Verifying someone’s identity is essential to prevent identity fraud and to enable trustworthy digital services. ReadID allows you to verify identities in a smart and simple way using our new mobile identity verification technology. ReadID leverages what people already have: government-issued identity documents with contactless RFID chips and NFC-capable smartphones. ReadID has the following unique features:
Verify ID document authenticity
Modern passports (e-passports) and similar identity document have a contactless RFID chip. This chip is standardized as part of Doc 9303, Machine Readable Travel Documents, by the International Civil Aviation Organization (part of the United Nations). The information on the chip is digitally signed by the issuing country and has protection against cloning. ReadID provides the complex cryptography that is needed to verify the authenticity of and information on the chip, thus providing a smart and simple way to verify the authenticity of the identity document within seconds (passive and active authentication). Users do not need to be trained to verify authenticity and ReadID can even be used remotely, e.g., for online consumer onboarding.
Read Personal Information
The contactless chip in passports and similar documents contains reliable personal information about the holder, including their full name, birthdate and nationality. This information has been provided by the issuing country, based on strict government identity verification processes. Besides providing very reliable personal information, a second major advantage is that there is no manual input, so there can be no mistakes and there is more user convenience.
In addition, the chip contains a high-resolution photo, suitable for face recognition. Because this photo is of a higher quality than the photo printed in the identity document, using the photo from the chip can reduce look-alike fraud. The personal information and photo are signed digitally, they cannot be altered.
Easy Integration through APIs
ReadID is provided as configurable software that you can integrate into your own apps and backend systems. We provide APIs (Application Programming Interfaces) to make this possible. ReadID thus becomes part of the software that you provide to your users, they won’t even be aware that the mobile verification technology is provided by us. This allows you to fully customize what personal information you want to read and which verifications you want to carry out, giving you complete control over your customer journey.
Optical Character Recognition of the MRZ
The contactless chip in passports is protected against unauthorized access via a security mechanism that can be unlocked using the document number, date of expiry and date of birth as a password. This information is part of the so-called Machines Readable Zone (MRZ), which consists of the two lines at the bottom of the passport. Since entering this information manually is cumbersome and error-prone for the user, we provide the option of scanning the MRZ using the the smartphone camera. We guide the user to aim the camera properly and then use Optical Character Recognition (OCR) technology to scan the information needed from the MRZ to gain access to the chip.
Client Server, SaaS and Client-only
We provide ReadID in three different versions: client-server, SaaS and client-only. For the client-server version, the client-side runs on the smartphone, sending the information being read to the server side, where it is read and verified. The server side can be hosted by our customers, giving you full control over security and availability. We also provide a SaaS solution, where ReadID hosts the server side, so you do not have to worry about updates and security. The third version is a client-only version, where all functionality runs on the smartphone. For most customers, either the client-server version or the SaaS version are best suited, since there are more resilient than the client-only version in terms of malware on the smartphone.
Common Smartphones with NFC
ReadID works on common smartphones and does not rely on add-on hardware. All it needs is NFC, which is supported by the vast majority of modern smartphones. Contactless payments are the primary driver for this. We currently only support Android: although iPhones have NFC since the iPhone 6, Apple does not yet allow third-party developers to access the NFC capabilities. ReadID was tested successfully with over 250 different Android smartphones. We will support other platforms depending on customer demand.
The information on the chip is digitally signed by the issuing country. Document verification, also known as passive authentication, depends on a store of trusted root certificates. The authenticity of a document can only be established if the document is (ultimately) signed using a private key of which the corresponding certificate is known. These root certificates are called Country Signer Certificate Authority (CSCA) certificates. Although the CSCA certificates are public, there is not one single public source for CSCA certificates. ReadID integrates several existing sources of CSCA certificates and is able to integrate with non-public sources depending on your situation.