Feeds

Fingerprints to become compulsory for all EU passports

Now two biometrics, and counting...

  • alert
  • submit to reddit

Build a business case: developing custom apps

EU interior ministers are today likely to sign off regulations making fingerprinting a second compulsory biometric for passports. The latest proposed draft regulation will effectively overturn a decision made earlier this year to make only facial image compulsory, and fingerprint optional, and comes in the face of opposition from Sweden Finland, Estonia and Latvia, "could not accept this re-opening of discussions on the second biometric identifier to become mandatory."

The UK has the ability to opt out, but has apparently been supporting a German proposal for a third, "optional" identifier - iris scan. The EU proposal, which can be read at Statewatch, here, ostensibly addresses compliance with ICAO and US requirements for biometric passports and the security of the passport itself. For example, Article 4 (3) specifies that the biometric features shall only be used for verifying "the authenticity of the document" and "the identity of the holder by means of directly available comparable features when the passport or other travel documents are required to be produced by law."

These two basic of objectives of guarding against forgery or tampering, and linking the passport to the individual carrying it can be achieved simply by matching the document up against the individual's biometrics locally. And in fact this is currently the scenario where the preferred international standard of a facial image stands most chance of being reasonably effective, because you're doing a one-to-one rather than a one-to-many check. It is however intended that personal and biometric data will be held both on national databases and on a European Register of issued passports, to be used on the Schengen Information System and to be accessible by law enforcement agencies.

This central database has drawn strong objections on data protection grounds, with the Article 29 working party raising a fundamental objection to its establishment, and stressing that "the sole purpose of the draft Regulation should be verification of the identity of the holder of the travel document which ought to be dealt with by storing biometric data in the travel document itself."

Objections to the legality of the biometric move itself have been raised by the UK Parliament's European Scrutiny Committee, and these objections even seem to be supported by Home Office minister Caroline Flint in correspondence to the Committee. Flint however overcomes her misgivings sufficiently to conclude that the move is in fact legal, while the Committee said it retained "strong doubts."

The addition of fingerprints to the passport's mandatory biometrics is meanwhile helpful from the UK Home Office's point of view, because although the draft regulation is specified as not applying to ID cards, the Home Office views its own plans for an ID system and passports as to all intents and purposes the same thing, with new passports being used initially to build critical mass for the ID system. So it would be helpful if it 'had' to take fingerprints for passports, just as it was helpful that 'having' to (as David Blunkett told us) introduce biometric passports meant that we might as well introduce an ID system, as most of the costs would be incurred in the passport upgrade anyway.

Statewatch editor Tony Bunyan notes that the latest moves mean that 450 million EU citizens will need to attend processing centres to have facial scans and be fingerprinted, and that the intrusion into personal privacy is "compounded by the failure to limit access to the data held and its further use for purposes other than checking on a persons' identity." Statewatch's report and full analysis can be found here. ®

Related stories

Home Office seeks spin doctor to sell cuddly ID card brand
UK ID cards to be issued with first biometric passports
Biometric gear to be deployed in hospitals and GPs' surgeries
UK gov pilots passenger tracking in fight against terror
Tag, track, watch, analyse - UK goes mad on crime and terror IT
Everything you never wanted to know about the UK ID card

Next gen security for virtualised datacentres

More from The Register

next story
Kate Bush: Don't make me HAVE CONTACT with your iPHONE
Can't face sea of wobbling fondle implements. What happened to lighters, eh?
Video of US journalist 'beheading' pulled from social media
Yanked footage featured British-accented attacker and US journo James Foley
Caught red-handed: UK cops, PCSOs, specials behaving badly… on social media
No Mr Fuzz, don't ask a crime victim to be your pal on Facebook
Ballmer leaves Microsoft board to spend more time with his b-balls
From Clippy to Clippers: Hi, I see you're running an NBA team now ...
Online tat bazaar eBay coughs to YET ANOTHER outage
Web-based flea market struck dumb by size and scale of fail
Amazon takes swipe at PayPal, Square with card reader for mobes
Etailer plans to undercut rivals with low transaction fee offer
Assange™: Hey world, I'M STILL HERE, ignore that Snowden guy
Press conference: ME ME ME ME ME ME ME (cont'd pg 94)
Call of Duty daddy considers launching own movie studio
Activision Blizzard might like quality control of a CoD film
US regulators OK sale of IBM's x86 server biz to Lenovo
Now all that remains is for gov't offices to ban the boxes
prev story

Whitepapers

Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Top 10 endpoint backup mistakes
Avoid the ten endpoint backup mistakes to ensure that your critical corporate data is protected and end user productivity is improved.
Top 8 considerations to enable and simplify mobility
In this whitepaper learn how to successfully add mobile capabilities simply and cost effectively.
Rethinking backup and recovery in the modern data center
Combining intelligence, operational analytics, and automation to enable efficient, data-driven IT organizations using the HP ABR approach.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.