1、BRITISH STANDARDBS EN 15320:2007Identification card systems Surface transport applications Interoperable Public Transport Applications FrameworkThe European Standard EN 15320:2007 has the status of a British StandardICS 35.240.15g49g50g3g38g50g51g60g44g49g42g3g58g44g55g43g50g56g55g3g37g54g44g3g51g40
2、g53g48g44g54g54g44g50g49g3g40g59g38g40g51g55g3g36g54g3g51g40g53g48g44g55g55g40g39g3g37g60g3g38g50g51g60g53g44g42g43g55g3g47g36g58BS EN 15320:2007This British Standard was published under the authority of the Standards Policy and Strategy Committee on 31 January 2008 BSI 2008ISBN 978 0 580 55709 5Nat
3、ional forewordThis British Standard is the UK implementation of EN 15320:2007. The UK participation in its preparation was entrusted to Technical Committee IST/17, Cards and personal identification.A list of organizations represented on this committee can be obtained on request to its secretary.This
4、 publication does not purport to include all the necessary provisions of a contract. Users are responsible for its correct application.Compliance with a British Standard cannot confer immunity from legal obligations.Amendments/corrigenda issued since publicationDate CommentsEUROPEAN STANDARDNORME EU
5、ROPENNEEUROPISCHE NORMEN 15320December 2007ICS 35.240.15English VersionIdentification card systems - Surface transport applications -Interoperable Public Transport Applications - FrameworkSystmes de cartes didentification - Applications pour letransport terrestre - Applications de transport publicin
6、teroprablesIdentifikationskartensysteme - LandgebundeneTransportanwendungen - Interoperable Anwendungen frden ffentlichen Verkehr - RahmenwerkThis European Standard was approved by CEN on 8 September 2007.CEN members are bound to comply with the CEN/CENELEC Internal Regulations which stipulate the c
7、onditions for giving this EuropeanStandard the status of a national standard without any alteration. Up-to-date lists and bibliographical references concerning such nationalstandards may be obtained on application to the CEN Management Centre or to any CEN member.This European Standard exists in thr
8、ee official versions (English, French, German). A version in any other language made by translationunder the responsibility of a CEN member into its own language and notified to the CEN Management Centre has the same status as theofficial versions.CEN members are the national standards bodies of Aus
9、tria, Belgium, Bulgaria, Cyprus, Czech Republic, Denmark, Estonia, Finland,France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, Netherlands, Norway, Poland, Portugal,Romania, Slovakia, Slovenia, Spain, Sweden, Switzerland and United Kingdom.EUROPEAN COMMIT
10、TEE FOR STANDARDIZATIONCOMIT EUROPEN DE NORMALISATIONEUROPISCHES KOMITEE FR NORMUNGManagement Centre: rue de Stassart, 36 B-1050 Brussels 2007 CEN All rights of exploitation in any form and by any means reservedworldwide for CEN national Members.Ref. No. EN 15320:2007: EEN 15320:2007 (E) 2 Contents
11、Page Foreword6 Introduction .7 1 Scope 9 2 Normative references 10 3 Terms and definitions .10 4 Symbols and abbreviated terms 14 5 Basic structure of application components).15 6 Data groups 17 7 The abstract interface .24 8 Application security 33 9 Profiles40 Annex A (normative) Data group defini
12、tions 44 Annex B (normative) Identification and mapping of data groups 48 Annex C (normative) EN 1545 data elements enumerated for use in the application 72 Annex D (normative) ASN.1 Tag allocations.86 Annex E (informative) General requirements .95 Annex F (informative) Examples 103 Annex G (informa
13、tive) Accessing the Interoperable Public Transport Application .140 Annex H (normative) Relationship between legacy systems and the Interoperable Public Transport Application .143 Annex I (informative) Supporting Legacy Systems .146 Bibliography 149 EN 15320:2007 (E) 3 List of Figures Figure 1 Inter
14、operable Fare Management system8 Figure 2 Data element within a data object.15 Figure 3 Data structure16 Figure 4 Data group .16 Figure 5 Relationships between the data groups.17 Figure 6 Data group contents.22 Figure 7 Product data group with fixed and variable parts .22 Figure 8 The application en
15、vironment links the data groups together23 Figure 9 Relationships between the logical interfaces, the SSS and the card and terminal .24 Figure 10 Logical interface 1: the card data interface .26 Figure 11 Logical interface 2: the data group interface.27 Figure 12 A representative application command
16、 flow .32 Figure 13 Application states.33 Figure 14 Data group Control Data Structure .39 Figure 15 A Control Data Structure entry39 Figure 16 Profile ID structure .41 Figure 17 Profile derivation.43 Figure E.1 The Interopeable Public Transport Application .96 Figure E.2 Products within the Interope
17、rable Public Transport Application.96 Figure E.3 Interoperable Public Transport Application product usage .97 Figure G.1 Card and application activation.140 Figure H.1 Application wrapper144 Figure H.2 Inter-environment operation 144 Figure H.3 Interoperable Public Transport Application stub 145 Fig
18、ure H.4 Hierarchy of access 145 Figure I.1 Interoperable Public Transport Compliant application.148 EN 15320:2007 (E) 4 List of Tables Table 1 Card data interface functions. 26 Table 2 Data group interface functions 27 Table 3 Application activities and use cases .29 Table 4 Access mode byte specifi
19、cation 40 Table A.1 Data Group Identification 44 Table A.2 Data structures within data groups 45 Table B.1 Application environment specific mandatory data structures 48 Table B.2 Event log specific mandatory data structures 50 Table B.3 General mandatory data structures . 51 Table B.4 Type A optiona
20、l data structures . 55 Table B.5 Type L data structures. 64 Table B.6 Cyclic event log data structure. 70 Table C.1 Application data elements fully specified in EN 1545 72 Table C.2 Application data elements not fully specified in EN 1545 . 76 Table C.3 Application data elements not included in EN 1
21、545. 83 Table F.1 Example of a label 103 Table F.2 Example of an instance identifier . 103 Table F.3 Example of a seal . 103 Table F.4 Concession; creation of holder ID and entitlement 104 Table F.5 Concession: creation of validity . 105 Table F.6 Concession: use of concession . 106 Table F.7 Carnet
22、: customer purchases the carnet 108 Table F.8 Carnet: a journey is made 109 Table F.9 Carnet: a further journey is made. 110 Table F.10 Carnet: top-up of rides. 111 Table F.11 Check in/ Check out: Stored Travel Rights availability 112 EN 15320:2007 (E) 5 Table F.12 Check in / Check out: Check In113
23、Table F.13 Check in/ Check out: Check out 114 Table F.14 Check in/ Check out: Stored Travel Rights usage.115 Table F.15 Check in/ Check out: the journey continues 115 Table F.16 Check in/ Check out: further Stored Travel Rights usage 117 Table F.17 Be in/ be out: entitlement to ride .118 Table F.18
24、Be in / be out: after boarding .118 Table F.19 Be in / be out: the journey continues119 Table F.20 Streifenkarte: purchasing for cash120 Table F.21 Streifenkarte: boarding the vehicle.121 Table F.22 Streifenkarte: further journeys 122 Table F.23 Rail travel: reservation .124 Table F.24 Rail travel:
25、a journey is made 125 Table F.25 RET: a ticket is purchased .127 Table F.26 RET: Check in129 Table F.27 RET: Check out130 Table F.28 RET: Check in next leg .132 Table F.29 RET: Check out next leg.133 Table F.30 RET: Check in return journey 134 Table F.31 RET: Check out return journey136 Table F.32 Z
26、onal fare scheme: a ticket is purchased.138 Table F.33 Zonal fare scheme: the ticket is used .139 Table G.1 Responses of known cards types.141 EN 15320:2007 (E) 6 Foreword This document (EN 15320:2007) has been prepared by Technical Committee CEN/TC 224 “Personal identification, electronic signature
27、 and cards and their related systems and operations“, the secretariat of which is held by AFNOR. This European Standard shall be given the status of a national standard, either by publication of an identical text or by endorsement, at the latest by June 2008, and conflicting national standards shall
28、 be withdrawn at the latest by June 2008. This document builds on the following standards to define an Interoperable Public Transport Application: EN 1545-1:2005, Identification card systems Surface transport applications Part 1: Elementary data types, general code lists and general data elements; E
29、N 1545-2:2005, Identification card systems Surface transport applications Part 2: Transport and travel payment related data elements and code lists. This document describes a foundation for a technology neutral environment for an Interoperable Public Transport Application within the confines of the
30、definition of identification card systems. Nevertheless, interoperability cannot be maintained if different interface technologies are used by Machine Readable Cards within such a scheme. Consequently this document specifies the adherence to ISO/IEC 14443 Parts 1 to 3 as a necessity to ensure intero
31、perability. Amendments and enhancements to this European Standard will be made from time to time and published on the CEN website. To the best of their knowledge the authors of this European Standard do not believe it infringes any commercial copyright, intellectual property rights or patents. Howev
32、er, CEN cannot guarantee this and shall not be responsible for any such infringements or claims, which will be dealt with according to CEN rules and regulations. According to the CEN/CENELEC Internal Regulations, the national standards organizations of the following countries are bound to implement
33、this European Standard: Austria, Belgium, Bulgaria, Cyprus, Czech Republic, Denmark, Estonia, Finland, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, Netherlands, Norway, Poland, Portugal, Romania, Slovakia, Slovenia, Spain, Sweden, Switzerland and U
34、nited Kingdom. EN 15320:2007 (E) 7 Introduction The Interoperable Public Transport Application defines the foundation and basic structure of a transport application primarily for ticketing for implementation on a Machine Readable Card that makes use of the Data Elements defined in EN 1545 and which
35、may be made interoperable subject to commercial agreements between the parties involved and an exchange of specific implementation details. This has the effect that different operators will be able to read, interpret and handle Machine Readable Cards containing the application produced by others. Mo
36、reover, again subject to commercial agreements between the parties, it should be possible for a transport operator to write its ticket products to Machine Readable Cards issued by others that contain the application. Annex H discusses how legacy systems can interface with the application such that s
37、ome level of interoperability may be achieved through a migration path to it. This European Standard describes the basis of a public transport application resident on a Machine Readable Card as presented at the interface to a suitable terminal. In many cases where the card contains a processor, this
38、 interface will be between the card and the accepting device. In other cases, additional logic within the terminal application will be included in order to provide the necessary support. This is accomplished by mandating a logical abstract interface. The actual format of the data held on the card is
39、 not described by this European Standard. This format may be derived from a mapping of the data described in this European Standard to the card using an ASN.1 encoding rule. This European Standard forms one part of a series relating to public transport which define the interoperable fare management
40、system as shown in Figure 1. EN 15320:2007 (E) 8 Figure 1 Interoperable Fare Management system This European Standard describes the basis of an environment which aims to achieve the following objectives: to provide a basis for offering machine readable interoperable tickets across the public transpo
41、rt network in Europe; to satisfy the demand for securing a seamless journey for the passenger allowing them travel with all participating operators, possibly in different networks and countries, using a single card while in the context of not inhibiting commercial competition. This European Standard
42、 describes those components of the application necessary to support an interoperable environment including: accessing the Interoperable Public Transport Application; data structure and presentation; sizing and enumeration of data; data access methodology; security and access considerations; dealing
43、with legacy systems. EN 15320:2007 (E) 9 1 Scope This European Standard specifies sets of data presented at an interface, the card sub-system interface, in a structured form as well as the rules for dealing with that data to enable products such as tickets to be written to a Machine Readable Card in
44、 a manner which will minimise the amount of data to be held on the card while allowing an authorised party to be able to access and interpret the data easily and efficiently. This is the basis for practical interoperability and as such, this European Standard forms the foundation of interoperability
45、 across systems subject to commercial agreements and interchange of details concerning how this European Standard has been physically interpreted. As part of this capability, the design of the data environment allows for the addition of new sets of data to represent new or modified transport product
46、s without compromising the ability of existing terminals to continue to handle all sets of data held on the card, whether or not they are to be interpreted and possibly used. Associated with the data is the set of processes which applies to the data within the application. The inclusion of process i
47、n the standard means that similar data will be treated in a similar way by all external services and terminals leading to true interoperability that can be achieved and maintained through this European Standard. In addition, acknowledgement that the application specifies both data and process also i
48、mplies that it needs to consider security both at the level of access rights to data and the security of the overall environment in which it operates. The security related clauses in this European Standard define the minimum requirement of functionality necessary such that interoperability may be su
49、pported while protecting information stored within the application from unauthorised access and accidental or malicious damage. This European Standard defines an abstract card to card accepting device application interface which may be implemented, entirely at the card edge, or may include some logic in the card accepting device dependent upon the capability of the card. The view of security is si
