JOINT BASE ELMENDORF-RICHARDSON, Alaska -- All Department of Defense personnel and families stationed at Joint Base Elmendorf-Richardson are being warned about new applications available for Apple and Android smart phones that can decode the 2D barcode on the common access card.
Scanning the barcode on the front of the card using the app reveals the individual's full name, full social security number, and DoD identification number, making it available to anyone via the Internet.
“It is very important that personnel and family members do not try these applications out,” said Thomas L. Warren Jr., 673rd Air Base Wing treaty compliance officer and Operations Security Program manager. “If this happens, service members need to understand that their information is now discoverable on the web and this is considered a violation of federal law.”
Photocopying of U.S. government identification is a violation of Title 18, US Code Part I, Chapter 33, Section 701 and punishable by both fine and/or imprisonment.
“Both criminals and terrorists consider these images to be of high value when they are able to access a falsified ID,” Warren said. “If a high-quality reproduction of a government ID falls into the hands of an organization wishing to do harm to a military installation or federal building, they could potentially gain access using your photocopied ID as the base for their counterfeit ID.”
All DoD employees are reminded not to allow organizations or businesses to reproduce (photocopy, scan, or other means) an image copy of the member's CAC/military ID.
While businesses may ask to see a government ID as a form of identification, they are not allowed to duplicate it in any shape or form. If copying a photo ID is necessary, it is recommended individuals provide their state-issued driver’s license or some other form of photo identification as an alternative.
“If a company insists they must have a photocopy of your federal ID remind them that it is illegal to do so,” Warren said. “An exception to the rule would be medical providers; they are authorized to photocopy military IDs as proof of insurance when providing medical care to DoD beneficiaries.”
A valid military ID card is proof of TRICARE eligibility and can be photocopied. Like everything else in a patient's record, it is protected by law.
Warren also added that DoD Instruction 1000.13 covers ID cards for members of the uniformed services, their dependents, and other eligible individuals; and Enclosure 3 of this instruction notes a few other limited examples of authorized photocopying.
“I would say technology is here and we need to embrace it,” Warren said. “We have to be smart about it and think about our responsibilities to the mission. Operational security is all about us being able to execute our mission.”
Preventive actions include safeguarding your CAC at all times and not allowing businesses to reproduce it. If images exist request they be destroyed. Additionally, never attempt to use or test applications on mobile devices.
Whenever possible, it is strongly recommended to use a means of electronic authentication rather than photocopying an ID card.
“Should you notice any activity that may be criminal or terroristic in nature, immediately contact your local police department or security forces,” Warren said. “OPSEC is everybody’s business. It is vital for every person to pass-down this information to their loved ones and family members.”
For more information or to report OPSEC incidents, call: 551-2891/552-4503 or 384-2449/384-2142.