1、7 CEN EN*26-2 95 3YQ4567 0322902 bLT U 1;:; 1996 BRITISH STANDARD Identification card systems - Wlecommunicat ions integrated circuit(s) cards and terminals Part 2. Security framework The European Standard EN 726-2 : 1995 has the status of a British Standard ICs 33.120.00; 35.240.60 NO COPYING WITHO
2、UT BSI PERMISSION EXCEPT AS PERMITTED BY COPYRIGHT LAW - CEN ENx72b-2 95 3YOY589 0122903 55b = Amd. No. Date BS EN 726-2 : 1996 Tkxt affected This British Standard, having been prepared under the direction of the information Systems Technology Assembly, was published under the authority of the Stand
3、ards Board and comes into effect on 15 April 1996 O BSI 1996 The following BSI references relate to the work on this standard: Committee reference IST/ 17 Draft for comment 93/662140 DC ISBN O 680 25451 8 Committees responsible for this British Standard The preparation of this British Standard was e
4、ntrusted to %chnical Committee IST/l7, Identification cards and related devices, upon which the foilowing bodies were represented: Aiiec Associates APACS - Barclaycard APACS - Barclays Bank APACS - Girobank APACS - Midland Bank APACS - Nat West Bank Association for Payment Clearing Services (APACS)
5、Ei“ Laboratories Ceilnet Consumer Poiicy Committee of BSI Electricity Association GEC Card lkchnology HMSO News Datacom Ltd. Rochford Thompson Equipment Sheil UK Thorn Transit Systems International Vodafone Ltd. Westinghouse Cubic Ltd. APACS - LJoydS Bank CEN EN*726-2 95 3404589 0122904 492 BS EN 72
6、6-2 : 1996 Contents Page Committees responsible Inside front cover National foreword 11 Foreword 2 Text of EN 726-2 3 O BSI 1996 1 CEN ENx726-2 95 M 34Rq589 0322905 329 M BS EN 726-2 : 1996 National foreword This Part of BS EN 726 has been prepared by Rchnical Committee IST/17 and is the English lan
7、guage version of EN 726, Ident$fication card systems - lecmmunications integrated circuit(s) cards and ternninals - Part 2 : 1995 Security framework, published by the European Committee for Standardization (CEN). This British Standard is the English language version of EN 726-2 : 1995 and implements
8、 it as the UK national standard. This British Standard is published under the direction of the Information Systems Rchnology Standards Assembly whose Technical Committee IST/17 has the responsibility to: - aid enquirers to understand the text; - present to the responsible European committee any enqu
9、iries on interpretation, or proposals for change, and keep UK interests informed; - monitor related international and European developments and promulgate them in the UK. NOTE. International and European Standards, as well as overseas standards, are available from Customer Services, BSI, 389 Chiswic
10、k High Road, London W4 4AL. Cross-references Publication referred to EN 726-1 EN 726-3 : 1994 ISO7498-2 : 1989 ISO/IEC 9798-2 ISO/IEC 9798-3 IS0 10202-1 : 1991 Corresponding British Standard BS EN 726 Identification card systems - Z?lecmrnunication.s integrated circuit(s) cards and ternnin.Uk Part 1
11、 : 1995 System ovmiew Part 3 : 1996 Application independent card requirements BS IS0 7498 Infmation processing systems - Open Systems Interconnection - Basic wfmme model Part 2 : 1989 Security architecture BS ISOIIEC 9798 Iqjlmnation technology - Security techniques - Entity authentication mechanism
12、s Part 2 : 1994 Mechanisms using symmetric emiphemzent algorithms Part 3 : 1993 Entity authentication using a public key algorithm BS EN 30202- 1 Financial transaction curds - Security architecture of finandal transaction systems using integrated circuit cards part 1 : 1995 Card 35.240.60 Descriptor
13、s: Telecommunications, telecommunication terminals, IC cards, specifications, utilization, safety English version Identification card systems - %lecommunications integrated circuit(s) cards and terminals - Part 2: Security frame work Systmes de cartes didentification - Cartes Identifikationskartensy
14、steme - Chipkarten circuit intgr et terminaux pour les und Endgerte fr tlcommunications - Blekommunikationszwecke - Partie 2: Cadre gnral pour la scurit Bil 2: Sicherheitsgrundgerst This European Standard was approved by CEN on 1995-10-18. CEN members are bound to comply with the CENKENELEC Internal
15、 Regulations which stipulate the conditions for giving this European Standard the status of a national standard without any alteration. Up-to-date lists and bibliographical references concerning such national standards may be obtained on application to the Central Secretariat or to any CEN member. T
16、his European Standard exists in three official versions (English, French, German). A version in any other language made by translation under the responsibility of a CEN member into its own language and notified to the Central Secretariat has the same status as the official versions. CEN members are
17、the national standards bodies of Austria, Belgium, Denmark, Finland, France, Germany, Greece, Iceland, Ireland, Italy, Luxembourg, Netherlands, Norway, Portugal, Spain, Sweden, Switzerland and United Kingdom. CEN European Committee for Standardization Comit Europen de Normalisation Europisches Komit
18、ee fr Normung Central Secretariat: rue de Stassart 36. B-1050 Brussels O 1995 All rights of reproduction and communication in any form and by any means reserved in all countries to CEN and its members Ref. No. EN 726-2: 1995 E CEN ENr726-2 95 3404589 0322907 LTL H Page 2 EN 726-2 : 1995 Foreword Thi
19、s European Standard has been prepared by the lchnical Committee CEN/lV 224, Machine readable cards, related device interfaces and operations, of which the secretariat is held by AFNOR. This European Standard shall be given the status of a national standard, either by publication of an indentical tex
20、t or by endorsement, at the latest by May 1996, and conflicting national standards shall be withdrawn at the latest by May 1996. According to the CENKENELEC Internal Regulations, the following countries are bound to implement this European Standard : Austria, Belgium, Denmark, Finland, France, Germa
21、ny, Greece, Iceland, Italy, Luxembourg, Netherlands, Norway, Portugal, Spain, Sweden, Switzerland and the United Kingdom. This European Standard consists of the following parts, under the general title Identification card systems - lh?ectnnmunications integrated circuit(s) cards and temzinak : - Par
22、t 1 : system overv2ew; - Part 2 : Security framework; - Part 3 : Application independent card requirements; - Part 4 : Application indepmdent card related terminal requirements; - Part 6 : Wmnnmunication features; - Part 7 : Security module. - Part 5 : Pam Contents Foreword 1 2 3 3.1 3.2 4 6 6.1 5.2
23、 5.2.1 6.2.2 6.2.3 6.2.4 6.2.6 6.3 6.3.1 6.3.2 6.3.3 6.3.4 Scope Normative references Definitions and abbreviations Definitions Abbreviations Reference model General security approach Methodology Identifying security requirements Manufacturing of IC and IC card Card preparation phase (phase 2) Appli
24、cation preparation (phase 3) Usage phase (phase 4) Termination of use (phase 5) General security services Access control service Authentication service Confidentiality service Integrity service (phase 1) p%e 2 3 3 3 3 4 4 4 4 4 5 5 5 5 6 6 6 6 6 6 6.3.5 5.3.6 6.4 6 6.1 6.1.1 6.1.2 6.1.3 6.1.4 6.1.5
25、6.2 6.3 6.3.1 6.3.2 6.3.3 6.3.4 6.3.5 6.3.6 6.3.7 7 7.1 7.2 Annex A A. 1 A.2 A.2.1 A.2.2 A.2.3 A.2.4 A.2.5 A.3 A.3.1 A.3.2 A.3.3 A.3.4 A.3.6 A.3.6 A.3.7 Non-repudiation service Audit service General security mechanisms Application independent security Application independent security requirements Ma
26、nufacturing of IC and IC card Card preparation phase (phase 2) Application preparation phase Usage phase (phase 4) Termination of use (phase 5) Application independent security services Application independent security mechanisms Access control information PIN mechanism Internal authentication Exter
27、nal authentication Protected mode Stamped mode Load key file Application dependent security Methodology Flowchart (phase 1) (phase 3) (normative) Usage of TESA-7 algorithm in telecommunication applications in accordance with EN 726 Introduction General specification of external interfaces for TESA-7
28、 modes: Key Establishment Function Authentication Function Mac mode Inverse Key Establishment Function Key diversification mode Usage of TESA-7 algorithm INTERNAL AUTHENTICATION / VERIFY CRYPTOGRAM EXTERNAL AUTHENTICATION / COMPUTE CRYPTOGRAM Protected mode / COMPUTE MAC (SM) or DECREASE (SM) Stampe
29、d mode / VERIFY MAC or INCREASE (SM) or UPDATE (SM) COMPUTE LOAD KEY LOAD KEY FILE Diversify keyset Page 6 6 7 7 7 7 8 9 10 11 12 12 13 14 14 15 15 15 15 16 16 17 18 18 18 18 19 20 21 21 22 22 24 25 27 29 30 32 O BSI 1996 CEN ENx72b-2 95 3404587 0122908 038 1 Scope This Part of EN 726 specifies a se
30、curity framework for telecommunication use of IC cards. This specification does not describe any implementation details. It describes: - a general security approach resulting in a methodology, different card phases for identifying security requirements and a description of security services which ca
31、n be offered by the IC card; - the implementation of the general security approach to the application independent IC card, resulting in a list of application independent security requirements, a selection of needed security services and a description of a common set of application independent securi
32、ty mechanisms ; - the implementation of the general security approach to applications using IC cards, resulting in a methodology which is used to design the set of security mechanisms for specific applications. 2 Normative references This European Standard incorporates by dated or undated reference,
33、 provisions from other publications. These normative references are cited at the appropriate places in the text and the publications listed hereafter. For dated references, subsequent amendments to, or revisions of any of these publications apply to this Standard only when incorporated in it by amen
34、dments or revision. For undated references the latest edition of the publication referred to applies. EN 726-1 EN 726-3: 1994 prEN 726-7: 1994 EN 27498: 1989 IS0 7498-2: 1989 Identification card systems - Telecommunications integrated circuit(s) cards and terminals - Part 1 : System overview Identif
35、ication card systems - Elecommunications integrated circuit(s) cards and terminals - Part 3 : Application independent card requirements Identification card systems - Telecommunications integrated circuit(s) cards and terminals - part 7 : Security module Information Processing Systems - Open Systems
36、Interconnection, Basic Reference Model Information Processing Systems - Open Systems Interconnection - Basic Reference Model - Part 2 : Security Architecture ISO/IEC 9798-2 IS0 9798-3 IS0 10202-1 1991 Page 3 EN 726-2 : 1995 3 Definitions and abbreviations 3.1 Definitions For the purposes of this sta
37、ndard, the following definitions apply: 3.1.1 access control information: Information describing for each action which can be performed on a file in the card, the conditions to fulfil. 3.1.2 action: An action performed by an external application on a card means a command followed by a response. Ther
38、e are two kinds of actions: normal actions on files of the card (e.g. Read, Write, Select, Execute, Invalidate, Rehabilitate .), management actions on files of the card (e.g. Create, Delete, Extend.). 3.1.3 application: An application consists of a set of security mechanisms, files, data, protocols
39、(excluding transmission protocols) which are located and used in the IC card and outside of the IC card (external application). 3.1.4 application privilege information: External application capabilities used to perform the rights of the external application. 3.1.5 application provider: The entity wh
40、ich is responsible for the application after its allocation. One application provider may have several applications in one card. The files allocated in the card corresponding to one application are called a card-application. There may exist several applications on a given card from the same applicat
41、ion provider. 3.1.6 card: A multi-application card can be considered as a set of files, some of them shared by the different application provider and/or card issuer, others owned exclusively by application provider or issuer. Files can be read, written or executed. The files located in the card corr
42、esponding to one application provider are called card application. Information technology - Security techniques - Entity authentication - Part 2 : Mechanisms using symmetric enciphennent algorithms Information technology - Security techniques - Entity authentication mechanisms - Part 3 : Entity auth
43、entication using a public key algorithm Financial transaction cards - Security architecture of financial transaction systems using integrated circuit cards - Part 1 : Card life cycle O BSI 1996 CEN ENxi26-2 95 m 3404589 0322909 Ti4 m Page 4 EN 726-2 : 1995 3.1.7 card application: The card related pa
44、rt of one application. 3.1.8 card issuer: The card issuer is responsible for the common data of the card, the allocation of memory space for the applications and supplies application provider with the necessary tools for loading the required application. 3.1.9 card manuacturer: The card manufacturer
45、 is the entity which fabricates the card and performs the IC embedding. 3.1.10 external application: Entity, located in the external world, which communicates with the related card application during the session. 3.1.11 external world: All application related entities outside the card. 3.1.12 kernel
46、: Part of the card or external world, which contains application independent datdcode, including the MF (in case of a card kernel) and the operating system. 3.1.13 operating system: That which is required to manage the logical resources of a system, including process scheduling and file management.
47、3.1.14 protocol control information (PCI): Information exchange between application entities using transmission protocols to coordinate the joint operation. 3.1.15 tampering: An unauthorized modification which alters the proper functioning of the card in a manner which degrades the security it provi
48、des; 3.1.16 trusted authority: Independent authority in charge of imposing and monitoring the system from the security point of view. 3.2 Abbreviations For the purpose of this standard, the following abbreviations apply: AC Access Conditions AC1 Access Control Information API Application Privilege I
49、nformation CW Card Holder Verification EF Elementary File EW External World IC Integrated Circuit MF Master File PIN Personal Identification Number 4 Reference model This reference model has been included here because it is used as a model in the following clauses. The following entities are used in figure 1 to describe the reference model: - the card, which consists of a kernel and one or several card applications (card application 1, card application 2, card application 3 . ) ; - the external world, which may be either an on-line or an off-line system (see EN 72
