ISO/IEC 7816

ISO/IEC 7816 is an international standard related to electronic identification cards with contacts, especially smart cards, managed jointly by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC).

It is edited by the Joint technical committee (JTC) 1 / Sub-Committee (SC) 17, Cards and personal identification.

The following describes the different parts of this standard.

Note: abstracts and dates, when present, are mere quotations from the ISO website, and are neither guaranteed at the time of edition nor in the future.

1 7816-1: Physical characteristics
2 7816-2: Cards with contacts — Dimensions and location of the contacts
3 7816-3: Cards with contacts — Electrical interface and transmission protocols
4 7816-4: Organization, security and commands for interchange
5 7816-5: Registration of application providers
6 7816-6: Interindustry data elements for interchange
7 7816-7: Interindustry commands for Structured Card Query Language (SCQL)
8 7816-8: Commands for security operations
9 7816-9: Commands for card management
10 7816-10: Electronic signals and answer to reset for synchronous cards
11 7816-11 Personal verification through biometric methods
12 7816-12 Cards with contacts — USB electrical interface and operating procedures
13 7816-13: Commands for application management in multi-application environment
14 7816-15: Cryptographic information application
15 Notable implementations
16 See also
17 References
18 External links

7816-1: Physical characteristics

Created in 1987, updated in 1998, amended in 2003.^[1]^[2]

7816-2: Cards with contacts — Dimensions and location of the contacts

Created in 1988, updated in 1999, amended in 2004, updated in 2007.^[3]

7816-3: Cards with contacts — Electrical interface and transmission protocols

Created in 1989, amended in 1992 (addition of the T=1 protocol), amended in 1994 (revision of Protocol Type Selection), updated in 1997 (including addition of 3 Volt operation), amended in 2002 (including addition of 1.8 Volt operation), last updated in 2006 (including removal of Vpp).^[4]

7816-4: Organization, security and commands for interchange

Created in 1995, updated in 2005.^[5]

According to its abstract, it specifies:

contents of command-response pairs exchanged at the interface,
means of retrieval of data elements and data objects in the card,
structures and contents of historical bytes to describe operating characteristics of the card,
structures for applications and data in the card, as seen at the interface when processing commands,
access methods to files and data in the card,
a security architecture defining access rights to files and data in the card,
means and mechanisms for identifying and addressing applications in the card,
methods for secure messaging,
access methods to the algorithms processed by the card. It does not describe these algorithms.

It does not cover the internal implementation within the card or the outside world.

ISO/IEC 7816-4:2005 is independent from the physical interface technology. It applies to cards accessed by one or more of the following methods: contacts, close coupling, and radio frequency.

7816-5: Registration of application providers

Created in 1995, updated in 2004.^[6]

According to its abstract, ISO/IEC 7816-5 defines how to use an application identifier to ascertain the presence of and/or perform the retrieval of an application in a card.

ISO/IEC 7816-5:2004 shows how to grant the uniqueness of application identifiers through the international registration of a part of this identifier, and defines

the registration procedure,
the authorities in charge thereof,
the availability of the register which links the registered parts of the identifiers and the relevant application providers.

7816-6: Interindustry data elements for interchange

Created in 1996, updated in 2004.^[7]

According to its abstract, it specifies the Data Elements (DEs) used for interindustry interchange based on integrated circuit cards (ICCs) both with contacts and without contacts. It gives the identifier, name, description, format, coding and layout of each DE and defines the means of retrieval of DEs from the card.

7816-7: Interindustry commands for Structured Card Query Language (SCQL)

Created in 1999.^[8]

7816-8: Commands for security operations

Created in 1995, updated in 2004.^[9]

According to its abstract, it specifies interindustry commands for integrated circuit cards (either with contacts or without contacts) that may be used for cryptographic operations. These commands are complementary to and based on the commands listed in ISO/IEC 7816-4.

Annexes are provided that give examples of operations related to digital signatures, certificates and the import and export of asymmetric keys.

The choice and conditions of use of cryptographic mechanisms may affect card exportability. The evaluation of the suitability of algorithms and protocols is outside the scope of ISO/IEC 7816-8.

7816-9: Commands for card management

Created in 1995, updated in 2004.^[10]

According to its abstract, it specifies interindustry commands for integrated circuit cards (both with contacts and without contacts) for card and file management, e.g. file creation and deletion. These commands cover the entire life cycle of the card and therefore some commands may be used before the card has been issued to the cardholder or after the card has expired.

An annex is provided that shows how to control the loading of data (secure download) into the card, by means of verifying the access rights of the loading entity and protection of the transmitted data with secure messaging. The loaded data may contain, for example, code, keys and applets.

7816-10: Electronic signals and answer to reset for synchronous cards

Created in 1999.^[11]

This part specifies the power, signal structures, and the structure for the answer to reset between an integrated circuit card(s) with synchronous transmission and an interface device such as a terminal.

7816-11 Personal verification through biometric methods

Created in 2004.^[12]

According to its abstract, it specifies the usage of interindustry commands and data objects related to personal verification through biometric methods in integrated circuit cards. The interindustry commands used are defined in ISO/IEC 7816-4. The data objects are partially defined in this International Standard, partially imported from ISO/IEC 19785-1.

ISO/IEC 7816-11 also presents examples for enrollment and verification and addresses security issues.

7816-12 Cards with contacts — USB electrical interface and operating procedures

Created in 2005.^[13]

According to its abstract, it specifies the operating conditions of an integrated circuit card that provides a USB interface. An integrated circuit card with a USB interface is named USB-ICC.

ISO/IEC 7816-12:2005 specifies:

the electrical conditions when a USB-ICC is operated by an interface device - for those contact fields that are not used, when the USB interface is applied;
the USB standard descriptors and the USB-ICC class specific descriptor;
the data transfer between host and USB-ICC using bulk transfers or control transfers;
the control transfers which allow two different protocols named version A and version B;
the (optional) interrupt transfers to indicate asynchronous events;
status and error conditions.

ISO/IEC 7816-12:2005 provides two protocols for control transfers. This is to support the protocol T=0 (version A) or to use the transfer on APDU level (version B). ISO/IEC 7816-12:2005 provides the state diagrams for the USB-ICC for each of the transfers (bulk transfers, control transfers version A and version B). Examples of possible sequences which the USB-ICC must be able to handle are given in an informative annex.

The USB CCID device class defines a standard for communicating with ISO/IEC 7816 smart cards over USB.

7816-13: Commands for application management in multi-application environment

This part specifies commands for application management in a multi-application environment.^[14]

7816-15: Cryptographic information application

Created in 2004, amended in 2004, 2007, 2008.^[15]^[16]^[17]^[18]

According to its abstract, it specifies a card application. This application contains information on cryptographic functionality. Further, ISO/IEC 7816-15:2004 defines a common syntax (in ASN.1) and format for the cryptographic information and mechanisms to share this information whenever appropriate.

ISO/IEC 7816-15:2004 supports the following capabilities:

storage of multiple instances of cryptographic information in a card;
use of the cryptographic information;
retrieval of the cryptographic information;
cross-referencing of the cryptographic information with DOs defined in ISO/IEC 7816 when appropriate;
different authentication mechanisms; and
multiple cryptographic algorithms.

Notable implementations

The German identity card contains an ISO 18000-3 and ISO 14443-A compatible 13.56 MHz RFID chip that uses the ISO/IEC 7816 protocols.^[19]^[20]

References

^ "ISO/IEC 7816-1:1998 Identification cards — Integrated circuit(s) cards with contacts — Part 1: Physical characteristics". Iso.org. 2011-01-31. http://www.iso.org/iso/iso_catalogue/catalogue_tc/catalogue_detail.htm?csnumber=29257. Retrieved 2011-11-12.
^ "ISO/IEC 7816-1:1998/Amd 1:2003 Maximum height of the IC contact surface". Iso.org. 2011-01-31. http://www.iso.org/iso/iso_catalogue/catalogue_tc/catalogue_detail.htm?csnumber=34360. Retrieved 2011-11-12.
^ "ISO/IEC 7816-2:2007 Identification cards — Integrated circuit cards — Part 2: Cards with contacts — Dimensions and location of the contacts". Iso.org. 2007-10-11. http://www.iso.org/iso/iso_catalogue/catalogue_tc/catalogue_detail.htm?csnumber=45989. Retrieved 2011-11-12.
^ "ISO/IEC 7816-3:2006 Identification cards — Integrated circuit cards — Part 3: Cards with contacts — Electrical interface and transmission protocols". Iso.org. http://www.iso.org/iso/search.htm?qt=7816-3&published=on&withdrawn=on. Retrieved 2011-11-12.
^ "ISO/IEC 7816-4:2005 Identification cards — Integrated circuit cards — Part 4: Organization, security and commands for interchange". Iso.org. 2008-10-03. http://www.iso.org/iso/iso_catalogue/catalogue_tc/catalogue_detail.htm?csnumber=36134. Retrieved 2011-11-12.
^ "ISO/IEC 7816-5:2004 Identification cards — Integrated circuit cards — Part 5: Registration of application providers". Iso.org. 2010-03-17. http://www.iso.org/iso/iso_catalogue/catalogue_tc/catalogue_detail.htm?csnumber=34259. Retrieved 2011-11-12.
^ "ISO/IEC 7816-6:2004 Identification cards — Integrated circuit cards — Part 6: Interindustry data elements for interchange". Iso.org. 2009-09-30. http://www.iso.org/iso/iso_catalogue/catalogue_tc/catalogue_detail.htm?csnumber=38780. Retrieved 2011-11-12.
^ "ISO/IEC 7816-7:1999 Identification cards — Integrated circuit(s) cards with contacts — Part 7: Interindustry commands for Structured Card Query Language (SCQL)". Iso.org. 2010-06-17. http://www.iso.org/iso/iso_catalogue/catalogue_tc/catalogue_detail.htm?csnumber=28869. Retrieved 2011-11-12.
^ "ISO/IEC 7816-8:2004 Identification cards — Integrated circuit cards — Part 8: Commands for security operations". Iso.org. 2009-09-30. http://www.iso.org/iso/iso_catalogue/catalogue_tc/catalogue_detail.htm?csnumber=37989. Retrieved 2011-11-12.
^ "ISO/IEC 7816-9:2004 Identification cards — Integrated circuit cards — Part 9: Commands for card management". Iso.org. 2009-09-30. http://www.iso.org/iso/iso_catalogue/catalogue_tc/catalogue_detail.htm?csnumber=37990. Retrieved 2011-11-12.
^ "ISO/IEC 7816-10:1999 Identification cards — Integrated circuit(s) cards with contacts — Part 10: Electronic signals and answer to reset for synchronous cards". Iso.org. 2010-06-17. http://www.iso.org/iso/iso_catalogue/catalogue_tc/catalogue_detail.htm?csnumber=30558. Retrieved 2011-11-12.
^ "ISO/IEC 7816-11:2004 Identification cards — Integrated circuit cards — Part 11: Personal verification through biometric methods". Iso.org. 2007-06-20. http://www.iso.org/iso/iso_catalogue/catalogue_tc/catalogue_detail.htm?csnumber=31419. Retrieved 2011-11-12.
^ "ISO/IEC 7816-12:2005 Identification cards — Integrated circuit cards — Part 12: Cards with contacts — USB electrical interface and operating procedures". Iso.org. 2011-03-17. http://www.iso.org/iso/iso_catalogue/catalogue_tc/catalogue_detail.htm?csnumber=40604. Retrieved 2011-11-12.
^ "ISO/IEC 7816-13:2007 Identification cards — Integrated circuit cards — Part 13: Commands for application management in a multi-application environment". Iso.org. 2007-03-09. http://www.iso.org/iso/iso_catalogue/catalogue_tc/catalogue_detail.htm?csnumber=40605. Retrieved 2011-11-12.
^ "ISO/IEC 7816-15:2004 Identification cards — Integrated circuit cards — Part 15: Cryptographic information application". Iso.org. 2007-06-20. http://www.iso.org/iso/iso_catalogue/catalogue_tc/catalogue_detail.htm?csnumber=35168. Retrieved 2011-11-12.
^ "ISO/IEC 7816-15:2004/Cor 1:2004". Iso.org. 2004-06-30. http://www.iso.org/iso/iso_catalogue/catalogue_tc/catalogue_detail.htm?csnumber=40743. Retrieved 2011-11-12.
^ "ISO/IEC 7816-15:2004/Amd 1:2007 Examples of the use of the cryptographic information application". Iso.org. 2007-10-31. http://www.iso.org/iso/iso_catalogue/catalogue_tc/catalogue_detail.htm?csnumber=40441. Retrieved 2011-11-12.
^ http://www.iso.org/iso/iso_catalogue/catalogue_tc/catalogue_detail.htm?csnumber=43319
^ Fumy, Walter; Paeschke, Manfred, eds. Handbook of EID Security: Concepts, Practical Experiences, Technologies. p. 49. ISBN 978-3-89578-658-7. http://books.google.com/books?id=o2WBs65hbTgC&pg=PA49.
^ "Neuer Personalausweis: Wo die wirklichen Gefahren lauern [New Identity Card: Where are the real dangers lurk]". ZDNet. 23 June 2010. http://www.zdnet.de/magazin/41533735/neuer-personalausweis-wo-die-wirklichen-gefahren-lauern.htm.

External links

ISO standards

Lists: List of ISO standards · List of ISO romanizations · List of IEC standards Categories: Category:ISO standards · Category:OSI protocols

1 to 9999	1 · 2 · 3 · 4 · 5 · 6 · 7 · 9 · 16 · 31 (-0, -1, -2, -3, -4, -5, -6, -7, -8, -9, -10, -11, -12, -13) · 128 · 216 · 217 · 226 · 228 · 233 · 259 · 269 · 302 · 306 · 428 · 518 · 519 · 639 (-1, -2, -3, -5, -6) · 646 · 690 · 732 · 764 · 843 · 898 · 1000 · 1004 · 1007 · 1073-1 · 1413 · 1538 · 1745 · 2014 · 2015 · 2022 · 2108 · 2145 · 2146 · 2240 · 2281 · 2709 · 2711 · 2788 · 2852 · 3029 · 3103 · 3166 (-1, -2, -3) · 3297 · 3307 · 3602 · 3864 · 3901 · 3977 · 4031 · 4157 · 4217 · 5218 · 5775 · 5776 · 5800 · 5964 · 6166 · 6344 · 6346 · 6425 · 6429 · 6438 · 6523 · 6709 · 7001 · 7002 · 7098 · 7185 · 7200 · 7498 · 7736 · 7810 · 7811 · 7812 · 7813 · 7816 · 8000 · 8178 · 8217 · 8571 · 8583 · 8601 · 8632 · 8652 · 8691 · 8807 · 8820-5 · 8859 (-1, -2, -3, -4, -5, -6, -7, -8, -9, -10, -11, -12, -13, -14, -15, -16) · 8879 · 9000/9001 · 9075 · 9126 · 9241 · 9362 · 9407 · 9506 · 9529 · 9564 · 9594 · 9660 · 9897 · 9945 · 9984 · 9985 · 9995

10000 to 19999	10006 · 10118-3 · 10160 · 10161 · 10165 · 10179 · 10206 · 10218 · 10303 (-11, -21, -22, -28, -238) · 10383 · 10487 · 10585 · 10589 · 10646 · 10664 · 10746 · 10861 · 10957 · 10962 · 10967 · 11073 · 11170 · 11179 · 11404 · 11544 · 11783 · 11784 · 11785 · 11801 · 11898 · 11940 · 11941 · 11941 (TR) · 11992 · 12006 · 12182 · 12207 · 12234-2 · 13211 (-1, -2) · 13216 · 13250 · 13399 · 13406-2 · 13407 · 13450 · 13485 · 13490 · 13567 · 13568 · 13584 · 13616 · 14000 · 14031 · 14396 · 14443 · 14496-10 · 14496-14 · 14644 (-1, -2, -3, -4, -5, -6, -7, -8, -9) · 14649 · 14651 · 14698 · 14698-2 · 14750 · 14882 · 14971 · 15022 · 15189 · 15288 · 15291 · 15292 · 15408 · 15444 · 15445 · 15438 · 15504 · 15511 · 15686 · 15693 · 15706 · 15706-2 · 15707 · 15897 · 15919 · 15924 · 15926 · 15926 WIP · 15930 · 16023 · 16262 · 16750 · 17024 · 17025 · 17369 · 17799 · 18000 · 18004 · 18014 · 18245 · 18629 · 18916 · 19005 · 19011 · 19092-1 · 19092-2 · 19114 · 19115 · 19125 · 19136 · 19439 · 19501:2005 · 19752 · 19757 · 19770 · 19775-1 · 19794-5

20000+	20000 · 20022 · 21000 · 21047 · 21827:2002 · 22000 · 23270 · 23360 · 24613 · 24707 · 25178 · 26000 · 26300 · 26324 · 27000 series · 27000 · 27001 · 27002 · 27003 · 27004 · 27005 · 27006 · 27007 · 27729 · 27799 · 28000 · 29110 · 29199-2 · 29500 · 31000 · 32000 · 38500 · 42010 · 80000

See also: All articles beginning with "ISO"