ISO/IEC 19286:2018 Preview

Identification cards -- Integrated circuit cards -- Privacy-enhancing protocols and services

ISO/IEC 19286:2018 aims to normalize privacy-enhancing protocols and services by

- using the mechanisms from parts of ISO/IEC 7816 and parts of ISO/IEC 18328 that contribute to security and privacy,

- providing discoverability means of privacy-enabling attributes,

- defining requirements for attribute-based credential handling, and

- identifying data objects and commands for ICCs.

Existing privacy-enhancing protocols available in a generic context are adopted for distributed systems including ICCs. Additionally, existing authentication protocols between an ICC and an external device used for establishing a secure channel are enhanced with privacy protection. Secure communication between an ICC and an on-card device is also considered.

All the protocols and services described in this document contribute to privacy. Annex B describes an example of privacy impact assessments of respective systems.


General information

  • Current status : Published
    Publication date : 2018-01
  • Edition : 1
    Number of pages : 76
  • :
    ISO/IEC JTC 1/SC 17
    Cards and security devices for personal identification
  • 35.240.15
    Identification cards. Chip cards. Biometrics

Buy this standard

Format Language
PDF
Paper
  • CHF178

Got a question?

Check out our FAQs


Customer care
+41 22 749 08 88

Opening hours:
Monday to Friday - 09:00-12:00, 14:00-17:00 (UTC+1)