cv act ePasslet Java Card applets provide Basic Access Control (BAC) and Extended Access Control (EAC) mechanisms to protect the data stored on the eID's or MRTD's chip from unauthorized access. BAC has been defined and standardized by the International Civil Aviation Organization (ICAO). It requires a border control system or reader to optically initially reading out the machine readable zone (MRZ) and setting up an encrypted communication link using a symmetric key derived from the MRZ data. The more advanced EAC protocol includes a certificate-based authentication of the reader against the document’s chip using Elliptic Curve Cryptography (ECC). EAC has been defined by European bodies lead-managed by the German Federal Office for Information Security (BSI) and passed by the European commission as a standard for access to more sensitive biometric data, like fingerprints.

Added-value applications

The cv act ePasslet concept allows for easy functional enhancements of eID documents or MRTDs. cryptovision provides common added value applications like authentication or digital signatures in a PKCS#15-compliant applet as well as smartcard middleware compliant to PKCS#11, Microsoft CSP/Minidriver and ISO 24727 to access and manage eID security ICs. Furthermore cryptovision also offers software development services to include custom-specific enhancements and special purpose applications.

eID made easy and portable

Due to the underlying Java Card technology, cv act ePasslet applications are completely hardware independent and easily ported to other smart cards. This guarantees smooth transitions between advancing hardware generations and simplifies the change-over to a different smart card platform or hardware supplier.
cv act ePasslet BAC and EAC applets guarantee extended flexibility and investment security. At the same time they provide a performance that is on par with the one of native ROM-integrated functions while occupying only a moderate part of the chip's memory.