Technical Field

The invention relates to a card acces s device consi sting of a service provider card reader module comprising at least one identity card reader area and a service receiver card reader module comprising at least one identity card reader area as sociated with each other in a way to provide data exchange .

The device bodies that serve with at least 2 identity card readers positioned in two separate modules and that will read the identity of the service area are separated from each other . In this way, the security weaknes ses of the systems operated with more than one card reader on the monolithic body are eliminated .

State of the Art

Identity Acces s Device ( IAD ) is a special card reader developed by TUBITAK BILGEM for new-generat ion electronic identity cards . Thanks to the SAM ( Secure Acces s Module ) , the device can securely communicate with the identity card and read data areas that cannot be acces sed with standard card readers such as the cardholder ' s personal mes sage and biometric data . IAD verifies with verification methods according to the security policy determined by the external application software or policy server . In the methods included in the ordinary state of the art, Identity Access Devices (IADs) ensure that one or more TR identity cards are verified by the methods described in TSE standards. Issues such as whether the identity card of the person is correct, qualified, issued by the Population and Citizenship Affairs (PCA) or whether it belongs to the person are checked. Biometric sensors such as fingerprints can be used to determine the identity of the identity card.

The conventional IAD device is a one-piece device. On this device, transactions can be made simultaneously with two Turkish identity cards, one of which belongs to the service receiver and the other to the service provider (https : / / www . bionay . com . t r/blog- cat egory/bionay dan-news/ ) .

For example, in subscription agreements, both the operator and the citizen wear the identity card on the same device. As the customer comes, different cards belonging to the people receiving the service are constantly changed and attached to the same device. In IAD, which stands on the side of the citizen, the constant wearing of the operator's T.R. Identity cards causes security vulnerabilities. In this embodiment, since the cards are constantly inserted on the same device, disadvantages such as theft of the cards may be encountered.

During the use of the monolithic IAD of the current art, both cards must be installed in the monolithic body. In such a case, there is a risk that the Turkish identity card of the service provider will be stopped on the customer side. Similarly, standing on the operator's side eliminates ease of use . It is understood that the patent application numbered TR 2015/06503 is related to the identity access device including contact, non-contact, biometric, and all kinds of electronic payment functions.

It is understood that the device subject to the patent application consists of the upper cabinet, screen frame, color touch screen, contactless reader, touch screen capacitive connector, touch screen light connector, SAM card slot 1, card reader area with chip for the service provider, fingerprint and finger vein reader frame, USB input of the palm vein reader, fingerprint and finger vein reader module, HDMI connection cable connector, external power supply, Ethernet interface, plastic cover of the SAM card slot, lower cabinet, USB B type, mini USB, security point on the main board 1 security point on the main board 2, connection connector of the fingerprint and finger vein reader device, main board lower security cover, contactless antenna connector, PCB firewall, card reader area with chip for the service area, lock cover of the SAM card slot, main board, keyboard illuminated protective area, functional password/pin keys, LCD connector, button, micro HDMI, battery, SIM card slot 1, SIM card slot 2, charging module and SAM card slot 2.

From this narrative, it is understood that the device subject to the patent has a monolithic body with 2 separate card readers within the same body.

It is thought that this device, which is operated by placing two different identity cards on the same body, may cause technical problems encountered by known monolithic body card reader systems . Problems to Be Solved by the Invention

The purpose of the invention is to create a higher security identity card acces s device in which the card reader of the service provider is created in a separate module and the card reader of the service receiver is created in a separate module .

In order to prevent the problems caused by the monolithic IADs used within the present art , the IAD of the invention is formed of at least two part s , not one piece . In this method, the first part of IAD is used by the service receiver ( customer ) and the second part is used by the service provider .

With the IAD structuring sub j ect to the invention, the structure is divided into two and it is ensured that there are two separate modules on the side of the service receiver and the service provider . In this way, it is aimed to prevent security vulnerabilities . In addition, with this solution, problems such as reducing cost s , providing ease of use , and increasing transaction security (physical security) are solved .

By dividing the IAD structure into two separate modules , each module can be customized to be specific to the user of the module . For example , with the embodiment of the invention, it will not be neces sary to create biometric sensors on the module side of the service provider .

Customizing each module of the configuration consisting of two separate modules to the party that will use the module ( service receiver/provider ) will make the system simpler for each party and will provide ease of use . Description of the Figures

Figure 1. Side view of the service provider card reader module

Figure 2. Front view of the service provider card reader module and the service receiver card reader module connected by cable Description of References in Figures

1. Service provider card reader module

2. Service receiver card reader module

3. Identity card reader area

4. Connection cable

5. Fingerprint sensor

6. Display screen

7. Command input unit scription of the Invention

The invention relates to an identity access device with at least 2 identity card reader areas (3) in its structure for the purpose of reading the identity cards of the service provider and the service receiver.

Said identity access device consists of a service provider card reader module (1) containing at least one identity card reader area (3) and a service receiver card reader module (2) containing at least one identity card reader area (3) , which are associated with each other in a way to exchange data.

The service provider card reader module (1) and the service receiver card reader module (2) are connected to each other with at least one connection cable (4) according to the preferred embodiment of the invention. Figure 2 shows two modules (1,2) connected with the connection cable (4) .

Different embodiments of the invention can be operated by connecting the two modules (1, 2) with a wireless connection.

One of these developed modules (1, 2) is designed to have a connection cable (4) between the other module (1, 2) and the smart card reader.

Identity verification with fingerprint will be made by the service receiver and the identity to be determined belongs to the service receiver. Therefore, the service receiver card reader module (2) has a fingerprint sensor (5) in its structure .

In order to perform high-level transactions, there is also a service receiver card reader module (2) , a SAM module, a secure access module (SAM) , a command input unit (7) that allows the identification of the service receiver with not only fingerprints but also with a data that the service receiver knows, and a display screen (6) that allows the service receiver to be informed about the transactions (showing the instructions) .

The command input unit (7) is in the form of a button according to the preferred embodiment of the invention.

For example, instructions such as "put the index finger of the right hand to verify the fingerprint" can be shown on the aforementioned display screen (6) .

In this way, two different solutions and two different modules (1,2) are provided to the service receiver and the service provider. The service provider card reader module (1) has a standard and contactless card reader area (3) , while the other module that completes the structure, the service receiver card reader module (2) , has a standard card reader area (3) , fingerprint sensor (5) , and Secure Access Module (SAM) .

In order to operate the system in the most basic state of the invention, it may be sufficient to have only the card reader area (3) in the service provider card reader module (1) . However, the service provider card reader module (1) serving within the different applications of the invention may also include the display screen (6) and the command input unit (7) .