Zero PIN

from Wikipedia, the free encyclopedia

Null-PIN is a patented process that replaces the protective functionality of a PIN letter in card applications. The zero-PIN procedure is intended to save PIN letters.

PIN letters are used to protect the PIN when a card is delivered to the end user. The construction of the letter makes it clear when someone wanted to gain access to a card's PIN. The PIN letter form usually has to be opened or at least damaged.

When cards are delivered to the end user, they are not assigned individual PINs, but the PINs of the cards contain a uniform initial value. The name "Null-PIN" results from the fact that the value zero was set several times as the initial PIN at the beginning. However, any other value can correctly occur here, as long as it is uniform in all or a certain batch. It is also possible to use a value derived from another known value (e.g. the serial number of the card). The derivation algorithm is then assumed to be known.

The delivery status enables the recipient to check whether the delivered card has been misused during the transport. The zero-PIN status shows that the PIN-protected security functions are still unaffected. Such security functions are e.g. B. the generation of digital signatures or the authentication of banking transactions based on crypto processes that run in the chip of a card application.

A prerequisite for the use of the zero PIN procedure is the ability of a security module (cards, chip cards , security module) to keep the PIN available in a changeable manner. It is therefore ruled out for magnetic stripe applications, as these can only save a PIN statically and store it in encrypted form.

So that a zero-PIN-protected security module can be used, a PIN must be selected and defined by the first user before it is used for the first time. In addition, the card cannot be used in the zero PIN status; the first thing it expects is a user PIN. This initial zero PIN status cannot then be reproduced again. A suitable application for communication with the security module is required to display the zero PIN status and to operate the system for the initial "unlocking" of a PIN.

Due to the aforementioned capability of the security module, a PIN can be changed later at any time. The operating system of the module only prevents the initial value of the PIN on output; the cancellation of the zero PIN status is therefore irreversible. In this way, the risk of the PIN being spied on by third parties can be prevented, which corresponds to an unopened PIN letter.

Applications

The zero PIN procedure meets the requirements of the German Signature Act , which stipulates that the PIN for generating a qualified digital signature may only be known to the signature key holder.

Web links

  • Federal Network Agency Resolutions of the Working Group of Recognized Confirmation Agencies (AGAB) of March 4, 2009: "PIN / PUK techniques for secure signature creation units according to § 2 No. 10 SigG" (PDF file; 22 kB)

Individual evidence

  1. patent DE19507044 .