kriptex

KRIPTEX®
Electronic Identity Verification System ver 1.0

Elektronik Kimlik Doğrulama Sistemi (EKDS)

The Server Technologies that make up the KRIPTEX® Electronic Identity Verification System (EKDS) is compliant with the issued standards of the Turkish Standards Institution (TSE). It includes all of the server applications that can verify the role, which determines the identity parameters and policies to be used by the Secure Smartcard Reader (KEC), which controls the authenticity of authentication notifications generated by the KEC.

This system performs authentication feature while a public service is served to a citizen. By this way, the EKDS verifies whether the citizen who attends the service and the person who serves it is the ones that are declared to be.

EKDS includes identification and authentication of the Republic of Turkey Electronic Identity Card (TCKK) issued in the electronic environment, access to the TCKK card by the role verification, and e-signature upload services to the TCKK.

Turkish Standards Documents related to The Electronic Identity Verification System

TSE

EKDS Platform Components

Institutions that want to use KRIPTEX®KEC in their branches or in their service points for identity verification purposes, they can also provide EKDS Platform components that they have to establish in their own Information Technology infrastructures from a single source. KRIPTEX provides all of them and solves custom solutions related needs.

The KRIPTEX®EKDS Platform primarily consists of three main servers;

1. KRIPTEX®Identity Verification Server

2. KRIPTEX®Identity Verification Policy Server

3. KRIPTEX®Role Verification Server

Besides, the below list shows optional components which are required to execute an end-to-end EKDS Platform solution.

1. KRIPTEX®KEC Management System Server

2. KRIPTEX®KEC LAN Access Server

3. KRIPTEX®KEC WAN Access Server (Mobile KEC)

4. KRIPTEX®TCKK Service API

5. KRIPTEX®NES Management System Service

6. KRIPTEX®E-Signature Creation-Validation Service



ELECTRONIC IDENTITY VERIFICATION SYSTEM - MAIN SERVERS

EKDS KDS

KRIPTEX® IDENTITY VERIFICATION SERVER

Kimlik Doğrulama Sunucusu (KDS)

It is the server software that verifies the Identity Verification Assertion (IVA) on behalf of the institution receiving service with the Republic of Turkey Electronic Identity Cards (TCKK) on KEC Devices.

KRIPTEX® IDENTITY VERIFICATION POLICY SERVER

Kimlik Doğrulama Politika Sunucusu (KDPS)

It is the server software where the Identity Verification Policy (IVP) methods definitions are priorly defined related for organizational policies. Within the scope of the Electronic Identity Verification System (EKDS), it provides to use and manage the identity verification methods during the identity verification process in a secure manner.

EKDS KDPS
EKDS RS

KRIPTEX® ROLE VERIFICATION SERVER

Rol Doğrulama Sunucusu (RDS)

It is the server software that will enable the authorized institution to establish a secure session performing role validation using role-based protocols to authenticate itself to the Republic of Turkey Electronic Identity Card (TCKK). Role certificate related keys must be stored in a secure environment such as Host Security Module (HSM).

ELECTRONIC IDENTITY VERIFICATION SYSTEM - OPTIONAL COMPONENTS

EKDS KMSS

KRIPTEX®KEC MANAGEMENT SYSTEM SERVER

KEC Yönetim Sistemi Sunucusu

It is the application software that provides administrative tools such as on-site/remote management, remote secure firmware updates, and monitoring features of all in use KRIPTEX®KEC devices.

KRIPTEX® KEC LAN ACCESS SERVER

KEC LAN Erişim Sunucusu

It is the access server software in which KRIPTEX®KEC devices operating over the LAN network using Ethernet Port or WiFi Module are connected and accessed as central gateways.

EKDS KLAS
EKDS KWAS

KRIPTEX® KEC WAN ACCESS SERVER

KEC WAN Erişim Sunucusu

It is the access server software that provides secure access from a single point in which KRIPTEX®Mobile KEC devices are operating and connecting through the GSM network.

KRIPTEX® TCKK SERVICE API

TCKK Servis API

The KRIPTEX®TCKK Service API provides enterprise developers with an application software development interface for easy integration into centralized applications and EKDS components.

EKDS SERVICE API
EKDS KWAS

KRIPTEX® NES MANAGEMENT SYSTEM SERVICE

NES Yönetim Sistemi Servisi

It is a management system service that enables the installation of Qualified Electronic Certificate (NES) securely on the Republic of Turkey Electronic Identity Cards (TCKK) remotely.

KRIPTEX® E-SIGNATURE CREATION-VALIDATION SERVICE

E-imza Oluşturma-Doğrulama Servisi

It is an e-signature service that can sign documents electronically with the Republic of Turkey Electronic Identity Cards (TCKK) and enable to verify the signed documents.

EKDS SERVICE API

ELECTRONIC IDENTITY VERIFICATION METHODS

EKDS Certificate

CERTIFICATE VERIFICATION

It is the validation of the certificate information held on the Republic of Turkey Electronic Identity Card (TCKK) chip during electronic identity verification.

IDENTITY VERIFICATION WITH PIN

It is the verification method matching the encrypted six-digit number PIN information which held on the Republic of Turkey Electronic Identity Card (TCKK) chip with entered by the cardholder during electronic identity verification.

EKDS PIN
EKDS Biometric

IDENTITY VERIFICATION WITH BIOMETRIC DATA

It is the validation method that made by matching the fingerprint data of the cardholder which held on the Republic of Turkey Electronic Identity Card (TCKK) chip with the fingerprint data received from the cardholder during the electronic authentication process.

IDENTITY VERIFICATION WITH PHOTOGRAPH

It is a visual verification method which is by comparing the biometric photograph on the Republic of Turkey Electronic Identity Card (TCKK), the biometric photograph recorded on the TCKK chip and the physical image of the cardholder.

EKDS Photograph