Biometrics in Border Management Grand Challenges for Security, Identity and Privacy

Similar documents
TECHNICAL ADVISORY GROUP ON MACHINE READABLE TRAVEL DOCUMENTS (TAG-MRTD)

fraud prevention done right

Machine Readable Travel Documents: Biometrics Deployment. Barry J. Kefauver

EVIDENCE OF IDENTIFICATION

ICAO MRTD & emrtd Specifications: High Level Overview

Biometrics: primed for business use

Second wave of biometric ID-documents in Europe: The Residence Permit for non-eu/eea nationals

MINISTRY OF INTERIOR AND COORDINATION OF NATIONAL GOVERNMENT Department of Immigration Services. East African Community e-passport: Kenyan Journey

e-passports: Uses, Limitations, and Impact on Simplifying Passenger Travel Initiatives

Moving to the Second Generation of Electronic Passports

STANDARDS & SPECIFICATIONS. General Manager, New Zealand Passports Chair, ICAO ICBWG

EDPS Opinion 7/2018. on the Proposal for a Regulation strengthening the security of identity cards of Union citizens and other documents

Singapore's Automated Clearance using Biometrics

Polycarbonate datapage from Trüb Switzerland

The Philippine Department of Foreign Affairs began the issuance of the Philippine epassport (electronic passport) on 11 Aug 2009.

5/6/2009. E toll Database. Census Database. Database. Database. Consumer Balance and Bill Subscriptions. Mobile Connections.

Mykonos Ports EU FastPass Project IISA 2014 Chania

BEST PRACTICES WORKSHOP ON TRAVEL DOCUMENT SECURITY ORGANIZED BY THE OAS/CICTE AND ICAO SAN SALVADOR, EL SALVADOR JUNE 9-11, 2008

BIOMETRICS - WHY NOW?

FastPass and EasyPASS ABC from science to solution

This tutorial also provides a glimpse of various security issues related to biometric systems, and the comparison of various biometric systems.

TRUE IDENTITY IBORDERS BIOTHENTICATE: SECURING BORDERS WITH BIOMETRICS POSITIONING PAPER

CASE STUDY 2 Portuguese Immigration & Border Service

Biometrics how to put to use and how not at all?

TWELFTH SESSION OF THE FACILITATION DIVISION THE MALAYSIAN ELECTRONIC PASSPORT

2 nd Symposium on ICAO-Standard MRTDs, Biometrics and Security

REPORT VOLUME 6 MAY/JUNE 2017

COUNCIL OF THE EUROPEAN UNION. Brussels, 11 November /04 LIMITE VISA 203 COMIX 684 NOTE

Opinion 3/2012 on developments in biometric technologies

Biometrics Technology for Human Recognition

Emergence of multimodal biometrics at the Border Biometrics Institute Asia-Pacific Conference

Hong Kong General Chamber of Commerce Roundtable Luncheon 13 April 2016 Collection and Use of Biometric Data

Introduction-cont Pattern classification

CRS Report for Congress

Mauritania integrated epassport Project. JW ter Hennepe Sales Manager Morpho. October 10, 2012 Montreal

Why Biometrics? Why Biometrics? Biometric Technologies: Security and Privacy 2/25/2014. Dr. Rigoberto Chinchilla School of Technology

THE ICAO MRTD PROGRAMME MAURICIO SICILIANO ICAO

Polycarbonate datapage from Trüb Switzerland

MACHINE READABLE TRAVEL DOCUMENTS (MRTDs)

International Civil Aviation Organization HIGH-LEVEL CONFERENCE ON AVIATION SECURITY (HLCAS) Montréal, 12 to 14 September 2012

COMMISSION OF THE EUROPEAN COMMUNITIES. Proposal for a COUNCIL REGULATION. on standards for security features and biometrics in EU citizens' passports

Identity Management Transcending Markets in Today's Society. October 11th, 2005 Patrick McQuown Adjunct Professor - Georgetown University

Ad-Hoc Query on Implementation of Council Regulation 380/2008. Requested by FI EMN NCP on 10 th September 2009

LESSONS LEARNT CARLOS GÓMEZ HEAD OF R&D AND INNOVATION FNMT-RCM, SPAIN

Canada s FASTER-PrivBio Project Biometrics at the Virtual Border to enhance security and facilitation

Research Article. ISSN (Print)

TECHNICAL ADVISORY GROUP ON MACHINE READABLE TRAVEL DOCUMENTS (TAG-MRTD)

Border Management and People Clearance. The Singapore Experience. Interpol - 5 th Special Meeting of the Counter-Terrorism Committee

1/12/12. Introduction-cont Pattern classification. Behavioral vs Physical Traits. Announcements

Now, in the interest of full disclosure, I must begin my remarks with the following important announcements. These include:

Biometrics how to put to use and how not at all?

EUROPEAN DATA PROTECTION SUPERVISOR

April 4, Privacilla.org is pleased to make the following comments on the proposed Electronic Passport rule.

Biometric Authentication

epassport Based Identity Check

IDEMIA Identity & Security. Providing identity assurance to. secure & simplify lives N.A.

INF 10 eborders Security and Faciliation. Gemalto Government Programs Ion Otazua Gemalto

Bali Process Ad Hoc Group Workshop on Biometrics for Identity Integrity in Immigration India April 2012

E-gate case study: The German EasyPASS Project

CORPORATE HEADQUARTERS

INTRODUCTION 4 Borders under pressure 4 On the move 4 Open for business 4 Experience matters 4

Cross-Border & Regional Identity Management

SECURE REMOTE VOTER REGISTRATION

CHAPTER 2 LITERATURE REVIEW

Smarter European borders through an increased use of biometric recognition

Employing Migrant Workers

Enhanced Driver s Licence (EDL) and Enhanced Identification Card (EIC) Program

IOM, Migration, ID Management and the Responsible Use of Biometrics: Tools for Migration and Border Management

Identity Documents Act

13462/18 BN/cr 1 JAI.1 LIMITE EN

U.S. E-Passports: ETA August 2006: Recent Changes Provide Additional Protection for Biometric Information Contained in U.S. Electronic Passports

Background and Status of the Tanzania National ID System

Chairman Feinstein, Ranking Member Kyl, distinguished members of the Subcommittee:

International Biometrics & Identification Association

THE FUTURE OF epassports AND BORDER CROSSINGS. A look at where technology might take us By Peter Schmallegger, NXP Semiconductors

Case Study. MegaMatcher Accelerator

AGENDA. Focal Ideas A systemic approach. The enrolment The deliverance The control. Needs & Challenges Conclusion Look ahead

International Organization for Migration (IOM) Identity Management and Biometrics

Chief, Legal Division, Office of Passport Policy, Planning and Advisory Services, 2100 Pennsylvania Ave., NW., 3rd Floor, Washington, D.C.

Identity Verification in Passport Issuance

BIOMETRIC RESIDENCE PERMITS General Information for Applicants, Employers and Sponsors

ICAO: THE TECHNICAL ADVISORY GROUP FOR MACHINE READABLE TRAVEL DOCUMENTS

COMMISSION DECISION. of

STRATEGIES AND USEFULNESS OF ID-e (DNI-e) Benito Fernández Fernández, Head secretary at CNP Identification Department.

Meijers Committee standing committee of experts on international immigration, refugee and criminal law

SUB-REGIONAL WORKSHOP ON BEST PRACTICES IN TRAVEL DOCUMENT SECURITY. Welcoming Remarks and Objectives

The Vault. In this issue: Bringing Biometrics into Play in the UK p. 4. digital

Recommended Practice 1701 l

The Canadian epassport Project

German Federal Ministry of the Interior 20 August / 6

Approximately eight months after the terrorist

U.S. Department of Homeland Security: Improved homeland security management and biometrics through the US-VISIT program

Biometrics & Accessibility

Users Guide to the Automated Gates (For Foreign Nationals)

SUMMARY INTRODUCTION. xiii

TECHNICAL ADVISORY GROUP ON MACHINE READABLE TRAVEL DOCUMENTS (TAG/MRTD)

Visa Information System (VIS) FAQs

PRESENTATION TITLE. Lorem ipsum dolor sit amet, consectetur adipiscing elit.

edriver s Licenses The Convergence of Identity in Society and the future role of the Driver s License.

PRIVACY IMPLICATIONS OF BIOMETRIC DATA. Kevin Nevias CISSP, CEH, CHFI, CISA, CISM, CRISC, CGEIT, CCNA, G /20/16

Transcription:

Boston, 14-18 February 2008 AAAS Annual Meeting 1 Joint Research Centre (JRC) The European Commission s Research-Based Policy Support Organisation Biometrics in Border Management Grand Challenges for Security, Identity and Privacy AAAS Annual Meeting 2008 Boston 17 February 2008

Boston, 14 18 February 2008 AAS Annual Meeting 2 Biometric Passports at European Border Controls Pravir Chawdhry Institute for the Protection and Security of the Citizen Joint Research Centre European Commission AAAS Annual Meeting - Boston - 17 February 2008

Boston, 14-18 February 2008 AAAS Annual Meeting 3 About JRC and IPSC Joint Research Centre: Scientific and technical support to the European Commission Conception, development, implementation and monitoring of EU policies Reference centre of science and technology for the EU Institute for the Protection and Security of the Citizen (IPSC) Border Security - Identification and detection technologies - Privacy and identity management - Support successful rollout of epassports in the EU

Boston, 14-18 February 2008 AAAS Annual Meeting 4 About JRC and IPSC

Boston, 14-18 February 2008 AAAS Annual Meeting 5 Outline Motivation & Background epassport Challenges Conclusions

Boston, 14-18 February 2008 AAAS Annual Meeting 6 Motivation Global Security U.S. Visa Waiver Program in 2004 Securing external borders of the EU 11,400km land border + 75,000 km coastline 1,792 external border crossings 300 million crossings per year Keep the bad guys out! Let the citizens and genuine visitors pass Convenience Speed Accuracy Reduce the risk of impersonation Strongly link the passport to the real person

Boston, 14-18 February 2008 AAAS Annual Meeting 7 Passport a brief history First introduced in 1414 (Henry V) Commonly required for international travel since WW-I After WW-II, ICAO introduced worldwide standardization of passports 1980s: machine readable passport P<GBRDOE<<JOHN<<<<<<<<<<<<<<<<<<<<<<<<<<<<<< 83246329<7GBR5012066M1005220<<<<<<<<<<<<<<00 2004: Biometrics in travel documents

Boston, 14-18 February 2008 AAAS Annual Meeting 8 Passport A Personal Asset of Global Value Identity Unique official document for the citizen s identity recognized worldwide Privacy Personal data Security Tamper-proof Non-transferable Identity State Passport Holder Privacy Border Control Security

Boston, 14-18 February 2008 AAAS Annual Meeting 9 Identity and Biometrics Three ways to establish identity 1. Something you have Passport / id card 2. Something you know Secret password 3. Something you are Personal traits / characteristics = Biometrics

Boston, 14-18 February 2008 AAAS Annual Meeting 10 Biometrics something you are Personal traits Unique, distinguishable Physical (face, finger, iris) Behavioural (handwriting, voice, gait) Soft v. hard biometrics

Boston, 14-18 February 2008 AAAS Annual Meeting 11 Biometric Passport Something you are + Something you have All European Union countries since August 2007 Legacy features Printed Page (biodata and photo) Machine readable zone Can be read by human as before

Boston, 14-18 February 2008 AAAS Annual Meeting 12 Biometric Passport now & tomorrow New Features: Embedded RFID Chip and antenna Facial image Fingerprint images (in EU from 2009) Security Improved security markings (infra-red, ultraviolet, watermarks) Access control mechanisms to read the chip Additional protection for sensitive data

Boston, 14-18 February 2008 AAAS Annual Meeting 13 Biometrics Passports in the EU Three Principles 1. FULLY readable at all EU borders by authorized readers (biodata, photo, fingerprint) 2. BASIC readability at all border controls worldwide with the holder s consent (biodata and photo) 3. Resistant to Eavesdropping

Boston, 14-18 February 2008 AAAS Annual Meeting 14 Biometric Passport: Three-way verification 1. Immigration officer: Does the person in front of me look like the one on the printed page? 2. Immigration officer + chip reader: Do the data on the printed page match with the data stored on the chip? 3. Biometric matcher: Do the biometrics of the person match with those stored on the chip?

Boston, 14-18 February 2008 AAAS Annual Meeting 15 Security and Privacy in epassport Access control mechanisms who can read the data on the chip and how much? Holder s consent required Basic Access Control Allows reading of chip data same as on printed page Border control authorities worldwide Extended Access Control Allows reading of all biometric data Only the EU border control authorities

Boston, 14-18 February 2008 AAAS Annual Meeting 16 Basic Access Control (Worldwide) 1. Holder presents the passport 2. Printed page on the passport is scanned (Machinereadable zone) 3. Reader generates a cryptographic key based on the passport data 4. Passport allows the reader to read the basic data using the cryptographic key

Boston, 14-18 February 2008 AAAS Annual Meeting 17 Extended Access Control (EU Only) European Innovation in Security Chip Authentication strong session encryption Terminal Authentication Access restricted to authorized reading terminals Digital certificates from 30+ passport issuing authorities Complex PKI infrastructure

Boston, 14-18 February 2008 AAAS Annual Meeting 18 Overview of Security Features Risks mitigated Security features Shielding Basic access control + Random UID BAC + Passive Authentication BAC + Active Authentication Skimming Eavesdropping Tampering Cloning Tracking Chip Authentication Terminal Authentication

Boston, 14-18 February 2008 AAAS Annual Meeting 19 Political Challenges at EU Borders Internal borders removed Common standard for passports for visa (Schengen area) Several implementations 30+ European countries Issuing passports Managing border control 30+ National border control agencies Securely read all the EU Passports Read all non-eu passports

Boston, 14-18 February 2008 AAAS Annual Meeting 20 epassport Operational Challenges Trust and Security of the passport issuing process Interoperability Future technical evolutions in epassport Electronic visa Immigration endorsement Travel records Further demands Automated border clearance Large-scale, distributed infrastructure Trusted traveller and cross-border processes

Boston, 14-18 February 2008 AAAS Annual Meeting 21 Identity, Privacy and Security Challenges Identity challenges How to acquire new identity Managing partial / multiple identities Privacy challenges Proliferation of biometrics beyond national borders Losing control on own biometrics Security challenges Continuously moving target Counter new threats and vulnerabilities

Boston, 14-18 February 2008 AAAS Annual Meeting 22 Biometrics at JRC Working with EU Member States and technology providers Interoperability testing of epassport protocols harmonization Support to standardization Scientific R&D Multi-modal biometrics Biometric security Bio-Crypto convergence Privacy enhancing technologies Distributed identity management

Boston, 14-18 February 2008 AAAS Annual Meeting 23 A) Same biometric and different sensors Multimodal Imaging Biometrics B) Same biometric, different sensors and multiple views C) Temporal variation of the same biometric with the same sensor.

Boston, 14-18 February 2008 AAAS Annual Meeting 24 Conclusions Passport is just one element of border management The biometric genie is out of the bottle Scientific and technical challenges are just beginning to emerge Aim for a positive sum game between security, privacy and convenience International collaboration is paramount for success

2024 © lawsdocbox.com Privacy Policy | Terms of Service | Feedback