计算机应用与软件
計算機應用與軟件
계산궤응용여연건
COMPUTER APPLICATIONS AND SOFTWARE
2015年
4期
1-5,29
,共6页
电子护照%安全协议%认证%访问控制
電子護照%安全協議%認證%訪問控製
전자호조%안전협의%인증%방문공제
E-passport%Security protocol%Authentication%Access control
随着国际化的进程加速,电子护照替代传统护照已经成为国际发展的必然趋势。目前,国际民用航空组织(ICAO)和欧盟(EU)已经推出三代电子护照,第一、二代护照已经在全球发行。随着技术的不断发展,第一、二代护照暴露出许多安全问题,第三代护照采用了新的访问控制机制,其安全性得到很大提高。介绍ICAO和EU的三代电子护照发展历程,从物理层面、通信层面和协议层面分析了电子护照的安全,重点研究电子护照协议层存在的安全问题以及探讨这些问题的一些解决方案。综合分析研究,对提高电子护照的安全性和隐私性有重大意义,对于安全证件领域的研究者也具有指导意义。
隨著國際化的進程加速,電子護照替代傳統護照已經成為國際髮展的必然趨勢。目前,國際民用航空組織(ICAO)和歐盟(EU)已經推齣三代電子護照,第一、二代護照已經在全毬髮行。隨著技術的不斷髮展,第一、二代護照暴露齣許多安全問題,第三代護照採用瞭新的訪問控製機製,其安全性得到很大提高。介紹ICAO和EU的三代電子護照髮展歷程,從物理層麵、通信層麵和協議層麵分析瞭電子護照的安全,重點研究電子護照協議層存在的安全問題以及探討這些問題的一些解決方案。綜閤分析研究,對提高電子護照的安全性和隱私性有重大意義,對于安全證件領域的研究者也具有指導意義。
수착국제화적진정가속,전자호조체대전통호조이경성위국제발전적필연추세。목전,국제민용항공조직(ICAO)화구맹(EU)이경추출삼대전자호조,제일、이대호조이경재전구발행。수착기술적불단발전,제일、이대호조폭로출허다안전문제,제삼대호조채용료신적방문공제궤제,기안전성득도흔대제고。개소ICAO화EU적삼대전자호조발전역정,종물리층면、통신층면화협의층면분석료전자호조적안전,중점연구전자호조협의층존재적안전문제이급탐토저사문제적일사해결방안。종합분석연구,대제고전자호조적안전성화은사성유중대의의,대우안전증건영역적연구자야구유지도의의。
With the acceleration in internationalisation progress,to replace traditional passport with e-passports has become an inevitable trend of international development.Three generations of e-passport have been introduced by International Civil Aviation Organisation (ICAO)and European Union (EU),and the first two generations of e-passport have been issued worldwide.With the constant development of technology, various vulnerability problems are exposed in the 1 st and 2st e-passports.In third generation of e-passports new access control mechanism has been adopted,its security has been greatly improved.In this paper we introduce the development course of three-generation e-passports issued by ICAP and EU,analyse e-passports security mechanisms in levels of physics,communication and protocol,the focus is put on studying some security issues existing in protocol level of e-passports as well as discussing the solutions in regard to these issues.These studies have significance on improving the security and privacy of e-passports,and have the guidance meaning for the researchers in the area of secure credentials.