Within the MATTHEW project IMA is working on the next generation access control platform. This platform features an NFC enabled card reader that is equipped with a CIPURSE™ SAM (Secure Access Module). The SAM provides the necessary cryptographic function, which is needed for the protocol execution. Instead of using conventional key cards IMA’s platform utilizes NFC enabled smart phones. The credentials are securely stored on the mobile’s SIM card. As soon as the NFC reader receives the credentials from the phone, they are forwarded to the access control terminal that verifies them and decides if access is granted or not. More information about the IMA framework that also represents the second use case within the MATTHEW project can be found in D1.1 in Chapter 2.2.
The figure above depicts the reader, the access control terminal as well as two smart phones. A clear advantage of this system is that no additional smart cards are needed, but only an NFC enabled smart phone, which has to be tapped to the reader. If additional security mechanisms are needed for the access control the IMA solution offers two possibilities:
-
The user has to enter a PIN, which is attached to the credentials before they are transmitted to the reader.
-
The reader can request the approval of another person that also has to tap the phone to the reader in order to grant access.
During the second review meeting IMA presented a first prototype of their system to the European Commission.