If identification is requested, the chance of large-scale fraud is minimal: 250,000 combinations of initials and date of birth are possible. But it is not known how well they actually check for identification.
Today, research by I&O Research commissioned by the NOS showed that the control of the corona pass itself is inadequate. Some respondents in that study also complain about limited identification checks, but there are no exact figures. The Association of Dutch Municipalities and the Security Council also have no figures on this.
‘Not so strange’
“It is really important that the checks are good at the gate and that not only the QR code is looked at, but also the identification. That goes together,” says De Jonge. “You can’t go in with either one. It has to be now.”
Robèr Willemsen of Koninklijke Horeca Nederland, however, says it is understandable that identification is not always checked. “Not every employee of a catering establishment is also authorized to do this, so if the lunchroom does not check for identification, I do not find it so strange.”
The ministry has previously taken measures against the sharing of QR codes: for example, the codes in the app expire after a few minutes, so that forwarding does not work. However, the ‘paper’ QR codes, which can be printed, only expire after one year.
In this case, the makers of the counterfeit CoronaCheck app seem to have incorporated print codes into the counterfeit app. Print codes in themselves are indistinguishable from the QR codes shown in the app.
The creators of the site deliberately allow the use of forged codes: “How beautiful it is, Article 1 of the Constitution”, can be read on the site. “According to that article, anyone who denies access to someone is punishable.”