Republic of Turkey Identity Card Electronic Identity Verification System Regulation was published in the Official Gazette dated 22.10.2020 and entered into force. The procedures and principles regarding the electronic identity verification system carried out with the Republic of Turkey identity card have been designated with the relevant Regulation.
Pursuant to Article 5 of the Regulation, there are contact information, photo, signature, chip, MRZ and barcode fields, biometric data, electronic certificates and security elements on the identity card.
Authentication with new ID cards is done by the Card Access Device (KEC). Authentication can be performed electronically using any card reader that complies with the ISO/IEC 7816 standard. Thus, it can be verified that the card is really issued by the authorized institution and that the citizen is the holder of the card, by entering the card password and reading the information in the card.
However, the biometric data in the ID card cannot be read by standard card readers to protect personal privacy. If the ID authentication of cardholder is to be authenticated using biometric information, it is necessary to use a secure Card Access Device (KEC) approved by the Turkish Standards Institute (TSE). For this purpose, TSE and TÜBİTAK BİLGEM have worked together, “They prepared the standards for “Secure Card Access Devices for T.R. Identity Cards”.
By virtue of the GEM (Secure Access Module) in the Card Access Device (KEC), it can securely communicate with the ID card and read data fields that cannot be reached with standard card readers, such as the personal message of the cardholder and biometric data. KEC performs verification with authentication methods according to the security policy determined by the external application software or the policy server.
Opmerkingen