The chip in the new National Identity Card

Regulation (EU) 2019/1157 of the Parliament and of the Council of 20 June 2019 requires Member States to introduce, no later than 2 August 2021, ID cards containing biometric data, fingerprints and photographs, in a highly secure electronic component based on cryptographic mechanisms.

A system of this kind already exists for passports and is helping to step up the fight against document fraud and identity theft, by checking that the data on the document is consistent with the data on the chip. This provides additional security for the new identity card and its legitimate holder.

This electronic component contains the following data which are already on the card:

  • the cardholder's vitals: last name, first and middle names, date and place of birth, gender, height, nationality, name authorised by law
  • the domicile or residence of that person or, where applicable, the place where they have elected domicile under the conditions set out in article L. 264-1 of the French Social Action and Family Code, if that person so requests
  • the date of issue and the expiry date of the document
  • the card number
  • the digitised image of the photograph
  • the digitised image of two fingerprints

The data on the chip is protected by cryptographic mechanisms against:

  • falsification and modification of chip data, thanks to an electronic signature from the French government
  • unwanted remote reading, thanks to radio identification, which makes it necessary to have physical access to the document (via a reader)

In addition, the fingerprints contained on the chip are subject to enhanced protection to ensure that they are only read by persons authenticated and authorised by the French government.

To find out more:

 

The data on the chip is read-protected using two-level cryptographic mechanisms that comply with International Civil Aviation Organization (ICAO) standard 9303:

  • (a) the "BAC" (Basic Access Control) standard reinforced by the "PACE" protocol. PACE is a password-authenticated Diffie-Hellman key protocol that provides secure communication and explicit authentication between the chip and the reader.
  • (b) the "EAC" (Extended Access Control) standard, which makes the reading of fingerprints subject to an additional prerequisite (the reading device must be connected to a central inspection system).

Uses to combat identity theft:

  • at border crossings: the security booths installed in airports, as well as in certain train stations and ports, are an alternative to appearing before a police officer (PARAFE gate), where the chip can be read in the identity card (just like the chip in biometric passports).
  • for checks by law enforcement officers: They will be able to read the chip in the identity card.

These uses make it possible to improve the fight against identity theft and document fraud, by checking that the data written on the card matches the data on the chip.

 

Eventually, the aim will be to enable citizens to use this smart card (or passport) as proof of identity to authenticate themselves online.

The electronic component of the chip will not allow the ID card to be geolocated.

The chip in the new National Identity Card


Regulation (EU) 2019/1157 of the Parliament and of the Council of 20 June 2019 requires Member States to introduce, no later than 2 August 2021, ID cards containing biometric data, fingerprints and photographs, in a highly secure electronic component based on cryptographic mechanisms.

A system of this kind already exists for passports and is helping to step up the fight against document fraud and identity theft, by checking that the data on the document is consistent with the data on the chip. This provides additional security for the new identity card and its legitimate holder.

This electronic component contains the following data which are already on the card:

  • the cardholder's vitals: last name, first and middle names, date and place of birth, gender, height, nationality, name authorised by law
  • the domicile or residence of that person or, where applicable, the place where they have elected domicile under the conditions set out in article L. 264-1 of the French Social Action and Family Code, if that person so requests
  • the date of issue and the expiry date of the document
  • the card number
  • the digitised image of the photograph
  • the digitised image of two fingerprints

The data on the chip is protected by cryptographic mechanisms against:

  • falsification and modification of chip data, thanks to an electronic signature from the French government
  • unwanted remote reading, thanks to radio identification, which makes it necessary to have physical access to the document (via a reader)

In addition, the fingerprints contained on the chip are subject to enhanced protection to ensure that they are only read by persons authenticated and authorised by the French government.

To find out more:

 

The data on the chip is read-protected using two-level cryptographic mechanisms that comply with International Civil Aviation Organization (ICAO) standard 9303:

  • (a) the "BAC" (Basic Access Control) standard reinforced by the "PACE" protocol. PACE is a password-authenticated Diffie-Hellman key protocol that provides secure communication and explicit authentication between the chip and the reader.
  • (b) the "EAC" (Extended Access Control) standard, which makes the reading of fingerprints subject to an additional prerequisite (the reading device must be connected to a central inspection system).

Uses to combat identity theft:

  • at border crossings: the security booths installed in airports, as well as in certain train stations and ports, are an alternative to appearing before a police officer (PARAFE gate), where the chip can be read in the identity card (just like the chip in biometric passports).
  • for checks by law enforcement officers: They will be able to read the chip in the identity card.

These uses make it possible to improve the fight against identity theft and document fraud, by checking that the data written on the card matches the data on the chip.

 

Eventually, the aim will be to enable citizens to use this smart card (or passport) as proof of identity to authenticate themselves online.

The electronic component of the chip will not allow the ID card to be geolocated.