EU announces tighter ID card security


The EU has announced it is introducing tighter security for ID cards in order to reduce identity fraud. 

Representatives of the Romanian Presidency of the Council and the European Parliament have reached an informal agreement on a regulation which will strengthen the security of identity cards of EU citizens and of residence documents issued to EU citizens and their non-EU family members. The informal agreement will now be presented to EU ambassadors for confirmation on behalf of the Council.

According to the Council of the EU, the proposed new rules will improve the security of these documents by introducing minimum standards both for the information contained in them and for security features common to all member states that issue them.

“Security throughout the EU can only be achieved by ensuring security in each member state,” says Carmen Daniela Dan, Romanian minister of internal affairs. “The new rules on security standards for ID documents will allow us to more easily detect document fraud and identity theft, making it harder for terrorists and criminals to act, while facilitating free movement of genuine travellers.”

Under the proposed new rules, identity cards will have to be produced in a uniform, credit card format (ID-1), include a machine-readable zone, and follow the minimum security standards set out by the ICAO (International Civil Aviation Organization). They will also need to include a photo and two fingerprints of the cardholder, stored in a digital format, on a contactless chip. ID cards will indicate the country code of the member state issuing them, inside an EU flag.

Identity cards will have a minimum period of validity of five years and a maximum period of validity of 10 years. Member states may issue ID cards with a longer validity for persons aged 70 and above. If issued, ID cards for minors may have a period of validity of less than five years.

The negotiating mandate foresees that the new rules will enter into force two years after adoption, meaning that by this date all new documents issued must meet the new criteria.

In general, existing identity cards which do not meet the requirements will stop being valid 10 years after the date of application of the new rules or at their expiry, whichever is earlier. ID cards issued to citizens aged 70 or more will remain valid until their expiry, provided they meet the security standards and have a machine-readable zone.

The least secure cards which do not meet the minimum security standards or do not have a machine-readable zone will expire within five years.

The proposed new rules include strong data protection safeguards, to ensure the information collected does not fall into the wrong hands. In particular, national authorities will have to ensure the security of the contactless chip and the data stored in it, so that it cannot be hacked or accessed without permission.

In addition, the new rules refer only to the security and information to be stored in the ID cards. They do not provide the legal basis for the creation of new databases at national or EU level, which is a matter of national legislation that needs to be in full compliance with data protection rules.

The proposed rules also specify the minimum information to be contained in residence documents issued to EU citizens, and harmonise the format and other specifications of residence cards issued to non-EU family members of EU citizens.

In recent years, common EU security standards have been introduced for identity and travel documents including passports, visas and residence permits for third country nationals. However, under existing rules, the security levels of national ID cards and resident documents for EU citizens and their family members still vary significantly, increasing the risk of document fraud.

The new rules are set out in a draft regulation which was proposed by the Commission on 17 April 2018.

The proposed rules do not require member states to introduce identity cards or residence documents if they are not foreseen under national law.

Related articles

Subscribe to our free newsletter
Follow us on Twitter
Join us on LinkedIn

EU announces tighter ID card security
EU announces tighter ID card security

Latest Features & Interviews

Interview: Experian on biometrics and digital ID

In this interview, Planet Biometrics caught up with Mike Gross, Head of Global Fraud & ID Production Innovation at Experian, to hear his views on the evolution of identity in 2020 and beyond.

Interview: HID on CID

HID VP & Managing Director Jessica Westerouen van Meeteren told Security Document World about how the firm is addressing CID trends.

SDW 2018 Interview: secunet on EES

In this interview, Frank Steffens, Principal in the Homeland Security division of Germany’s secunet tells us about their approach to the biometric Entry/Exit System (EES) planned in Europe.

More articles >>
Share |