Can you smuggle data in an ID card photo?

https://informatykzakladowy.pl/pierwszy-na-swiecie-dowod-osobisty-z-reklama-bloga/

28•edent•9mo ago

Comments

pomian•9mo ago

Very cool discussion and ideas. A true HN article. Need to translate though - unless of course you are Polish.

tW4r•9mo ago

Google translated to English: https://informatykzakladowy-pl.translate.goog/pierwszy-na-sw...

weinzierl•9mo ago

In Germany there is a discussion about only allowing approved photographers for passport photos and them sending the pictures directly to the authorities.

They are also very picky about the images here. When I got a new passport recently they investigated my images thoroughly with a magnifying glass and almost rejected them because of a few white pixels you could not see with the naked eye. Only when they saw that the pixels were different between multiple copies they conclude that it was probably a printer issue and found one copy that had almost none which they accepted.

I think authorities are well aware of the risk mentioned in the article here.

thesimon•9mo ago

> In Germany there is a discussion

The discussion concluded with it being codified into law. How it's gonna work apparently is that the image will be stored E2E-encrypted in the cloud and at the photographer you'll get a barcode that contains the URL to the image and the key to decrypt it. To upload the image into the cloud, the photographer will need to use a secure ID card to sign in.

https://www.bsi.bund.de/SharedDocs/Downloads/DE/BSI/Publikat...

Was kinda interested in building software for this, but it feels like you need to pay a lot of people for fancy audits.

docdeek•9mo ago

France has already got something similar: the e-photo. https://refugies.info/en/procedure/63528e00976acb4f7bcd37ad

WelcomeShorty•9mo ago

In Switzerland we're one step ahead: ID photos get taken at the counter where they're issued.

You get 2, 3 takes and pick the best. Efficient and secure.

MartijnHols•9mo ago

One thing to consider is that if you were to succeed in placing hidden text/image on an ID card, it may fail manual forgery checks at airports and police stations. One of the many ways IDs are checked is with different types of lighting[1]. This might have made this stand out as an artifact, which could result in an officer doubting its legitimacy.

[1] https://www.airport-suppliers.com/supplier-press-release/the...

poisonborz•9mo ago

Why use the most often scanned and scrutinized item in your inventory? Why not a family photo in your wallet or a fake discount card?

antonpirker•9mo ago

This reminds me of Nico Alm who was wearing a colander as hat on his picture of his passport. He argued that religious hats are allowed and he is a pastafari :-)

OpenCiv3: Open-source, cross-platform reimagining of Civilization III

The Waymo World Model

How we made geo joins 400× faster with H3 indexes

Show HN: Look Ma, No Linux: Shell, App Installer, Vi, Cc on ESP32-S3 / BreezyBox

Monty: A minimal, secure Python interpreter written in Rust for use by AI

Unseen Footage of Atari Battlezone Arcade Cabinet Production

Show HN: I spent 4 years building a UI design tool with only the features I use

Microsoft open-sources LiteBox, a security-focused library OS

Dark Alley Mathematics

Sheldon Brown's Bicycle Technical Info

Hackers (1995) Animated Experience

Delimited Continuations vs. Lwt for Threads

Show HN: If you lose your memory, how to regain access to your computer?

PC Floppy Copy Protection: Vault Prolok

An Update on Heroku

What Is Ruliology?

How to effectively write quality code with AI

Why I Joined OpenAI

Show HN: ARM64 Android Dev Kit

Female Asian Elephant Calf Born at the Smithsonian National Zoo

Learning from context is harder than we thought

Show HN: R3forth, a ColorForth-inspired language with a tiny VM

I spent 5 years in DevOps – Solutions engineering gave me what I was missing

Introducing the Developer Knowledge API and MCP Server

Understanding Neural Network, Visually

I now assume that all ads on Apple news are scams

Zlob.h 100% POSIX and glibc compatible globbing lib that is faste and better

FORTH? Really!?

Show HN: Smooth CLI – Token-efficient browser for AI agents

WebView performance significantly slower than PWA