Verifying someone’s identity is essential to prevent identity fraud and to enable trustworthy digital services. ReadID® allows you to verify identities in a smart and simple way using our new mobile identity verification technology. ReadID® leverages what people already have: government-issued identity documents with contactless RFID chips and NFC-capable smartphones. NFC First is the right approach to mobile identity verification.
Our ReadID® products all share the following unique features:
Verify ID document authenticity
Modern passports (e-passports) and similar identity document have a contactless RFID chip. This chip is standardized as part of Doc 9303, Machine Readable Travel Documents, by the International Civil Aviation Organization (part of the United Nations). The information on the chip is digitally signed by the issuing country and has protection against cloning. ReadID provides the complex cryptography that is needed to verify the authenticity of and information on the chip, thus providing a smart and simple way to verify the authenticity of the identity document within seconds (passive and active authentication). Users do not need to be trained to verify authenticity and ReadID can even be used remotely, e.g., for online consumer onboarding.
Read Personal Information
The contactless chip in passports and similar documents contains reliable personal information about the holder, including their full name, birthdate and nationality. This information has been provided by the issuing country, based on strict government identity verification processes. Besides providing very reliable personal information, a second major advantage is that there is no manual input, so there can be no mistakes and there is more user convenience.
In addition, the chip contains a high-resolution photo, suitable for face matching. Because this photo is of a higher quality than the photo printed in the identity document, using the photo from the chip can reduce look-alike fraud. The personal information and photo are signed digitally, they cannot be altered.
Optical Character Recognition of the MRZ
The contactless chip in passports is protected against unauthorized access via a security mechanism that can be unlocked using the document number, date of expiry and date of birth as a password. This information is part of the so-called Machines Readable Zone (MRZ), which consists of the two lines at the bottom of the passport. Since entering this information manually is cumbersome and error-prone for the user, we provide the option of scanning the MRZ using the the smartphone camera. We guide the user to aim the camera properly and then use Optical Character Recognition (OCR) technology to scan the information needed from the MRZ to gain access to the chip.
Common Smartphones with NFC
ReadID® works on almost every smartphone and does not rely on add-on hardware. All it needs is NFC, which is supported by the vast majority of modern smartphones. Contactless payments are the primary driver for this. We support Android and from iOS 13 onwards also iPhones (iPhone 7 and up). ReadID® was tested successfully with over 500 different Android smartphones, and all recent iPhones.
Easy Integration through APIs
ReadID® is provided as configurable software that you can integrate into your own apps and backend systems. We provide an SDK and APIs (Application Programming Interfaces) to make this possible. ReadID® thus becomes part of the software that you provide to your users, they won’t even be aware that the mobile verification technology is provided by us. This allows you to fully customize what personal information you want to read and which verifications you want to carry out, giving you complete control over your customer journey. For customers that prefer a ready-to-use app instead of using our SDK we have ReadID Ready.
SaaS and Client-only
We provide ReadID® in two different versions: SaaS and client-only. For the SaaS version, the client-side runs on the smartphone, sending the information being read to the server side, where it is read and verified. The server side is hosted by InnoValor in a public cloud: the SaaS version. Since ReadID® is provided as SaaS, our customers do not have to worry about updates and security. The second version is the client-only version, where all functionality runs on the smartphone. For most customers, and especially for self-service onboarding use cases, the SaaS version is best suited since this is more resilient than the client-only version against compromised smartphones.
The information on the chip is digitally signed by the issuing country. Document verification, also known as passive authentication, depends on a store of trusted root certificates. The authenticity of a document can only be established if the document is (ultimately) signed using a private key of which the corresponding certificate is known. These root certificates are called Country Signer Certificate Authority (CSCA) certificates. Although the CSCA certificates are public, there is not one single public source for CSCA certificates. ReadID integrates several existing sources of CSCA certificates and is able to integrate with non-public sources depending on your situation.