Electronic documents are identification documents with buit-in silicon chip. Data from the chip may be inspected using contact or contacless reader dependig on communication interface. Typical electronic document is electronic identity card (eID) or electronic travel document (ePassport). Typical use of electronic documents is identity proving in Govermental electronic services, internet banking or other electronic services of public or private sector.
Identification and autentization with electronic documents is strictly aligned with ICAO/ ISO/ CEN standards and EU directives, including GDPR. The standards set how to protect privacy and confidental data along with cardholder non tracebility. Our solutions include enrollment, issuance, authentication and lifecycle management. Server component integration - according to open standards. Multiplatform client components supports desktop OSs (Windows, Linux a Mac) as well as mobile OSs (Android and iOS) with support of all common internet browsers.
Electronic Vehicle Registration (eVRC)
An electronic document in ID-1 form with a security chip. Vehicle data. High data security. Protection from document cloning. Communication through the ISO 7816-3 interface. Compliance with EU Directive 1999/37 / EC of 29 April 1999, actual/revised text 20.5.2018. Usage - document inspection/control, automated data retrieval during technical and emission control, electronic services and others.
Electronic identity card (eID)
An electronic document in ID-1 form with a security chip. Identity data, including optional biometric data storage (photo, fingerprint). High data security - protection against modification and unauthorized access.
ID-3 bookcase with contactless security chip. Identity data including biometric data (photo, fingerprints). High data security - protection against modification and unauthorized access. Protection against document cloning. Communication via contactless ISO 14443 interface. Compliance with ICAO 9303 and BSI TR-03110 Extended Access Control. Usage - control of a person, for example, within border control and airport control.
Electrical initialisation and personalisation
Initialisation of data structures and personalisation of electronic document chips - eg. electronic vehicle registration card, electronic identity card, biometric passport - through the programming modules of the personalisation device via contact ISO 7816-3 or contactless ISO 14443 interface.
Security of personalization data
Sensitive data for the personalisation of electronic documents is protected by encryption.
The data stored in the chip are equipped with an electronic signature that protects their integrity and authenticity. The data is also tied in to the identity of the chip, which protects the document from cloning.
Inspection procedures directly on the personalisation line for verifying document functionality.
Manage keys to unlock the chip for personalisation. Administration of keys and certificates used for signing data are stored in the chip. Administration of keys and certificates for encryption of personalisation data, Administration of keys and certificates for inspection procedures.
Personalisation of electronic documents can be easily integrated into the environment of existing personalisation centers. The solution is compatible with the personalisation systems of the world's largest producers.
Secure identification and authentication
The EAC-Online mechanism specified in BSI TR-03110 is used for electronic identification and authentication of persons. This mechanism meets the highest security requirements for the authentication assurance level "High" as defined by the elDAS Regulation (No. 910/2014).
The solution also complies with the most stringent requirements of EU regulation No. 2016/679 (known as GDPR ) for the protection of personal data. The personal data provided within the identification are fully under the control of the user, the data are provided for a strictly defined purpose only and only the minimum required set of data necessary to provide the service is made available to service provider.
The solution is easy to integrate into the target environment of the service provider through the standard interfaces like OASIS SAMC 2.0 or BSI TR-03130 elD-Server.
Client software is available for Windows, Linux, and maxOS platforms and is integrated with all known web browsers.
Online issuing of qualified certificates
The EAC-Online mechanism specified in BSI TR-03110 is used for secure communication with the remote chip. This mechanism allows the registration authority to communicate securely with the chip of the document while generating key pairs and writing certificates.
Simple integration with certification authority
The solution is easily integratable into the registration / certification authority environment through web-based interfaces.
Client software is available for Windows, Linux, and maxOS platforms.
The security of the solution (alternate: this product) has been verified by a certified TÜV-IT laboratory in accordance with the Common Criteria standard at EAL 4 security level.
Electronic documents authenticity verification
Inspection of electronic vehicle registration cards, electronic identity cards, biometric passports, residence permit and other electronic documents in accordance with relevant standards. Authentication of the document chip based on modern cryptographic mechanisms. Retrieving data from the chip through a secure communication channel (if supported) and verification of the integrity and authenticity of the data stored in the chip by verifying its electronic signature.
Data read from electronic document
Technical license with chip - Vehicle registration certificate / data
Citizen card with chip - Identity, optionally photo and fingerprint data
Biometric Passports - Identity, photograph, and fingerprint data
Residence Permits - Identity, photo, and fingerprint data
Active authentication (AA), Passive authentication (PA), Supplementary Access Control (SAC), Password Authenticated Communication Establishment (PACE), Extended Access Control (EAC).
Client software is available for Windows, Linux, and Android platforms.