Access to data objects stored on a credential such as a badge, smart card, etc. is typically limited to user authorization through the use of a user-entered PIN or other mechanism. This disclosure describes techniques to enable a credential reader to authenticate itself to a credential and access protected objects on the credential without user interaction and without the use of any global credential. The techniques define a simplified public-key infrastructure (PKI) hierarchy appropriate for typical credentials, which are usually low-powered, passive, and offline.

Creative Commons License

Creative Commons License
This work is licensed under a Creative Commons Attribution 4.0 License.