Technical Features
secunet GRT Platinum Edition runs on Windows XP and Windows Vista. Standard interfaces supporting both PC/SC-conform and proprietary readers are defined.
The following presents an overview of the security-mechanisms, embedded libraries as well as standards considered within the scope of implementation:
Security standards / algorithms
Basic Access Control (BAC)
- Two line MRZ
- Three line MRZ for ID-Cards
Active Authentication (AA)
Passive Authentication (PA)
- RSA
- RSA PSS, RSA PKCS#1
- ECDSA with Hash algorithms with SHA-1 and SHA-2 family
Extended Access Control (EAC) in Version 1.11 und 2.01
- Password Authenticated Connection Establishment (PACE)
- Terminal Authentication (TA)
- RSA
- ECDSA
- Chip Authentication (CA)
- DH
- ECDH
Certificate-management
- CV-certificates
- Handlind of CVCA-/CVCA-Link-/DV-/IS-certificates
- X.509-certificates
- Handling of CSCA-/DS-certificates
- Management of Certificate Revocation Lists (for X.509-certificates)
ePassport-Application
eID-Application
(PIN-Management, Restricted Identification, DG Handling, Change Management…)
eSign-Application
Embedded libraries
ePassportAPI
biomiddle/BioAPI (within the biometrics-version)
Crypto++
OpenSSL
Consideration of standards
ICAO DOC9303 – Machine Readable Travel Documents
ISO/IEC 19784-1: BioAPI 2.0 Framework
ISO/IEC 19785: Common Biometric Exchange Framework Format
ISO/IEC 19794-4: Fingerprint image
ISO/IEC 19794-5: Facial image
ISO/IEC 19794-6: Iris image
