Reference : Breaking Unlinkability of the ICAO 9303 Standard for e-Passports using Bisimilarity
Scientific congresses, symposiums and conference proceedings : Paper published in a book
Engineering, computing & technology : Computer science
Security, Reliability and Trust
http://hdl.handle.net/10993/41606
Breaking Unlinkability of the ICAO 9303 Standard for e-Passports using Bisimilarity
English
Horne, Ross James mailto [University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC) >]
Mauw, Sjouke mailto [University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC) >]
Smith, Zachary Daniel mailto [University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC) >]
Filimonov, Ihor [University of Luxembourg > > > Master's Student]
23-Sep-2019
Breaking Unlinkability of the ICAO 9303 Standard for e-Passports using Bisimilarity
18
Yes
International
The European Symposium on Research in Computer Security
from 23-09-2019 to 27-09-2019
University of Luxembourg
Luxembourg
Luxembourg
[en] Security Protocols ; e-passports ; bisimilarity
[en] We clear up confusion surrounding privacy claims about the ICAO
9303 standard for e-passports. The ICAO 9303 standard includes a Basic Access
Control (BAC) protocol that should protect the user from being traced from one
session to another. While it is well known that there are attacks on BAC, allowing
an attacker to link multiple uses of the same passport, due to differences in implementation; there still remains confusion about whether there is an attack on unlinkability directly on the BAC protocol as specified in the ICAO 9303 standard.
This paper clarifies the nature of the debate, and sources of potential confusion.
We demonstrate that the original privacy claims made are flawed, by uncovering attacks on a strong formulation of unlinkability. We explain why the use of
the bisimilarity equivalence technique is essential for uncovering our attacks. We
also clarify what assumptions lead to proofs of formulations of unlinkability using weaker notions of equivalence. Furthermore, we propose a fix for BAC within
the scope of the standard, and prove that it is correct, again using a state-of-the-art
approach to bisimilarity.
Researchers ; Professionals
http://hdl.handle.net/10993/41606

File(s) associated to this reference

Fulltext file(s):

FileCommentaryVersionSizeAccess
Limited access
esorics-2019-unlinkability.pdfAuthor postprint248.93 kBRequest a copy

Bookmark and Share SFX Query

All documents in ORBilu are protected by a user license.