Online Identification
Article
Using the electronic ID function
A secure connection between the user's ID card and the IT system of the service provider is established for online identification. The eID server ensures reciprocal authentication.
1.
The card holder opens the provider's web service requiring online authentication.
2.
The service transmits the authentication request to the eID server.
3.
A secure channel is established between the eID server, the client software (e.g. AusweisApp2), the card reader and the ID card's chip, and the authenticity of the service provider and the authenticity and integrity of the ID card (protection against forgery) are checked
4.
The client software shows the card holder the service provider's authorization certificate and the requested personal data categories. The ID card holder decides which personal data he/she wishes to transmit.
5.
By entering the PIN the ID card holder confirms the transmission of his/her data.
6.
The ID card data are sent to the eID server.
7.
The eID server sends an authentication response and the ID card data to the service.
8.
The authentication response and the ID card data are retrieved. The service checks the authentication results and decides whether the authentication was successful. A response is then sent to the user and/or the service is provided.