Passes for restricted area two

392 (1) Subject to subsection (2), a restricted area pass shall show the name, height and eye colour of the person to whom the pass has been issued, a clear photograph of the person's head and shoulders or other facial image and an expiry date that is not later than five years after the date of issue or, in the case of a restricted area pass issued to a person who holds a security clearance, that is not later than the expiry date of the security clearance.  

(2) A temporary restricted area pass need not meet the requirements of subsection (1), but it shall bear a mark that clearly distinguishes it as a temporary pass.  

Distinctive Mark - Security Clearances  

394 Every restricted area pass issued to a holder of a security clearance shall bear a mark that clearly distinguishes it from restricted area passes issued to persons who are not security clearance holders.

 

1. Card integrity

 

  • Internal and external information must be secure from counterfeiting, alteration and duplication. 
    • Possible options for card integrity may include, but are not limited to:
      • plasticized passes; and/or
      • manufacturing process which prints all elements onto the pass in one step.

2. Distinguishing Feature

  • The distinguishing characteristic must be easily visible and easily recognizable from a distance
  • The distinguishing marks are to be consistent throughout the port’s operation.
  • Contrasting colours are to be used to distinguish passes for persons with transportation security clearances from passes for persons without transportation security clearances.
    • Possible options may include, but are not limited to:
      • background colour is different for each type of pass; and/or
      • the pass for persons with a transportation security clearance has a clearly visible shape of a different colour than passes for people without transportation security clearances. (e.g. a coloured frame, square, circle, stripe, etc)

Best practices:

Avoid using colours that are commonly confused by those with colour blindness.

3. Card Validity:

  • Process must be in place to ensure that the only those with a valid transportation security clearance can be issued a Restricted Area Two pass.
  • Process must be in place to periodically ensure the holder of the Restricted Area Two Card is the person to whom the card was issued.
  • Process must be in place to periodically ensure that the holder of the a Restricted Area Two pass holds a valid transportation security clearance.
    • Possible options may include, but are not limited to:
      • biometric templates imbedded in the card;
      • confirmation of identification of individual through verification of secondary piece of identification; and/or
      • system for the verification and validation of information contained on and/or within the pass.

Best practices – Biometrics

  • The biometrics are stored in the form of templates.
  • Raw data is not stored on the card.
  • The False Acceptance Rate (i.e. the possibility of the wrong person being accepted by the system) must be negligible. ( approximately 0)
  • Note: The aviation system Restricted Area Identification Card (RAIC) has the capacity to store four biometric templates. The biometrics in use are: iris scanning and finger
  • scanning.

Best practices – Processes

  • Process to ensure the holder of the Restricted Area Two Card is the person to whom the card was issued is performed each time individual enters a Restricted Area Two.
  • Process to ensure that the holder of the a Restricted Area Two pass holds a valid transportation security clearance is performed each time individual enters a Restricted Area Two.

Best practices – Card

  • Formatting of personal information consistent with transportation security clearance documentation. (i.e. name in same format)
    • Surname, usual given name used, other given name(s)
  • Date of issue and expiry consistent with transportation security clearance documentation
    • yyyymmdd

4. Interoperability

Best Practice:

  • Pass is interoperable with other systems within the facility and/or nationally.

    Note: The aviation system has implemented a national pass system for a Restricted Area Identity Cards. 
  • This card system uses “Smart Cards” with imbedded biometric templates to allow for:
    • confirmation of the individual’s identity; (i.e. the card holder is the person to whom the card was issued) and
    • confirmation that the cardholder still has a valid clearance.
  •  A decision has not been made to extend this system to the marine system, however, over time, as technology and requirements advance, a system similar to RAIC may be considered to both enhance security and improve efficiencies. Ports are encouraged to include future capacity and possible requirements  when investing in technology.
  • Key specifications for the aviation card system are noted below  for information purposes.  More detailed information on these specification is available, on request.

Restricted Area Identity Cards – Aviation system Information purpose only Multi-technology Contactless Smart Card Access Control Credential

  • The contactless smart card  functions as an access control card, used with access readers to gain entry to controlled portals and to hold identification information specific to the user.
  • The contactless smart card is a passive device with 32 Kbits (4Kbytes) EEPROM memory configured with 2 application areas.
  • Each application area  contains a unique 64 bit diversified authentication key to reduce the risk of compromised data or duplicate cards.  The contactless smart card and card reader requires matching keys in order to function together.  All radio frequency (RF) communication between card and reader is encrypted, using a secure algorithm.
  • The proximity device contains and transmits Wiegand card data, up to 84 bits, for use with access control systems.
  • The contactless smart card supports programming and updating of custom applications after issue, using an appropriate HID iCLASS reader/writer or authorized HID iCLASS enabled reader/writer.
  • The proximity device supports programming with an appropriate HID Prox Field Programmer.
  • The dimension of contactless smart card per ISO 7810 is 2.125” x 3.375” x 0.030” (53.98mm x 85.60mm x 0.76mm).
  • The card is printed with custom graphics, contains security and anti-counterfeiting features.
  • Reference and operational biometric information, not necessarily different, would be stared on the smart cards. The biometrics data would be stored in template format only; no raw biometric data would exist on the card.
  • The smart card has sufficient memory capacity to accommodate four (4) biometric templates. (Memory is 32Kb RFID module)
  • To meet future operational requirements, the card is designed to have the capacity of adding a contact chip to the smart card.

Alternate Formats:

Pdf version

 

 

Pour consulter la version PDF (format de document portable), vous devez avoir un lecteur PDF sur votre ordinateur. Si vous n'en avez pas déjà un, il existe de nombreux lecteurs PDF que vous pouvez télécharger gratuitement ou acheter dans Internet :