DE10063489A1 - ID verification procedure - Google Patents

Abstract

The invention relates to a method for controlling ID cards. Said ID cards contain data which can be read by a machine. Firstly, the data is read by a reading device and the card is checked for its authenticity. Then, at least one part of the data and/or data determined therefrom is transmitted to a mobile terminal which is connected to the reading device and which transmits corresponding data to a central data processing service by means of a data transfer service provided by a communication network to which the mobile terminal has access. Personal data which is transmitted by the mobile terminal and which is associated with a registered holder of the identification card is determined and at least one part of the personal data is transmitted to the mobile terminal by means of a data transfer service.

Description

The invention relates to a method for checking identity cards and a system for carrying out such a procedure and an identification document.

Nowadays, people are checked by the police, border guards, etc. usually checks the IDs of the people checked, that certain characteristics of the ID card to be checked first to ensure the authenticity of the ID card determine. Subsequently, they are often sent over the air or through a Telephone call Data of the ID card to a responsible office forwarded, where the data is then entered into a computer and, if applicable, stored data to the controlling persons be transmitted. For controls at a permanent office, for example at a border post or in a police station the ID card data is often entered directly into a computer and it is carried out a query via an internal network.

For checking access authorizations in specially protected A system and a method are described in DE 198 10 817 A1 described, in which the respective persons carry data carriers with them and the access authorizations "online" by a central Processing unit to be checked after previously by a Card reader, that is "offline", ascertained the authenticity of the data carrier has been. However, this procedure is due to the local nature of the Devices not suitable, people and their IDs regardless of location, d. H. check mobile.

It is therefore an object of the present invention to provide a simple and to provide a fast procedure for the verification of identity cards, with which Safe person control is possible anytime and anywhere. Moreover  Appropriate identity cards and a system for carrying out a such procedure can be created.

These tasks are characterized by the features of the independent claims solved.

To carry out the method according to the invention, first of all IDs with machine-readable data required. This is it preferably around ID cards, for example in the form of chip cards or similar. On the one hand, the machine-readable data should be data about the person to whom the ID belongs, for example one Identification number, names and addresses include. Furthermore but should the data also offer the possibility of verifying the authenticity of the Check your ID. In this respect, the term "data" also includes other features of the card, for example unchangeable Hardware features of an integrated circuit or the like within of the ID card.

In addition to the ID cards, there is also a reading device for reading the machine-readable data of the ID card as well as a mobile device, which is connected to the reading device for the transmission of data, needed. This terminal must have a device for the transmission of data via a data transmission service of a communication network exhibit. In addition, a central data processing facility needed, the appropriate means to receive the from the mobile device transferred data as well as means for the determination of personal Data assigned to a registered holder of the ID card having. This central data processing device must also Means to send the found personal data to the mobile terminal by means of the aforementioned data transmission service exhibit.  

According to the invention, a person is then checked using the following method:
First of all, data of the ID card are read by means of a reading device and the authenticity of the ID card is checked by means of the reading device, at least part of the read data preferably being used for this purpose. At least part of the read data and / or data determined therefrom is then transmitted to the mobile terminal connected to the reading device. This in turn transmits the data received by the reading device and / or data determined therefrom to a central data processing device, a data transmission service of a communication network to which the mobile terminal has access being used. The central data processing device then determines personal data which are assigned to a registered holder of the ID card, the data transmitted by the mobile terminal, for example an identification number assigned to the person, being used. Subsequently, at least part of the personal data is transmitted from the central data processing device back to the mobile terminal using the data transmission service of the communication network back to the mobile terminal, which then outputs the received data or processes it further. The personal data can also consist of an image of the card holder or contain such an image. In this case, a comparison can be carried out on site to determine whether the card holder is not only shown on the card, but also whether his picture or appearance also matches the picture stored in the control center.

"Personal data" also means the information that itself within the central data processing facility accessible files there is no entry about the person concerned.

Due to the mobility of the reader and the connected to it mobile devices and the sending of data via the Data transmission service of a communication network using the mobile End devices is a flexible use for personal checks on any Places, especially for personal control in cross-border Traffic, possible at any time. By connecting to the central computer can always access the most current data about the person become. At the same time, "offline", i. H. on site before querying the current Data, the authenticity of the ID is checked by the reader.

The communication network is preferably a Mobile network, with a mobile network according to one being particularly preferred widespread standard, especially according to the conventional GSM Standard or the future GPRS, HSCSD or UMTS standards is used. Accordingly, it is Communication terminal preferably around a mobile radio device.

The method according to the invention can also be designed in such a way that that instead of or in addition to the authenticity check, a biometric Characteristic of the card holder is recorded and transmitted to the headquarters. A comparison of the transmitted biometric can then be carried out in the central office Data are made with the biometric data stored there. The personal data is then reported back to the mobile device.  

Such an extended procedure could dispense with identification, because a clear assignment based on the biometric data in the headquarters of personal data about the person concerned is possible.

The mobile device is to be expanded so that it has a biometric sensor contains. This can be from a fingerprint sensor or a mini camera consist. The biometric data transmitted to the central office are then used for Selection of personal data.

The reading device can be a separate reading device act through a suitable interface with the mobile Communication terminal, in particular the Molbil radio connected becomes. In a particularly preferred embodiment, the But reading device already integrated in the mobile device, d. H. it is, for example, a common mobile radio device, which as An additional feature is an integrated reader for ID cards having.

The invention will now be described with reference to the accompanying Figure explained in more detail. The only figure shows this schematically Method according to the invention when checking an identity card.

As shown in the figure, the present exemplary embodiment is an identification card 1 in the form of a chip card. This chip card 1 has a conventional chip module with a contact surface 9 with a plurality of contacts, via which a reader 5 can come into contact with the chip for data exchange. The card body of the ID card 1 is printed as with conventional ID cards with the name, the current address, an ID number, an issue date and a validity date and, if necessary, with a photo of the ID card holder. These data are preferably also stored within the chip of the identification card 1 .

A communication terminal 2 , in the present exemplary embodiment a mobile radio device 2 , is used to check the identity card 1 . In addition to the usual devices such as a display 6 and a keyboard 7, this mobile radio device 2 has an integrated reading device 5 .

The reading device 5 has an insertion slot 8 , into which the identification card 1 is inserted for checking. Corresponding mating contacts for the contacts of the contact surface 9 are located within the reading device 5 . The data are then read out from the chip module of the identification card 1 via these counter contacts. In addition, the authenticity of the identity card 1 is checked here. For this purpose, for example, a known method can be used, with which chip cards, for example euro check cards, are usually checked in ATMs. The data KD read from the identity card 1 , hereinafter referred to as card-related data KD, or at least part of this data KD, for example an identification number, is sent to a central data processing device 4 via a data transmission service of a mobile radio network 3 to which the mobile radio device 2 has access. for example, a central computer at the Federal Criminal Police Office.

The cellular network 3 is, for example, a conventional GSM, a GPRS, an HSCSD or a UMTS network.

The central data processing device 4 uses the transmitted card-related data KD to ascertain personal data PD which are assigned to the registered holder of the identification card 1 .

This determination can be made, for example, by querying various Computers and databases happen within a computer network.

The ascertained personal data PD are in turn transmitted back to the terminal 2 by the central data processing device 4 via the data transmission service of the mobile radio network 3 . If no personal data PD were found, "no entry" is transmitted as information, for example. The transmitted personal data can then be output by the mobile radio device 2 , for example shown on the display 6 .

The data transmission services can be any transmission service of the respective mobile radio network 3 . A short message service such as SMS, for example, can be used, in particular, when the personal data KD is retransmitted if the data is immediately shown on the display 6 of the mobile device 2 anyway.

The inventive method offers a very simple and Inexpensive way to be relatively quickly available standing system for mobile use for the verification of ID cards and thus build up for personal checks, since the individual needed Techniques, for example the generation of chip cards and reading devices and mobile devices are known as individual components. Stand as well Corresponding mobile networks are already available almost everywhere Available. It is only necessary to have ID cards with corresponding machine-readable data, in particular with data or Features to check the authenticity of the ID cards and conventional mobile devices with interfaces either  Combination with appropriate reading devices or with integrated Readers are built.

The mobile device or the reader connected to it can additionally have a biometric sensor that is not in the figure is shown. In this case, the biometric data of the person to be checked to the headquarters be transmitted. A link to those saved in the control center personal data can also be based solely on the transmitted biometric data.

In particular in the event that the chip or the storage medium is defective is, it is advantageous that the personal data in the headquarters too can be determined using the biometric data.

Personal data can also be entered by entering a Reference number via entry on the keyboard of the mobile device won and transmitted to the headquarters.

For a simple check of a person without high Security requirements an offline review can also take place in which the image data stored in the memory of the ID card on a Display and thus for visual inspection To be available.

Claims (9)

1. A method for checking ID cards, in which the ID cards ( 1 ) each have machine-readable data, with the following method steps:

• - reading the data by means of a reading device ( 5 ),
• - checking the authenticity of an ID card ( 1 ) by means of the reading device ( 5 ),
• - transmitting at least some of the read data and / or data determined therefrom to a mobile terminal ( 2 ) connected to the reading device ( 5 ),
• - Transmission of the data received by the reading device ( 5 ) and / or data determined therefrom (KD) from the mobile terminal ( 2 ) to a central data processing device ( 4 ) using data transmission services of a communication network ( 3 ) to which the mobile terminal ( 2 ) Has access
• - Determination of personal data (PD), which are assigned to a registered holder of the ID card ( 1 ), by the central data processing device ( 4 ) using the data (KD) transmitted by the mobile terminal ( 2 ),
• - Transmission of at least part of the personal data (PD) from the central data processing device ( 4 ) to the mobile terminal ( 2 ) using data transmission services of the communication network ( 3 ) for output and / or further processing.

2. The method according to claim 1, characterized in that the communication network ( 3 ) comprises a mobile radio network. 3. The method according to claim 1 or 2, characterized in that a Mobile network according to the GSM, GPRS, HSCSD or UMTS standard is used.   4. The method according to any one of claims 1 to 3, characterized in that the verification of identity cards in the cross-border traffic is carried out. 5. The method according to any one of claims 1 to 4, characterized in that instead of or in addition to checking the authenticity of the ID card records a biometric feature of the ID card holder and the central data processing device is transmitted. 6. System for performing a method according to any one of claims 1 to 5, comprising
a reading device ( 5 ) for reading machine-readable data from an identification card ( 1 ),
a mobile terminal ( 2 ) which is connected to the reading device ( 5 ) for transmitting data from the reading device ( 5 ) to the terminal ( 2 ) and which has a device for transmitting data via a data transmission service of a communication network ( 3 ), and
a central data processing device ( 4 ) which has means for receiving the data transmitted from the mobile terminal ( 2 ), means for determining personal data (PD) which are assigned to a registered holder of the ID card ( 1 ), and means for sending at least one Has part of the determined personal data (PD) to the mobile terminal ( 2 ) by means of the data transmission service. 7. System according to claim 6, characterized in that the reading device ( 5 ) is integrated in the mobile terminal ( 2 ). 8. System according to claim 6 or 7, characterized in that the mobile terminal ( 2 ) contains a biometric sensor. 9. ID card ( 1 ) with machine-readable data for carrying out a method according to one of claims 1 to 5 or for use in the system according to one of claims 6 to 8.