT National foreword This Published Document is the UK implementation of ISO/IEC TR 19446:2015.
2、The UK participation in its preparation was entrusted to Technical Committee IST/17, Cards and personal identification. A list of organizations represented on this committee can be obtained on request to its secretary. This publication does not purport to include all the necessary provisions of a co
3、ntract. Users are responsible for its correct application. The British Standards Institution 2015. Published by BSI Standards Limited 2015 ISBN 978 0 580 84399 0 ICS 35.240.15 Compliance with a British Standard cannot confer immunity from legal obligations. This Published Document was published unde
4、r the authority of the Standards Policy and Strategy Committee on 31 August 2015. Amendments issued since publication Date Text affectedPD ISO/IEC TR 19446:2015 Differences between the driving licences based on the ISO/IEC 18013 series and the European Union specifications Diffrences entre les permi
5、s de conduire bass sur la srie ISO/IEC 18013 et les spcifications de lUnion Europenne TECHNICAL REPORT ISO/IEC TR 19446 First edition 2015-08-15 Reference number ISO/IEC TR 19446:2015(E) ISO/IEC 2015 PD ISO/IEC TR 19446:2015ii ISO/IEC 2015 All rights reserved COPYRIGHT PROTECTED DOCUMENT ISO/IEC 201
6、5, Published in Switzerland All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized otherwise in any form or by any means, electronic or mechanical, including photocopying, or posting on the internet or an intranet, without prior written permission.
7、 Permission can be requested from either ISO at the address below or ISOs member body in the country of the requester. ISO copyright office Ch. de Blandonnet 8 CP 401 CH-1214 Vernier, Geneva, Switzerland Tel. +41 22 749 01 11 Fax +41 22 749 09 47 copyrightiso.org www.iso.org ISO/IEC TR 19446:2015(E)
8、PD ISO/IEC TR 19446:2015ISO/IEC TR 19446:2015(E)Foreword iv Introduction v 1 Scope . 1 2 Normative references 1 3 T erms, definitions and abbr e viat ed t erms 1 4 File structure 1 5 Data groups 2 5.1 General . 2 5.2 EF.DG1 Data Group 1 2 5.2.1 Type approval number Tag = 5F 01 3 5.2.2 Constructed da
9、ta object of demographic data elements Tag = 5F 02 3 5.2.3 Categories of vehicles/restrictions/conditions Tag = 7F63 4 5.3 EF.DG5 Data Group 5 4 5.4 EF.DG6 Data Group 6 4 6 European Union model driving licence . 4 7 A uthenticity v erification 4 8 Access to data group . 4 9 Complementary tests metho
10、ds for European driving licence . 5 9.1 Scope 5 9.2 Test case specification: LDS in SE on SIC 7 9.2.1 Introduction . 7 9.2.2 General test requirements . 7 9.2.3 Test Layer SE_LDS Logical Data Structure Tests . 8 9.3 Test Case Specification: Commands for SE on SIC .23 9.3.1 Introduction 23 9.3.2 Gene
11、ral test requirements 23 9.3.3 Test Layer SE_ISO/IEC 7816 Security and Command Tests 23 Bibliography .25 ISO/IEC 2015 All rights reserved iii Contents PagePD ISO/IEC TR 19446:2015ISO/IEC TR 19446:2015(E) Foreword ISO (the International Organization for Standardization) is a worldwide federation of n
12、ational standards bodies (ISO member bodies). The work of preparing International Standards is normally carried out through ISO technical committees. Each member body interested in a subject for which a technical committee has been established has the right to be represented on that committee. Inter
13、national organizations, governmental and non-governmental, in liaison with ISO, also take part in the work. ISO collaborates closely with the International Electrotechnical Commission (IEC) on all matters of electrotechnical standardization. The procedures used to develop this document and those int
14、ended for its further maintenance are described in the ISO/IEC Directives, Part 1. In particular the different approval criteria needed for the different types of ISO documents should be noted. This document was drafted in accordance with the editorial rules of the ISO/IEC Directives, Part 2 (see ww
15、w.iso.org/directives). Attention is drawn to the possibility that some of the elements of this document may be the subject of patent rights. ISO shall not be held responsible for identifying any or all such patent rights. Details of any patent rights identified during the development of the document
16、 will be in the Introduction and/or on the ISO list of patent declarations received (see www.iso.org/patents). Any trade name used in this document is information given for the convenience of users and does not constitute an endorsement. For an explanation on the meaning of ISO specific terms and ex
17、pressions related to conformity assessment, as well as information about ISOs adherence to the WTO principles in the Technical Barriers to Trade (TBT) see the following URL: Foreword - Supplementary information The committee responsible for this document is ISO/IEC JTC 1 Information technology, SC 1
18、7 Cards and personal identification.iv ISO/IEC 2015 All rights reservedPD ISO/IEC TR 19446:2015ISO/IEC TR 19446:2015(E) Introduction The Commission Regulation EU 383/2012 of 4 May 2012 defines the general requirements for the European driving licences which include a microchip. Based on standard enc
19、oding for ICCs with contacts and for PICCs as defined in the ISO/IEC 18013- series, the commission has introduced some modifications. The objective of this Technical Report is to report the differences with the ISO/IEC 18013- series including test methods. ISO/IEC 2015 All rights reserved vPD ISO/IE
20、C TR 19446:2015PD ISO/IEC TR 19446:2015Differences between the driving licences based on the ISO/ IE C 18013 series and the E ur opean Union specifications 1 Scope This Technical Report is applicable to driving licences which include a microchip and claim compliance to the EU Regulation on driving l
21、icences. This Technical Report proposes: details that are missing for the implementation of Commission Regulation (EU) No 383/2012 Annex II item 1 10; the subset of the ISO/IEC 18013-4:2011 test methods that are applicable to Commission Regulation (EU) No 383/2012 Annex II item 12; further test meth
22、ods that are applicable to Commission Regulation (EU) No 383/2012 Annex II item 12; these test methods are due to EU driving licence requirements that are incompatible with ISO/IEC 18013-2:2008. The following Commission Regulation (EU) No 383/2012 Annex II requirements are out of the scope of this T
23、echnical Report: item 11 extended access restriction EAC; item 13: requirements on the security certificate; item 14 functional certificate - smart card testing according to the ISO/IEC 10373- series. 2 Normative references The following documents, in whole or in part, are normatively referenced in
24、this document and are indispensable for its application. For dated references, only the edition cited applies. For undated references, the latest edition of the referenced document (including any amendments) applies. Not applicable. 3 T erms, d efinitions and abbr e viat ed t erms ASN.1 Abstract Syn
25、tax Notation One EDL European Driving Licence RT Room temperature Test case Description of test purpose, unique test case identifier, test inputs, test execution conditions, test steps, and the results required to pass the test Test case specification Collection of test cases, and general test data
26、applicable to the test cases 4 File structure The file structure defined in ISO/IEC 18013-2:2008, C.4 is applicable except for the differences described below. TECHNICAL REPORT ISO/IEC TR 19446:2015(E) ISO/IEC 2015 All rights reserved 1PD ISO/IEC TR 19446:2015ISO/IEC TR 19446:2015(E) The European dr
27、iving licence application is defined as one DF. The DF is identified as legislated in EU Commission Regulation EU 383/2012 of 4 May 2012: A0 00 00 04 56 45 44 4C 2D 30 31 Mandatory and optional data groups differ from ISO/IEC 18013 and are presented in Table 1. T a b l e 1 A s s i g n m e n t o f f
28、i l e i d e n t i f i e r s a n d D a t a Gr o u p t a g s E l e m e n t a r y f i l e Name Short EF ident i f ier EFID Tag M/O a EF.COM Common data 1E 001E 60 M EF.DG1 Mandatory data 01 0001 61 M EF.DG2 Optional licence holder details 02 0002 6B O EF.DG3 Optional issuing authority details 03 0003 6
29、C O EF.DG4 Optional portrait image 04 0004 65 O EF.DG5 Mandatory signature/usual mark image 05 0005 67 M EF.DG6 Mandatory facial biometric template 06 0006 75 M EF.DG7 Optional finger biometric template 07 0007 63 O EF.DG8 Optional iris biometric template 08 0008 76 O EF.DG11 Optional domestic appli
30、cation data 0B 000B 6D O EF.SOD Document Security Object 1D 001D 77 M EF.DG13 Active authentication 0D 000D 6F O aM/O mean Mandatory/Optional. NOTE The presence or absence of EF.DG9 and EF.DG10 files is out of the scope of this Technical Report. 5 Data groups 5.1 General EF.DG1 data is structured as
31、 specified in 5.2. Data contained in other DGs are stored according to ISO/IEC 18013-2, Annex C. NOTE The tags definition in this clause is not ISO/IEC 7816-6 compliant. Tags values are dictated by EU Regulation and hence do not comply with basic encoding rules of ASN.1”. 5.2 EF.DG1 Data Group 1 Thi
32、s EF contains the Type approval number, the mandatory demographic data elements and vehicle categories/restrictions/conditions as described in Table 2. The elements contained in EF.DG1 have a fixed or variable length. In ISO/IEC 18013-2, variable lengths are limited to maximum values. In the EU driv
33、ing licence, variable lengths are not limited. Table 2 DG1 content Tag Length Value 5F 01 x Type approval number. Refer to Table 3 5F 02 x Constructed data object of demographic data elements. Refer to Table 4 7F 63 x Constructed data object of vehicle categories/ restric- tions/conditions. Refer to
34、 ISO/IEC 18013-2, Table C.62 ISO/IEC 2015 All rights reservedPD ISO/IEC TR 19446:2015ISO/IEC TR 19446:2015(E) 5.2.1 Type approval number Tag = 5F 01 The type approval number is defined by the issuing country and doesnt have a maximum fixed length. Table 3 Type approval number Tag Name Length Mandato
35、ry / Optional Format Example 5F 01 Type approval number V M L ANS a 123456789ABCDE, L= 14 aL depends on issuing country. 5.2.2 Constructed data object of demographic data elements Tag = 5F 02 Table 4 defines the fields contained in the constructed data object of demographic data. Each variable is un
36、der Tag / Length / value format. Table 4 Constructed data object of demographic data elements Tag Name Length Mandatory / Optional Format Example 5F 03 Issuing country (per ISO 3166-1) 3 bytes M 3A FRA 5F 04 Family name V M AS Dupont 5F 05 Given anames V M AS Laurent 5F 06 Date of birth (ddm- myyyy)
37、 d 4 bytes M 8N 29031970 5F 07 Place of birth b V M ANS Saint Denis 5F 08 Nationality (per ISO 3166-1) 3 bytes O 3A FRA 5F 09 Gender c 1 byte O 1A M(M = Male, F=Female, U=Undefined) 5F 0A Date of issue (ddmmyyyy) d 4 bytes M 8N 14052008 5F 0B Date of expiry (ddmmyyyy) d 4 bytes M 8N 14052018 5F 0C I
38、ssuing authority V M ANS Prfecture de police 5F 0D Administrative number V O ANS 123456789B 5F 0E Licence number V M AN 123456789012345 5F 0F Normal place of resi- dence e V O ANS 12, ALLEE DE CRAPANNE 13300 SALON DE PROVENCE, FRANCE aNo titles and/or suffixes are included. bPlace of birth is also c
39、ontained in EF.DG2 but under a different format based on delimiters. cGender is also contained in EF.DG2 but as defined in ISO/IEC 5218 (Male = 1, Female = 2). dWARNING: ISO/IEC 18013-2, Annex C uses a different date format: yyyymmdd. eNormal place of residence is also contained in EF.DG2 but under
40、a different format based on delimiters. NOTE The coding rules of date code are legislated in EU Commission Regulation EU 383/2012 of 4 May 2012 and differ from ISO/IEC 18013. ISO/IEC 2015 All rights reserved 3PD ISO/IEC TR 19446:2015ISO/IEC TR 19446:2015(E) 5.2.3 Categories of vehicles/restrictions/
41、conditions Tag = 7F63 ISO/IEC 18013-2, C.6.2.2 is applicable using date format ddmmyyyy for date of issue and Date of expiry. Only the vehicle category codes specified in Article 4 of Directive 2006/126/EC is used. These EU vehicle categories differ from the ISO/IEC 18013 vehicle categories. Domesti
42、c vehicle categories have to be accommodated too in EF.DG11. 5.3 EF.DG5 Data Group 5 Only JPEG or JPEG2000 format is used. 5.4 EF.DG6 Data Group 6 Only JPEG or JPEG2000 format is used. 6 European Union model driving licence The European driving licence layout is defined in the COMMISSION DIRECTIVE 2
43、011/94/EU of 28 November 2011 amending Directive 2006/126/EC of the European Parliament and of the Council on driving licences. 7 A uthent icity v erifi cation All DGs stored in the EU driving licence application is protected with passive authentication as defined in ISO/IEC 18013-3:2009, 8.1 Passiv
44、e Authentication. Active Authentication mechanisms are allowed to be applied to ensure that the original microchip has not been replaced. 8 Access to data group The Basic Access Protection mechanism (BAP) is applied for all data in the EU driving licence application profile. It is mandatory to use t
45、he one-line SAI MRZ, as specified in ISO/IEC 18013-3:2009. The K docdocument key used to access the chip is generated from the one-line SAI MRZ, which can be entered either manually or using an Optical Character Recognition (OCR) reader. The BAP 1 configuration defined for a one-line MRZ is applied.
46、 The Extended Access Control (EAC) as defined in in ISO/IEC 18013-3:2009 is used to protect more sensitive data if necessary. The European driving licence profile doesnt allow EAP mechanism.4 ISO/IEC 2015 All rights reservedPD ISO/IEC TR 19446:2015ISO/IEC TR 19446:2015(E) 9 Complementary tests metho
47、ds for European driving licence 9.1 Scope This paragraph specifies the complementary test methods to ISO/IEC 18013-4 used for conformity testing the European Application profile and determining whether a driving licence can be considered to comply with the requirements of the European Regulation on
48、driving licence in complement to ISO/IEC 18013-4 for: machine-readable technologies EU regulation; and access control, authentication and integrity validation (ISO/IEC 18013-3). The test methods specified in this clause are based on EU specifications, ISO/IEC 18013-2 and ISO/IEC 18013-3 and underlyi
49、ng normative specifications. This Technical Report deals with test methods specific to EU and ISO-compliant driving licence (IDL) requirements. Test methods applicable to (smart) cards in general (e.g. those specified in the ISO/IEC 10373- series) are outside the scope of this Technical Report. Hence, this clause of the Technical Report concerns: EU