3rd icao mrtd biometrics and security standard symposium - …€¦ · biometrics and security...
TRANSCRIPT
www.digital-identification.com
3rd ICAO MRTDBiometrics and Security Standard Symposium - 2007
www.digital-identification.com
WELCOME
Digital Identification Solutions GroupGerd Schaefer, CEO
Secure Credentials on ID CardsMethods to combat duplication and fake IDs
www.digital-identification.com
Broad, strong Experience in the Identification & Security Business since the beginning of 1988, therefore 20 Years of Field Expertise.
Previously the KODAK Headquarters for the Identification and Security Systems Division Business in the Eastern Hemisphere. Forefront Developers of Electronic Imaging & Digital Security Solutions.
Headquartered in Germany, the company has subsidiaries in Dubai, Singapore, Beijing, Greenville, S.C. and Mexico.
COMPANY INTRODUCTION
www.digital-identification.com
Market Segments
Personal Identification and ID Management for Corporate Clients
Airports and Airlines
Nuclear Power & Research Facilities
Governmental ID Cards (National ID, Military ID, Social Security, Drivers License, Car Registration, etc.)
Machine Readable Travel Documents (ID Cards, MRP, e-Passports, Visa)
COMPANY INTRODUCTION
www.digital-identification.com
Top Corporate References:Top Corporate References: Government References:Government References:Volkswagen AGLufthansaBASF AGGerman MailAirbus IndustriesBayer AGPfizer PharmaceuticalsSaudi TelecomQantas Australian AirlinesBritish Airport AuthoritiesSpanish Football LeagueERG Transit SolutionsUnited Parcel Service UPSWashington D.C. National & International Airport
Oman Drivers LicenseOman Car RegistrationIndonesian Drivers LicenseIndonesian Passport ProjectSpanish Air ForceItalian Natl. IDMalaysian Police Officers IDSingapore Air ForceDubai Police, UAEDubai Port & Customs, UAEMedical Card Project, UAEUAE Car RegistrationKing Fahd Armed Forces, KSAMinistry of Foreign Affairs Passport Project, P.R. China
REFERENCES
www.digital-identification.com
PRODUCT OVERVIEW
Same attractive price
PRODUCTS
www.digital-identification.com
CertifiedSupplies& Foils,
Cardware
PrintingSolutions
for ID Cards,MRP, Visas
Project Management,Integration Services,
Logistics andSupport
BiometricEnrollment
& ImageAcquisition
Application Software, Toolkit-, Encoding- and
Driver-Solutions
®
COMPLETE PRODUCT OFFERINGS
www.digital-identification.com
ApplicationModular concept(Design, RetrievalManagement)Web enabled
InputAny Twainor VFWcompliantdevice
DatabaseAny ODBC(JDBC)compliantdatabase
OutputAny genericMS-Windowsprinter driver
Workstation Components
– Windows 2000/XP– Browser IE 5.5 or higher– ActiveX Components for
biometric “Plug-Ins”
Open System Architecture
Software Latest, platform independent
development
®
Server Components are Java code based and run on
– Windows 2000/XP– Sun Solaris– Unix/Linux
EDIsecure® SOFTWARE SOLUTIONS
www.digital-identification.com
EDIsecure® ID Card PrinterValue LineProfessional Line
EDIsecure®
Passport Printer PP 300X240 passports per hour In high-resolution/full color
EDIsecure® PRINTING SOLUTIONS
www.digital-identification.com
Secure and Reliable Personalization HardwareSecure and Reliable Personalization Hardware
Card Management SoftwareCard Management Software
Secure Workflow ProcessSecure Workflow Process
Authenticated Personneland Secure Infrastructure Authenticated Personnel
and Secure Infrastructure
Secure DataInterchange & Storage
Secure DataInterchange & Storage
SecureDocumentsSecure
Documents
SECURITY MEASURES
www.digital-identification.com
GuillochesRainbow PrintingMicroprintUV InkInfrared printingHidden InformationOptical Variable InkMetalized HologramTranslucent OVD
Group 1Simple visible
Group 2Visible usingspecific tools
Security features of credentials can be classified into three groups
Group 3Visible using
special equipmentor in labs
Examples ofSecurity features
SECURE DOCUMENTS
www.digital-identification.com
Guilloche
MicroprintText printed with such small fonts that it is only readable with a strong magnifying glas and could be only pre-printed and could not be scanned or printed with an ID printer.
Rainbow printingUltra-fine lines or pattern that change gradually from one color to another. Requires specialized offset printing equipment available only in security printing facilities.
SECURITY PRE-PRINTING
www.digital-identification.com
IriodinFull card or partial card size pre-print printed in silk-screen print technology. There is metalized pigments in the transparent color, which gives the impression of metalized effect.
Optically variable inks (OVI)Color-shifting inks reflect various wavelengths in white light differently, depending on the angle of incidence to the surface. An unaided eye will observe this effect as a change of color change while the viewing angle is changed. A color copier or scanner can copy a document only at one fixed angle relative to the card’s surface.
Infrared Pre-printingInfrared color available in two wave different wave lengths. Print technology is offset, similar to UV pre-print. Colors yellow or red. Visual only with infrared-light source lamps, that cover the required wave lengths.
IridisentCopy protection color which could be printed over the full card size or partially. Print technology is silk-screen pre-print. Card could not be copied or reproduced with common copiers.
SECURITY PRE-PRINTING
www.digital-identification.com
Electronic GuillocheElectronically generated guilloche and printed with the Retransfer printer. Can be adjusted to customer wishes.
Shadow ImageElectronically generated, reduced density copy of the person’s photo is printed during personalization as background behind the text information. Difficult to alter person’s data without destroying the person’s image.
Overlapping ObjectsObjects such as a signature or a stamp will be overlapped over other fields such as the person’s photo to avoid alteration. “Simulation of the known stamping and signing of authorized persons”
Example: Electronic Guilloche
Alternatives & options to enhance card security
ELECTRONIC SECURITY
www.digital-identification.com
Alternatives & options to enhance card security
Invisible Personal Information (IPI)IPI encodes personal data into the photo. This personal data is invisible to the naked eye but the officials may verify authenticity with a simple decoding lens.
ELECTRONIC SECURITY
www.digital-identification.com
EDIsecure® SECURITY ERASE
K-Panel K-Panel after Security Erase
www.digital-identification.com
EDIsecure® SECURITY ERASE
Printed Card
K-Panel K-Panel after Security Erase
www.digital-identification.com
EDIsecure® UV INK PRINTING
Card
InvisibleVisible
Card
UV Ink(wax transfer)
UV Ink (dye-sublimation, 256 step graduation)
www.digital-identification.com
Printed card - UV lightPrinted card -daylight
EDIsecure® UV INK PRINTING
Color ink
UV Dye-Sublimation UV ink ribbon
UV ink
www.digital-identification.com
EDIsecure® UV INK PRINTING
Attractive security feature for corporate & government clients who do want to increase their credential security
www.digital-identification.com
EDIsecure® UV INK PRINTING
Driver provides for application independent positioning of thephoto and all black text
CMS Software Suite will provide for more comprehensive UVOptions (Logos, single fields)
Printer prints an invisible “Machine-Code” in order to identify the printer on which a faked card had been issued
Controlled distribution process!!!
www.digital-identification.com
Why to use surface protection
To protect the personalized data from compromise and validate authenticity
To extend the life of the document - complex and expensive credentials require longer life cycles
To add additional overt & covert security/authentication features
SURFACE DATA PROTECTION
www.digital-identification.com
Holograms versus OVD’s
Holograms are dimensional pictures made on a stationary laser table utilizing a single laser emission. This is a commonly available technology.
OVD’s are complex, pixilated images that are created e.g. by millions of pulse laser emissions. Only certain manufacturers can do this.
OVD’s are bright – any illumination is O.K. They do not interfere with data playback. Simulation is exceptionally difficult.
HRI is an acronym for “High Refractive Index”. The HRI layer maintains enough transparency to allow the data to be visible and reflects enough light to authenticate the OVD.
SURFACE DATA PROTECTION
www.digital-identification.com
KineticBackground
Kinetic Guilloche High Resolution
Micro text (140mu)
Flip Micro text (250mu)
The Anatomy of Optical Variable Devices
SURFACE DATA PROTECTION
MicroprintUV InkInfrared printingHidden Information
www.digital-identification.com
The COVID™Security System:
“COVID™ is a complex security system of polymeric material that contains an HRI OVD image as well as a selection of unique security technologies unrelated to the visible, embossed OVD micro-structure”.
UV InksIR PigmentFlip Ink
SecureText™Pixel EncryptionAt 200X
High ResolutionGuilloche Artwork
Image Seen in White LightCOVID™ is a registered trademark of ITW COVID
How to make an OVD even more secure?
SURFACE DATA PROTECTION
www.digital-identification.com
Contact ChipMemory / Processor
Contactless ChipMifare, DESFire, HID iCLASS, Legic, …
Magnetic StripeHiCo, LoCo
BarcodesStandard, PDF417, DatastripColorCode
MACHINE READABILITY & ENCODING
www.digital-identification.com
Ultra micro text graphics and guilloche patternLaser written, embedded “holographic” security featureLaser written OptiChip serial number to be combined with the ID card number
Up to 32 Kilobytes of unalterable dataAvailable in “smart chip module size” or largerCan be inserted into the card body with existing milling and embedding devicesCombines optical security with data storage
=+
Fully automatic personalization
Card Printing Inline-Encoding Final OptiChip Card
Optical Encoding Technologies (LaserCard, OptiChip)
MACHINE READABILITY & ENCODING
www.digital-identification.com
ICAO ID Card / Passport (21.6 x 86mm)
Max. Data capacity (Kilobytes) 8.3 12.6Scan resolution (dpi) 300 400Decoding time (seconds per document) ~1 sec ~1-2sec
Visa (data area 19 x 72 mm)Max. Data capacity (Kilobytes) 5.4 9.5Scan resolution (dpi) 300 400Decoding time (seconds per document) ~1 sec ~1 sec
+ + =
ColorCode™ Storage and Decoding
Secure Documents with ColorCode™
MACHINE READABILITY & ENCODING
www.digital-identification.com
Digital IPI encodes binary data into the photo.
For verification a special device (reader) is required.
Normal vs. Digital IPIVerification of normal - lens-readable - IPI is simple and fast.Digital information can be encrypted by the customer, what provides higher level of security.
Digital Invisible Information (D-IPI)
MACHINE READABILITY & ENCODING
www.digital-identification.com
28D4 705B F520 A35F 1CC1 6465 A90B 503A
Image
Generate MAC
BETHLIEHAMMBH655403
Personaldata
D-IPIGeneration
MessageAuthenticationCode
Credential Personalization with D-IPI & Chip
MACHINE READABILITY & ENCODING
www.digital-identification.com
28D4 705B F520 A35F 1CC1 6465 A90B 503A
D-IPIReader
ChipReader
Compare/Verify DataRFID or MAC
28D4 705B F520 A35F 1CC1 6465 A90B 503A
Verification of D-IPI & Chip
MACHINE READABILITY & ENCODING
www.digital-identification.com
Invisible Personal Information (IPI) software allows you to encode information inside the photograph
Preprinted micro-textallows you to add asecure line of infoto your card design
Preprinted UV Inkallows you to addsecure text that isinvisible to the naked eye
Custom or genericholographic patch orthermal film laminateadds both visual & physical security to the final card print
SECURE CREDENTIALS
www.digital-identification.com
Example:The combination of a modern passport reader with a biometric identification system.
BIOMETRICS & ENCODING
www.digital-identification.com
Fully ICAO compliant8 - 10,000 passports per day 2,000,000 passports per year Citizen focused approach,Central databaseSophisticated exchange of dataLife image & fingerprint captureOnline countrywide fingerprint duplicates check Online countrywide watch-list and blacklist check3 days from application until collection of passportVIP service within 4 hours
Capture Station
Fast Ethernet Switch
BIS Payment cum Registration
Station
PPS Registration
Station
Print Station
Firewall
Router
Router
DatabaseServers
Storage Server
Admin console
MatchingServers
Application Servers
Local Buffer Server
Gigabyte / Fast Ethernet Switch
Kantor Pusat
Kantor Imigrasi
Satellite dish
Transceiver
Transceiver
Satellite dish
Database Servers
Admin Console
Back UpTape
…
Screening Workstation
AFIS
Firewall
ApplicationServers
INDONESIAN BIOMETRIC PASSPORT
www.digital-identification.com
AFIS System for online countrywide check for fingerprint duplicates
PROOF OF IDENTITY
www.digital-identification.com
WORKFLOW & LIFE CYCLE MANAGEMENT
www.digital-identification.com
Security Pre-Printing(Rainbow printing,
Microprint, UV, OCR/Barcode, etc.)
Long lastingCredential Bodies
(PET/PC)Electronic
Personalization(Electr. „Guilloche“, IPI,
Overlapping Objects,Shadow Image, etc.)
Surface Data Protection(HRI OVD/Patch or
„Sandwich“Combination,COVID, etc.)
Machine Readabilitye.g. from Chips or
2D or Color Barcodesand use of Biometrics
The Customers “Dream”:Solution providers should offer secure, economical, user friendly and scalable personalization systems for centralistic and decentralized credential issuance“
THE IDEAL TECHNOLOGY COMBINATION
www.digital-identification.com
Choose a project-partner with a successful track record, a partner who knows how things work.
Digital Identification Solutions GroupDigital Identification Solutions Group
CONCLUSIONS
www.digital-identification.com
Vielen Dank!Thank You!
¡Muchas gracias!Спасибо!
!شكراありがとう!
谢谢!Terima kasih!