Professional Documents
Culture Documents
The mission of INTECO is to provide value and innovation to citizens, to the SMEs, Public
Administrations and to the information technology sector through the development of projects
which contribute towards increasing confidence in our country’s Information Society services,
also promoting an international course of participation. For this purpose, INTECO will develop
proceedings, at least along the strategic lines of Technological Security, Accessibility, ICT
Quality and Training.
It specialises in the design, planning and execution of R&D&I projects concerned with the Security
of information, Video Security, Biometrics, digital image processing, secure deletion and e-
business, promoting the Science-Technology-Business transfer.
To guarantee the success of its projects, Anova IT Consulting has a R&D&I laboratory and a team
of professionals with recognised experience working on the design of ingenious technological
solutions which will make effective contributions to the integrated development of the company.
It collaborates with national and international entities, bringing the experience and knowledge
accrued by its researchers and consultants, promoting technological innovation through the
transfer of this knowledge, with the aim of providing the best solutions adapted to the needs of its
clients, efficiently and flexibly.
1 INTRODUCTION.............................................................................4
5 PIN CODE.....................................................................................21
7 LINKS OF INTEREST...................................................................30
The National Identity Document, or DNI, is the official document for confirming the
personal identity of each citizen.
The electronic version of the National Identity Document is similar in appearance to the
traditional DNI. The major difference presented by the electronic DNI is the inclusion of a
chip which allows the holder to accredit themselves digitally. In the same way, it allows
you to securely sign documents electronically during operations and with full legal validity.
The electronic DNI also provides speed, comfort and immediacy when carrying out
administrative and business proceedings on the Internet.
In the current framework, Information Technology offers users the option to carry out
numerous ordinary operations using the Internet. For example:
These opportunities have a double advantage for the citizen: journeys are not required as
the holder does not have to attend the entity where the proceeding is carried out and is
not subject to timetables, thereby avoiding time conflicts between the daily activities of the
holder and the operations which have to be carried out.
Use of the electronic DNI must be understood as a real opportunity for accelerating the
implementation of the Information Society in Spain, which, undoubtedly, will favourably
influence all citizens and the Public Administration itself.
The electronic National Identity Document is the document which physically and digitally
proves the personal identity of its holder and permits the electronic signing of documents.
The DNIe 1 is in response to the need to provide telematic operations with the Public
Administration, companies and other citizens, providing its users with greater guarantees
of protection and security.
1
From now on the term electronic DNI and DNI will be used indifferently.
The DNIe, as the instrument which permits physical and telematic interaction, possesses,
both in its definition and its projection, a well-defined legal basis:
• Article 12.1 of Organic Law 2/1986, of 13th March, of Law Enforcement and
Security Agencies:
“In addition to the general functions established in the previous article, the
following distribution of skills material is set up: They shall be exercised by the
National Police Corps: The issuing of the national identity document and
passports".
“All Spanish citizens shall have the right to be issued with the National Identity
Document which will have the protection that is granted by law to public and official
documents and shall have, by itself, sufficient value in order to prove the identity of
persons."
"The National Identity Document shall be mandatory from the age of fourteen."
• Royal Decree 263/1996, of 16th February, which regulates the use of electronic,
IT and telematic techniques by the Public Administration.
• Royal Decree 209/2003, of 21st February, which regulates the records and
telematic notifications, as well as the use of telematic media for replacement of the
certificates provided by citizens.
This Document has sufficient value, by itself, to prove the identity and the personal
data of its assigned holder, as well as the Spanish nationality of the latter.[…]”
o Inquiry of your client's data, which will include information on their invoice
history, the last three years and the undersigned contract, including the
general conditions, if any. […]”
With the electronic DNI, there are three aspects which are covered at the time of carrying
out an action:
1) Authentication of identity.
As it is made on polycarbonate, the electronic DNI has considerably improved its quality,
durability and above all its level of security. Quite simply, the electronic DNI must be used
A detailed explanation is given below of each one of the components needed for carrying
out operations with an electronic DNI.
a) Computer
The requirements of the hardware with which the electronic DNI is to be used are basic:
Any ordinary computer can be used. The equipment must have at least an Intel
Microprocessor –Pentium III or upwards- or similar technology.
The Electronic DNI has been devised to work correctly with the
main Operating Systems:
• Linux.
• Mac.
b) Internet Access
Given that the Internet is the means by which actions are performed, it is necessary that
the computer has a proper Internet connection so that the information flows without any
Any connection will be fully valid. Access to websites is made using the relevant Internet
browser. The electronic DNI functions correctly with:
The electronic DNI is developed on a new medium, similar to a bank card, which has a
chip on its left hand side. This converts it into a type of smart card 2 .
The electronic DNI must be placed into a smart card reader. This is a device designed to
recognise these kinds of document, into which the document is physically inserted.
The reader (which must comply with standard ISO-7816 3 ) must be properly connected to
a computer. The card has to be inserted on the chip side, as it would operate in a
cashpoint machine, for example.
There are three main types of reader: Integrated into the keyboard, external (via USB) or
through a PCMCIA interface.
2
Small-size cards which have an integrated circuit enabled allowing them to carry out a series of tasks, depending upon
whether the circuit is just memory or possesses a microprocessor.
3
International standard relating to electronic identification cards.
The keyboard belonging to the equipment may have a reader. In this case, it will operate
properly with the hardware components already there.
It should be taken into account that software (drivers) will also be needed which is able to
properly interpret the electronic DNI information. This is due to the fact that the keyboard
is designed for all smart cards and the electronic DNI has some of its own features.
External components
Consist of a device that is connected to the equipment through the USB port (Universal
Serial Bus). Other usual external components may include a printer, memory pendrive,
etc.
PCMCIA Interface
This type of device is inserted into the PCMCIA port of laptop computers, allowing the
electronic DNI to be read in the system upon its insertion into the card reader.
d) Software
The software needed to operate with the electronic DNI is essential so that the document
functions correctly and allows the citizen to carry out procedures comfortably. The
software is set out below which allows the computer to operate properly with the card
reader.
Controllers
Controllers are also called drivers. These programs are needed so that the computer can
recognise the smart card reader and exchange information.
If presented with a peripheral card reader, the computer may not be able to communicate
with it. In this is the case, install the drivers (as a general rule they are supplied by the
manufacturer and should come with the reader). Nevertheless, the majority of operating
systems have them installed by default.
Cryptographic modules
Furthermore, for the chip of the card to be properly recognised, the system must have
other types of programs installed. These are the cryptographic modules.
If attempting to work under the Microsoft Windows operating system, the equipment must
have a service installed called Cryptographic Service Provider (CSP). If, by contrast, other
environments (UNIX / Linux or MAC) are considered for using the electronic DNI, it will be
necessary to have the cryptographic module named PKCS#11.
3.1 FORMAT
The DNIe is made up of a polycarbonate card, to which the different security components
have been added against falsification (holograms, tactile letters, multiple laser images,
fluorescent dyes (UV/I), dyes which change colour (OVID), coded images, microtexts,
kinegrams, etc.) and includes a cryptographic chip.
The production of the DNIe in polycarbonate impedes its falsification and the inclusion of
the chip multiplies its security exponentially.
The microchip, which constitutes the main visible feature for the user, stores the following
information:
3.2 FUNCTION
The purpose of the electronic DNI is to provide greater security during procedures carried
out on the Internet. In this capacity, mechanisms are included which give priority to
maximum privacy and guarantees of the system.
Illustration 13: Window in Microsoft Windows for inserting the DNIe PIN
Without the PIN, it is not possible to carry out any kind of telematic operation. This
ensures that it is exclusively the electronic DNI holder who is able to gain access to and
carry out telematic operations on the Internet. Due to its relevance, this code and how it is
changed and verified will be discussed in more depth later.
The protocol of use of the DNIe is stated in the following diagram: The citizen connects to
the Public Organisation or Private Entity (for example, to the website of the Public Tax
Administration, or to a certain bank). The process can be summarised thus:
1) The citizen requests the procedure and is identified using their PIN.
3) The citizen receives the message to confirm their request for this procedure.
Access is made to the Treasury Website 4 .Electronic DNI inserted into the reader and
the identity of the interested party is confirmed by entering the PIN number.
The Treasury reads the information on the chip, acknowledging the status of the
citizen (establishes that a certain person, with name and surname, is requesting a
specific procedure on the Internet).
The Treasury sends a message indicating that it has recognised the individual, allowing
them to access their services on the Internet.
Attention is drawn on these websites to the relevant differences. One of the most
important differences is the type of protocol used (http or https). Visually, they differ
because they begin with https instead of http (the final s means security) and because of a
locked tag or a key that appears on the lower part of the browser. Through the secure
https protocol, the transmission is encoded differently to the http protocol, in that the
transmission is made unencrypted.
Illustration 15: Explorer bars of a secure website on Mozilla Firefox and Internet Explorer
4
Available at: www.segsocial.es/Internet_1/OficinaVirtual/CatalogodeServicios/index.htm?ID=37807
The main benefits of using the electronic DNI in digital environments consists of the
possibility of carrying out telematic procedures from any place and at any time of the day.
The most important thing that the DNIe offers the user is two possibilities or
complementary functions. Both options are inserted into the electronic certificate
which resides inside the chip. These alternatives are: authentication and electronic
signature.
4.1 AUTHENTICATION
To identify themselves telematically, a series of measures are required. The DNIe, as well
as being able to physically identify its holder, has the function for identifying the citizen in
digital media. This prevents identity theft.
The electronic signature is the collection of digital data which can guarantee that a specific
procedure or document has been signed. In this way, it is proved that the person signing
is fully in agreement with the procedure or specific document.
1) The citizen's connection with the Public or Private Entity is established, provided
by their electronic DNI.
In the construction protocol of this secure communications channel, there are several
proponents:
This certificate, associated with the Organisation or Entity, will guarantee that the
citizen is connected to said entity and to no other.
5) The Public Organisation (or Private Entity) displays a form for the specific
procedure.
7) The Public Organisation (or Private Entity) will reconstruct the form in text
format and will re-send it to the citizen for checking.
10) The citizen, with their PIN and DNIe, signs the procedure.
11) The Public Organisation (or Private Entity) checks that the signature is
correct and that the electronic Certificate is active.
13) The Public Organisation (or Private Entity) delivers the citizen a form which
requests receipt and signature.
As was put forward in the epigraph 0 it consists of a secret key, (similar to that of a bank
card or mobile telephone) which has the purpose of preventing anyone, except the legal
holder, from using someone else's electronic DNI.
If the PIN is not inserted, no operation can be carried out on the Internet or in any other
case. The PIN is the “key” which makes access possible to the virtual world with an
electronic DNI.
Just as with a mobile telephone, and to reinforce security, incorrectly inserting the code 3
times consecutively will result in the PIN being blocked, which will prevent any action for
operating on the Internet with the latter. To unblock it, it is necessary to go to the DNIe
Issuing Offices (in some cities these offices are in Police Stations).
At the time the DNIe is issued, a random 8 to 16 digit alphanumeric characters PIN is
generated (it may include letters and/or numbers. Capitals and lower case can be seen)
which is delivered to the citizen in a sealed envelope.
From the moment it is obtained it is important to remember that the PIN is the password
which safeguards the private codes of the user and, therefore, it is private, personal and
non-transferrable.
Owing to the fact that the original code is generated randomly, it can be difficult for the
user to remember.
The aim is for the user to be able to remember the PIN at any time and place (when the
need arises to carry out a procedure requiring it), therefore it is advisable not to make a
note of it on the original envelope, on any other paper or document, and to change the
initial PIN for another code which is more easily remembered.
The protocol for changing the PIN is very simple. There are two options:
The procedure to be carried out is shown here to ensure the code is correctly changed.
The change does not occur directly on the web, inserting the data. It is necessary to
download specific software known as PAD 6 (Update Point for the virtual DNIe).
5
Available at: http://www.dnielectronico.es/descargas/kiosco_virtual.html
6
Available at: http://www.dnielectronico.es/descargas/softw_pad.html
Once download is complete, it will be necessary to install the program through which the
PIN can be changed. For maximum security, it is essential to know the current PIN in
order to change it to another one. If the latter is not known, the user will only be able to
change it personally at the DNIe Update Point, located in an Issuing Office.
At these Update Points, the DNIe can be inserted into the slot and, after keying in the PIN
code for identification, the latter can then be changed. If the PIN code is not known, or has
been blocked due to being inserted incorrectly three times, there is a fingerprint reader at
these Update Points which allows the cryptographic information of the fingerprint to be
7
Available at: http://www.policia.es/udoc/dni/mapa_oficinas.htm
• Change of PIN.
• Unblocking of the PIN, if it was previously blocked after being incorrectly inserted
three times consecutively.
For security reasons the electronic Certificate will expire after 30 months. One month
before its expiry, it is possible to renew it for another 30 months.
It is mandatory to carry out renewal of the Certificate in the PADs at the issuing offices. It
is not possible to do this on the Internet. An expired electronic certificate does not mean
that the electronic DNI is also expired, although it does prevent procedures being carried
out on the Internet.
Finally, to check that the DNIe is working properly and that the electronic certificates are
active, on a computer, once the electronic DNI is inserted into the reader, the Official
If everything is operating properly, after inserting the PIN, the application will read the
electronic DNI Certificate and display this window:
8
Available at: http://www.dnielectronico.es/descargas/index.htmll
As stated previously, the electronic chip included in the new electronic DNI contains
information relating to the personal identity of the holder; therefore there has been a lot of
emphasis on underlining the importance of compliance with the needs of privacy.
This chapter compiles and emphasises the most important things with a view to conveying
peace of mind and security to the users of the functions offered by the electronic DNI.
This security not only refers to electronic signing, but to three aspects as specified:
This identity of the physical person using the DNIe is irrefutably accredited on several
levels:
• The application must use an algorithm in response to this challenge along with the
relevant secret code and code name.
• The card carries out the same operation and compares the result with the data
transmitted by the application. If they coincide, the presentation of the card for
future operations will be approved.
During the mutual authentication process, also included will be the secure exchange of
some session keys, which must be used to secure (encrypt) all the messages exchanged
previously. This service allows different alternatives to be used.
The two available options are base don the specification ‘CWA 14890-1 Application
Interface for smart cards used as Secured Signature Creation Devices – Part 1’ 10 , and are
as follows:
9
Verification of the DNIe holder. This operation is carried out by checking the code provided by the external entity through
the corresponding command. Each code has its own attempts counter. These will decrease after each erroneous attempt at
insertion.
10
Electronic signature standard
In order to carry out procedures using the whole scope of the electronic signature, it is
sometimes necessary to have specific software available which can generate the same
electronic signature.
1) It is feasible to produce the rental contract for the garage space on any word
processor or spreadsheet, and then obtain the option to sign it electronically with the
same processor.
2) It is also possible to use programs which allow the signature to be included on the
digital document for the rental contract.
www.inteco.es/Seguridad/DNI_Electronico/Firma_Electronica_de_Documentos
www.csae.map.es/csi/pg5a12.htm
6.3 PRIVACY
Since its first conception, the need has arisen for the electronic DNI to make an effort to
preserve the privacy of its users. Like the previous DNI, the same authorised data is
included on the card up to the current date (name, residence, date of birth, etc.). The
electronic DNI is not seeking to control the citizen or to store their access data,
preferences or any other information of that nature on the Internet,
This is stipulated and regulated by the organic data protection law (LOPD), for
establishing a series of requirements that guarantee the scrupulous respect of the rights
of citizens to privacy and intimacy. These demands are strictly complied with at all times
by the electronic DNI.
The PIN plays a fundamental role, its proper use confirms that nobody other than the
holder themselves can access it. For this reason, in the event that the interested party
believes that anyone else has been able to identify their PIN, they should change the PIN
immediately, using any of the procedures available described in the previous chapter.
If the user wishes to find out more about the electronic DNI, a series of websites is listed
below with information referring to the DNIe:
• http://www.dnielectronico.es/
• http://www.usatudni.es/
• http://www.formaciondnie.es/
• http://www.inteco.es/Seguridad/DNI_Electronico/
www.inteco.es
Guide for secure use of the electronic DNI in IT environments www.anovagroup.esPage 31 of 31
Information Security Observatory