Get your free and exclusive 80-page Banking Passkey Report

What is a Card Access Number (CAN)?

Blog-Post-Author

Max

Created: August 1, 2025

Updated: August 12, 2025


What is a Card Access Number (CAN)?#

A Card Access Number (CAN) is a unique identifier printed on electronic identity cards (eIDs) or smartcards, used as an additional security feature during digital identity verification processes. Typically, a CAN serves to confirm physical possession of the card during online authentication or identity proofing, thereby reducing the risk of fraudulent digital activities.

Key aspects of a Card Access Number (CAN):

  • Physical Possession Proof: Verifies the user physically holds the identity card.
  • Additional Security Layer: Provides an extra authentication factor beyond traditional PINs or passwords.
  • Usage Contexts: Frequently employed in government-issued eIDs, healthcare smartcards, and digital driver's licenses (mDLs).
  • Fraud Prevention: Protects against identity theft, cloning, and unauthorized access.

Implementing CAN enhances the reliability of digital identity systems, supporting stronger authentication flows and compliance with various regulatory frameworks.

Key Takeaways:

  • A Card Access Number (CAN) is a unique identifier used to verify physical possession of electronic identity cards during digital authentication.
  • CAN significantly enhances the security of digital identity verification and reduces fraud risks.
  • It is widely used in government-issued eIDs, healthcare cards, and mobile driver's licenses (mDLs).

Why is a Card Access Number (CAN) Important?#

With growing digital interactions, verifying an individual's identity accurately has become paramount. The Card Access Number (CAN) provides an additional layer of security by ensuring the person conducting an online transaction physically possesses the relevant identification card.

Security Implications:#

The CAN is usually required as an additional verification measure to supplement:

This layered security approach effectively reduces the risk of:

  • Identity theft and fraud
  • Unauthorized card cloning or duplication
  • Impersonation attacks during high-risk transactions

Typical Use Cases:#

  • Government Digital Services: Many governmental eIDs, including national ID cards and electronic passports, employ CAN to securely verify citizens’ identities online.

  • Healthcare Services: Health insurance cards or electronic health record (EHR) smartcards often require CAN to prevent medical identity fraud and unauthorized access.

  • Mobile Driver’s Licenses (mDL): Digital driver's licenses frequently integrate CAN as a means of secure, in-person verification during roadside checks or online services.

Technical Aspects of Implementing CAN:#

  • Secure Storage & Management: Organizations implementing CAN must securely generate, store, and manage the numbers, ensuring strong cryptographic protections to prevent compromise.

  • Compliance and Regulatory Alignment: Systems leveraging CAN typically meet stringent regulatory standards such as the Trusted Digital Identity Framework (TDIF), GDPR, or NIST identity assurance levels (IAL).

  • User Experience Considerations: A properly integrated CAN system can enhance the user experience by providing simple yet secure digital interactions, minimizing friction while maximizing security.

CAN in the Context of Passkey Solutions:#

Organizations adopting passkey solutions to enhance user authentication flows can leverage CAN to further bolster security. For example, when registering or activating passkeys, requiring CAN entry provides proof of possession and increases overall trust in the authentication process.

Integrating CAN into passkey workflows:

Card Access Number FAQs#

Where can I find my Card Access Number (CAN)?#

The CAN is typically printed on the front or back of electronic identity documents, including eIDs, digital driver's licenses (mDLs), or healthcare smartcards.

Why do digital identity systems use a CAN?#

Systems use CAN to verify physical possession of a card, enhancing security and preventing identity fraud, card cloning, and unauthorized access.

How does a Card Access Number (CAN) enhance security?#

CAN provides an additional authentication factor, confirming users physically hold their identity card, thus significantly reducing identity theft and fraudulent activity risks.

Is a Card Access Number (CAN) the same as a PIN?#

No, a CAN differs from a PIN. While a PIN is confidential and user-generated, a CAN is card-specific, printed directly on the card, and used to confirm physical card possession.

Learn more about our enterprise-grade passkey solution.

Learn more

Share this article


LinkedInTwitterFacebook

Enjoyed this read?

🤝 Join our Passkeys Community

Share passkeys implementation tips and get support to free the world from passwords.

🚀 Subscribe to Substack

Get the latest news, strategies, and insights about passkeys sent straight to your inbox.

Related Terms