TryTRY
BuyBUY
  • newsletter
  • contact
  • corporate
  • careers
Utimaco
de
TRYour free HSM simulator
BUYget a quote
  • home
  • solutions
  • products
  • services
  • blog
  • downloads
  • partners
  • company

Utimaco Portal

Here you will find everything you need as a partner and customerLogin required

  • home
  • solutions
    • industries
      • banking and financial services
        • acquirer
        • card scheme
        • issuer
        • hsm-as-a-service
      • government
        • federal government
      • cloud
        • cloud-based innovation
        • multi-cloud agility
        • building trust in the cloud
      • connected car (V2V)
      • automotive solutions
      • road infrastructure (V2I), toll collection & ITS
      • industrial IoT & manufacturing
      • energy & utilities
      • lottery & gaming
      • media & entertainment
      • telecommunications
    • applications
      • authentication
      • blockchain
      • code signing
      • database encryption
        • the keys to building a platform of trust in cryptography
      • document signing
      • key injection
      • post-quantum crypto agility
      • public key infrastructure (PKI)
        • EJBCA
      • random number generator (RNG)
    • compliance
      • certifications & approvals
        • Common Criteria (CC)
        • FIPS 140-2
      • compliance & standardization
        • FISMA, FedRAMP, and FICAM
        • Certificate Policy of the Smart Metering PKI
        • eIDAS
        • GDPR
        • PCI DSS
        • Privacy Shield
  • products
    • general purpose HSM
      • SecurityServer Se Gen2
      • SecurityServer CSe
      • Block-safe
      • CryptoServer CP5 (eIDAS & CC)
      • CryptoServer Cloud
      • TimestampServer
      • Q-safe
    • payment HSM
      • Atalla AT1000
      • PaymentServer Se Gen2
      • PaymentServer CSe
      • Secure Configuration Assistance (SCA)
      • QuickStart Services
      • u.cloud – Atalla PaymentHSMaaS
    • key management
      • Enterprise Key Management
    • Software Development Kit (SDK)
      • CryptoServer SDK
      • CryptoScript SDK
    • HSM simulators
      • Block-safe HSM simulator
      • CryptoServer CP5 simulator (eIDAS & CC)
      • SecurityServer simulator
      • Q-safe HSM simulator
    • form factor
      • LAN appliance
      • PCIe card
      • cloud, “HSM as a Service”
    • KeyBRIDGE
      • KeyBRIDGE POI
      • KeyBRIDGE RKD
      • KeyBRIDGE eKMS
      • TokenBRIDGE™
    • u.trust Anchor
      • u.trust Anchor CSAR
      • u.trust Anchor High Performance HSM
    • u.trust 360
  • services
    • consultancy
      • PQC consultancy
    • support
    • managed services
      • Key Exchange & Escrow Service (KEES™)
    • professional services
    • Utimaco Academy
  • blog
  • downloads
    • brochures
    • data sheets
    • case studies
    • white papers
    • webinars
    • e-books
      • PQC for Dummies e-book
      • HSM for Dummies e-book
    • Utimaco Portal
      • integration guides
      • knowledge base
  • partners
    • Partner Program
      • technology partner
    • Partner Locator
  • company
    • about Utimaco
      • legal
      • terms & conditions
      • privacy
        • cookie-policy
    • locations
    • news
      • newsletter
    • events
    • contact
    • careers
    • investors
    • utimaco management
    • business ethics
    • memberships and certifications
    • engagement in research
  • home
  • solutions
    • industries
      • banking and financial services
        • acquirer
        • card scheme
        • issuer
        • hsm-as-a-service
      • government
        • federal government
      • cloud
        • cloud-based innovation
        • multi-cloud agility
        • building trust in the cloud
      • connected car (V2V)
      • automotive solutions
      • road infrastructure (V2I), toll collection & ITS
      • industrial IoT & manufacturing
      • energy & utilities
      • lottery & gaming
      • media & entertainment
      • telecommunications
    • applications
      • authentication
      • blockchain
      • code signing
      • database encryption
        • the keys to building a platform of trust in cryptography
      • document signing
      • key injection
      • post-quantum crypto agility
      • public key infrastructure (PKI)
        • EJBCA
      • random number generator (RNG)
    • compliance
      • certifications & approvals
        • Common Criteria (CC)
        • FIPS 140-2
      • compliance & standardization
        • FISMA, FedRAMP, and FICAM
        • Certificate Policy of the Smart Metering PKI
        • eIDAS
        • GDPR
        • PCI DSS
        • Privacy Shield
  • products
    • general purpose HSM
      • SecurityServer Se Gen2
      • SecurityServer CSe
      • Block-safe
      • CryptoServer CP5 (eIDAS & CC)
      • CryptoServer Cloud
      • TimestampServer
      • Q-safe
    • payment HSM
      • Atalla AT1000
      • PaymentServer Se Gen2
      • PaymentServer CSe
      • Secure Configuration Assistance (SCA)
      • QuickStart Services
      • u.cloud – Atalla PaymentHSMaaS
    • key management
      • Enterprise Key Management
    • Software Development Kit (SDK)
      • CryptoServer SDK
      • CryptoScript SDK
    • HSM simulators
      • Block-safe HSM simulator
      • CryptoServer CP5 simulator (eIDAS & CC)
      • SecurityServer simulator
      • Q-safe HSM simulator
    • form factor
      • LAN appliance
      • PCIe card
      • cloud, “HSM as a Service”
    • KeyBRIDGE
      • KeyBRIDGE POI
      • KeyBRIDGE RKD
      • KeyBRIDGE eKMS
      • TokenBRIDGE™
    • u.trust Anchor
      • u.trust Anchor CSAR
      • u.trust Anchor High Performance HSM
    • u.trust 360
  • services
    • consultancy
      • PQC consultancy
    • support
    • managed services
      • Key Exchange & Escrow Service (KEES™)
    • professional services
    • Utimaco Academy
  • blog
  • downloads
    • brochures
    • data sheets
    • case studies
    • white papers
    • webinars
    • e-books
      • PQC for Dummies e-book
      • HSM for Dummies e-book
    • Utimaco Portal
      • integration guides
      • knowledge base
  • partners
    • Partner Program
      • technology partner
    • Partner Locator
  • company
    • about Utimaco
      • legal
      • terms & conditions
      • privacy
        • cookie-policy
    • locations
    • news
      • newsletter
    • events
    • contact
    • careers
    • investors
    • utimaco management
    • business ethics
    • memberships and certifications
    • engagement in research

Home / News / Utimaco Hardware Security Module facilitates secure border controls in the Netherlands

Utimaco Hardware Security Module facilitates secure border controls in the Netherlands

June 11, 2018
  • Key component: In the infrastructure for an automated border control system of electronic passports, Utimaco’s CryptoServer acts as the root of trust
  • Sophisticated: Hardware Security Modules (HSM) are used in terminal authentication, enforcing multi-level access to biometric data, and supporting all the necessary algorithms for ICAO compliance
  • Continued: The successful cooperation with the Dutch Ministry of Justice and Security reaches a new stage

Aachen, June 11, 2018 – Utimaco, manufacturer of Hardware Security Module (HSM) technology, equips the automated ePassport control system in the Netherlands with CryptoServers. These HSMs are used for terminal authentication. While examining the electronic ID card the HSM verifies in multiple stages whether the terminal in question has the right to access sensitive personal data such as fingerprints. The protection of personal data and privacy are top priorities within the infrastructure set up by the Dutch Judicial Information Service.

“We have been using Utimaco HSMs for more than fifteen years now. Since the start, they have run continuously at a high-performance level, despite the fact that we’ve extended the requirements,” says Jeen de Swart, Senior Information Architect at the Judicial Information Service run by the Dutch Ministry of Justice and Security.

Requirement profile for an automated control of electronic ID documents

More specifically, the Judicial Information Service was faced with the challenge of introducing an automatic border control system, which passengers with an electronic passport (ePassport) can use in transit traffic, at airports and at seaports. The system is designed to process the registration and verification of electronic passports safely and quickly, thereby shortening the waiting time for passengers. In addition, the focus is on complying with the guidelines developed by the International Civil Aviation Organization (ICAO). The ICAO regulates, among other things, the handling of machine-readable travel documents, which include the ePassport. This electronic passport contains a chip with biometric data and the unique digital signature of the issuing country. When checking an ePassport at an international border, the chip is verified with the issuing country’s certification authority.

The root of trust in the verification infrastructure

The Dutch verification infrastructure for ePassports therefore places high demands on HSMs. Finally, data throughput, performance and high availability as well as the high quality of the Utimaco CryptoServer convinced the Dutch Ministry to choose this product line. “We’ve been using some of the modules in the context of this project for seven years now, and they are reliable and fully comply with the requirements,” says Jeen de Swart, the architecture and development manager of ePassport automatic control.

The reliability of the HSM from Utimaco is reflected, among other things, in the fact that the devices are used worldwide in many countries. “Our CryptoServer acts as root of trust in the verification infrastructure, supporting all the algorithms needed to establish ICAO compliance. In addition, the HSM used creates a high-security environment that can be used for other IT applications,” says Malte Pollmann, CEO of Utimaco, about the outcome of the joint project.

“So far, we’ve had very good experiences working with Utimaco. This fact, their expertise in the area of ICAO, as well as their comprehensive support of the required algorithms, were the decisive factors for choosing to collaborate with them for this project,” says Cor de Jonge, manager of the PKI department of the Judicial Information Service as part of the Ministry of Justice and Security in the Netherlands.

For more information on how Utimaco HSMs can help governments and government agencies, click here.

Background info: The principle of multi-level access to biometric data in the ePassport

The deployed infrastructure ensures the authenticity and integrity of the data and provides authorities with the basis to control electronic identifications such as the e-passport – via active and passive authentication of the chip data. Basic Access Control (BAC) and Supplemental Access Control (SAC) both are deployed on a standard basis, as well as Password Authenticated Connection Establishment (PACE) ID standards and the combination with Extended Access Control (EAC). This results in a multi-stage verification of an ePass: BAC / SAC actively authenticate whether the data on the chip is genuine and unadulterated. Passive authentication checks the digital signature, for which EAC builds a “security tunnel” between the reading terminal and the chip. EAC therefore has to ensure that only authorized terminals access and read the chip data. Utimaco’s HSM technology, the CryptoServer, provides the root of trust within the protocols that are responsible for reading personal data, such as fingerprints.

Utimaco CryptoServer

The Utimaco CryptoServer implements the secure authentication of the reading terminals in the Dutch ePass control system and ensures ICAO compliance.

 

Malte Pollmann, CEO Utimaco

Malte Pollmann, CEO Utimaco

About the Judicial Information Service in the Dutch Ministry of Justice and Security

The Judicial Information Service is a Dutch governmental organization concerned with providing correct and reliable information about the identity of a person. The Judicial Information Service does not only serve as a trustworthy source of information, but also contributes to the creation of systems and information chains which can identify persons or documents. The Judicial Information Service initiated the creation of a system that verifies official documents by means of the chips on eDocuments and fingerprints on eDocuments (also known as the Extended Access Control (EAC)). The appropriate infrastructure is an essential asset to officers in the field to verify the integrity and authenticity of these chips and fingerprints. This infrastructure is exclusively to be controlled by a trusted government source and needs to be fully compliant to (international) ICAO and EU standards to cover all issued documents.

About Utimaco

Utimaco is a leading manufacturer of Hardware Security Modules (HSMs) that provide the Root of Trust to many industries, from financial services and payment to the automotive industry, cloud services and the public sector. We keep cryptographic keys and digital identities safe protecting your critical digital infrastructures and high value data assets. Our products enable innovation and support the creation of new business by helping to secure critical business data and transactions.

Founded in 1983, today Utimaco HSMs are deployed across more than 80 countries in more than 1,000 installations. Utimaco employs a total of 200 people, with sales offices in Germany, the US, the UK and Singapore. For more information, visit https://hsm.utimaco.com/.

Follow us: LinkedIn, Twitter, YouTube.

 

Contact Utimaco:
Utimaco
Alexandra Guennewig
Germanusstraße 4
52080 Aachen
Phone: +49 241 1696-200
E-Mail: pr@utimaco.com
Contact Agency:
Akima Media
Jan Gutheil
Garmischer Str. 8
80339 München
Phone: +49 89 959 18-0
E-Mail: utimaco@akima.de

 

Back to overview

Stay on top of our news
Don’t miss out on any Utimaco updates

Partners

Ascertia - Utimaco Hardware Security Modules Partner Throughwave (Thailand) Co.,Ltd - Utimaco Hardware Security Modules Partner Fortiedge Pte Ltd. Baas Control s.r.o. CertiSur S.A. Synergy Computers (Pvt.) Ltd. - Utimaco Hardware Security Modules Partner intarsys AG PrimeKey Labs GmbH Primekey Solutions AB SecureMetric Technology Sdn. Bhd. Versasec CREA plus d.o.o. Softline Solutions GmbH Real security d.o.o. Nexus - Utimaco Hardware Security Modules Partner CEGA Security Cryptomathic Inc. ESYSCO Sp. z o.o. Envoy Data Corporation - Utimaco Hardware Security Modules Partner Nexus - Utimaco Hardware Security Modules Partner MTG - Utimaco Hardware Security Modules Partner Cryptomathic A/S MALKOM D.Malińska i Wspólnicy s.j. Cogito Group Pty Ltd Komar Consulting Inc. - Utimaco Hardware Security Modules Partner EUROPEAN DYNAMICS SA. MIcrosec Perceptus-sp.-z-o.-o. Cryptomathic GmbH Utimaco HSM - QuintessenceLabs Utimaco HSM - PTESA_profesionales en transacciones electronicas Cyber Armor Pte Ltd Safesoft Kft. Skytech Computing Solutions Limited. - Utimaco Hardware Security Modules Partner CewTec S.A. VAR Group SpA - Utimaco Hardware Security Modules Partner Microexpert Limited Astel (UK) Ltd. - Utimaco Hardware Security Modules Partner Abrantix AG Compumatica secure networks GmbH IQuantics Corp Compumatica secure networks B.V. Macroseguridad Secure Source Distribution (M) Sdn Bhd - Utimaco Hardware Security Modules Partner Fornetix - Utimaco Hardware Security Modules Partner Nexus Technology GmbH Telegrupp AS AKEA S.A. - Utimaco Hardware Security Modules Partner CREAplus Italia S.r.l Clearkey Consulting - Utimaco Hardware Security Modules Partner Encryption Consulting LLC E-Sign S.A. Utimaco HSM - InfoGuard Swiss Cyber Security PETA (Thailand) Co., Ltd. cv cryptovision GmbH JJNet International Co., Limited - Utimaco Hardware Security Modules Partner PKI Solutions Inc. Altacom UAB Thomas-Krenn.AG Rohde & Schwarz Cybersecurity GmbH
Find a partner

Share this page

EMEA

Utimaco IS GmbH
Germanusstraße 4
52080 Aachen
Germany
Phone: + 49 241 1696 200

Americas

Utimaco Inc.
900 E Hamilton Ave., Suite 400
Campbell, CA 95008
USA
Phone: +1 844 UTIMACO

APAC

Utimaco IS Pte Limited
80 Raffles Place,
#32-01, UOB Plaza
Singapore 048624
Phone: +65 6622 5347

Utimaco

  • support
  • corporate
  • careers
  • legal
  • terms & conditions
  • privacy
  • cookie-policy
© 2021
to top
  • home
  • solutions
    • industries
      • banking and financial services
        • acquirer
        • card scheme
        • issuer
        • hsm-as-a-service
      • government
        • federal government
      • cloud
        • cloud-based innovation
        • multi-cloud agility
        • building trust in the cloud
      • connected car (V2V)
      • automotive solutions
      • road infrastructure (V2I), toll collection & ITS
      • industrial IoT & manufacturing
      • energy & utilities
      • lottery & gaming
      • media & entertainment
      • telecommunications
    • applications
      • authentication
      • blockchain
      • code signing
      • database encryption
        • the keys to building a platform of trust in cryptography
      • document signing
      • key injection
      • post-quantum crypto agility
      • public key infrastructure (PKI)
        • EJBCA
      • random number generator (RNG)
    • compliance
      • certifications & approvals
        • Common Criteria (CC)
        • FIPS 140-2
      • compliance & standardization
        • FISMA, FedRAMP, and FICAM
        • Certificate Policy of the Smart Metering PKI
        • eIDAS
        • GDPR
        • PCI DSS
        • Privacy Shield
  • products
    • general purpose HSM
      • SecurityServer Se Gen2
      • SecurityServer CSe
      • Block-safe
      • CryptoServer CP5 (eIDAS & CC)
      • CryptoServer Cloud
      • TimestampServer
      • Q-safe
    • payment HSM
      • Atalla AT1000
      • PaymentServer Se Gen2
      • PaymentServer CSe
      • Secure Configuration Assistance (SCA)
      • QuickStart Services
      • u.cloud – Atalla PaymentHSMaaS
    • key management
      • Enterprise Key Management
    • Software Development Kit (SDK)
      • CryptoServer SDK
      • CryptoScript SDK
    • HSM simulators
      • Block-safe HSM simulator
      • CryptoServer CP5 simulator (eIDAS & CC)
      • SecurityServer simulator
      • Q-safe HSM simulator
    • form factor
      • LAN appliance
      • PCIe card
      • cloud, “HSM as a Service”
    • KeyBRIDGE
      • KeyBRIDGE POI
      • KeyBRIDGE RKD
      • KeyBRIDGE eKMS
      • TokenBRIDGE™
    • u.trust Anchor
      • u.trust Anchor CSAR
      • u.trust Anchor High Performance HSM
    • u.trust 360
  • services
    • consultancy
      • PQC consultancy
    • support
    • managed services
      • Key Exchange & Escrow Service (KEES™)
    • professional services
    • Utimaco Academy
  • blog
  • downloads
    • brochures
    • data sheets
    • case studies
    • white papers
    • webinars
    • e-books
      • PQC for Dummies e-book
      • HSM for Dummies e-book
    • Utimaco Portal
      • integration guides
      • knowledge base
  • partners
    • Partner Program
      • technology partner
    • Partner Locator
  • company
    • about Utimaco
      • legal
      • terms & conditions
      • privacy
        • cookie-policy
    • locations
    • news
      • newsletter
    • events
    • contact
    • careers
    • investors
    • utimaco management
    • business ethics
    • memberships and certifications
    • engagement in research