Biometrics in the eID card

Based on Council Regulation (EC) No 2252/2004 of 13 December 2004 on standards for security features and biometrics in passports and travel documents issued by Member States (Regulation):

  • Each Member State that issues biometric documents with sensitive data (fingerprints, iris, etc.) shall establish a certification authority (CVCA) having responsibility for certifying the right for inspection systems to read such data from the issued documents.
  • Each Member State that inspects biometric documents with sensitive data shall establish a document verification systems certification authority (DVCA) having responsibility for obtaining a permission (a DV certificate) from the relevant CVCA to read data from biometric documents. A public key certificate is stored on every biometric document. Sensitive data can be read from the document only after a chain of certificates are cross-checked between the reader and the chip. Thus it is ensured that both document and reader are genuine, not fraudulent.

In order to ensure personalisation quality control and verification of eID cards at migration offices CVCA and DVCA authorities have been established within the Personalisation of Identity Documents Centre and are functioning since January 2009. These authorities will be used for other Lithuanian biometric documents as well (passport, service passport, foreigner’s passport, stateless person’s travel document, refugee’s travel document).
Based on Regulation’s requirements, country signer’s certification authority (CSCA) and document signer’s certification authority (DSCA) have been established at the Personalisation of Identity Documents Centre and have been functioning since 28 August 2006, the day on which the first Lithuanian biometric passport was issued. CSCA is needed to certify documents signers, and DS is needed to certify the signature of document issuer. During document inspection, CSCA certificate allows to identify the issuing country, while the DS certificate indicates the issuing authority. Certification authorities within the Personalisation of Identity Documents Centre are functioning based on the approved certification regulation, while the certificates are issued and processed based on the approved Rules for Issuance of Certificates.
Solutions for the Lithuanian biometric documents (including fingerprints) have been partially tested on 7-12 September 2008 in Prague during the compatibility tests for biometric documents and inspection systems, where they received good results. The experience has been applied in developing the eID card solution.

Since September 2008 Personalisation of Identity Documents Centre has been issuing new model Civil Servant’s Certificates with a chip.

Last updated: 21-09-2021