Mobile Document SDK

Verify people identity

The Keyless Mobile Document SDK allows to extract data from identity documents.

The Keyless Mobile Document SDK performs:

MRZ Verification: Extract and validate data from a passport or ID card's Machine Readable Zone - MRZ
Establish a secure connection with the document’s NFC chip using protocols such as Basic Access Control (BAC), Password Authenticated Connection Establishment (PACE), or token-based
Authentication Checks:
- Chip Authentication (CA): Establish a secure communication channel and verify the authenticity of the chip by performing an asymmetric cryptographic operation using a key pair unique to the chip. This also results in session keys used for secure messaging.
- Passive Authentication (PA) verifies the integrity and authenticity of the data stored on the chip by validating digital signatures using the issuing country’s Document Signer (DS) certificate, whose authenticity is in turn verified using the corresponding Country Signing Certificate Authority (CSCA) certificate. This ensures that the data has not been tampered with and originates from a trusted source.
- Active Authentication (AA): Detect cloned chips by challenging the chip to sign a random nonce with its private key. The response is verified using the corresponding public key stored in the chip, proving the chip possesses the original private key.
Extract information from chip such as person details and photo.

Last updated 1 day ago

Was this helpful?

Verify people identity

The Keyless Mobile Document SDK allows to extract data from identity documents.

The Keyless Mobile Document SDK performs:

MRZ Verification: Extract and validate data from a passport or ID card's Machine Readable Zone - MRZ
Establish a secure connection with the document’s NFC chip using protocols such as Basic Access Control (BAC), Password Authenticated Connection Establishment (PACE), or token-based
Authentication Checks:
- Chip Authentication (CA): Establish a secure communication channel and verify the authenticity of the chip by performing an asymmetric cryptographic operation using a key pair unique to the chip. This also results in session keys used for secure messaging.
- Passive Authentication (PA) verifies the integrity and authenticity of the data stored on the chip by validating digital signatures using the issuing country’s Document Signer (DS) certificate, whose authenticity is in turn verified using the corresponding Country Signing Certificate Authority (CSCA) certificate. This ensures that the data has not been tampered with and originates from a trusted source.
- Active Authentication (AA): Detect cloned chips by challenging the chip to sign a random nonce with its private key. The response is verified using the corresponding public key stored in the chip, proving the chip possesses the original private key.
Extract information from chip such as person details and photo.

Last updated 1 day ago

Was this helpful?