Alarm User Name: Date: Fill & Download for Free

It’s a bit more complicated than that.“The system”There is no system that lists all passports issued by every country. That would be impractical, would cost a fortune to maintain and will be painfully slow (think current immigration queues are slow?). Consider it would have to keep track not only of valid passports, but also of lost, stolen, damaged, expired documents. There are currently databases for passports that have been reported as “cancelled” (I seem to recall this includes anything reported stolen, lost, cancelled by the issuing authority, etc; not sure it includes expired passports, by what follows, I have a feeling it doesn’t) and they are already a pain to maintain.Passports nowadays are designed to identify the holder without an access to internet (and in principle without any special machinery, although the most advanced security features require at the very least a smartphone with the correct app installed, see below). The idea is that, should you want to cross from Bolivia into Chile at a remote border station in the Andes, border guards should still feel comfortable in letting you enter the country even without accessing a worldwide database.All of this to pin down my first point: forged passports don’t get spotted because they don’t “hit” in a database. Quite the contrary: unless you are a super secret spy with license to kill and you need to infiltrate North Korea, fake passports are not manufactured from scratch. The most common modern forgery technique is to obtain a genuine passport and alter the data in it: people used to scrape away the picture and simply print a photo of the fraudster on top with a common inkjet printer, or remove the (glued/stapled) photo and replace it with another one. Hence, a forged passport will most likely either hit an entry in a database of stolen passports or raise an alarm upon inspection because some of the security features are compromised. Which leads me to explain how modern security features work.“The barcode”There is no barcode, either. Not as standard, at least. Some countries do add a barcode to their passports, but since a barcode can hold only so much information and is comparatively easy to forge, it’s not a very good method.The reason why simply substituting your data on a genuine passport is not a good forgery strategy is that the data is contained several times in a passport, often in hidden ways: the picture is often printed on two or more separate pages (often in UV-visible ink), some times laser-perforated in the data page (holding the page against the light reveals the picture and allows to check whether it matches the main photo) and added as holograms to the page. Similarly for other data (name, date of birth, passport number). Passport pages are often covered in tamper-evident plastic foils or are directly made of a plastic card (much more difficult to forge as it’s laser-engraved).Passports nowadays are also machine-readable and biometric.The letters in the bottom side of the data page are the machine-readable zone. They contain the essential data about the holder and allow the border guard to access additional security features. So only looking at the data page you will already need to modify the name two times (or, worse, the picture, good luck with that). Swedish passports have the fundamental data repeated as many as 9 times (the picture is repeated 5 times!) throughout the document.The symbol in the top-right is the biometric passport symbol. This means that the passport contains (in the cover or in the data page) an encrypted contactless chip: this lists all information contained on the data page and has a high-resolution version of your photo and fingerprints (Edit: it has been pointed out that technically the pictures are not high resolution: it is more accurate to say that they are facial-recognition-resolution; thanks to Halim Rahman Minai). The chip being encrypted prevents anyone from changing the information stored in it: if anyone managed to change the data page in a convincing way, the scan won’t match and the border guard will notice.Then how can a fake passport bypass the airport security?If checked properly, it can’t unless you are a trained foreign agent with considerable resources at your disposal, which most users of fake passports are not.The catch is that many stages of airport security are not entrusted to people trained in ID inspection. Border guards are, and they typically also have access to all the right tools for more advanced analysis (which in most cases simply consists of shining a UV light on the document or scanning the biometric chip). So they will spot a fake passport.Airport security (the pat-down people) often do not have the tools, but are (supposedly) trained in recognizing a forged ID. Whenever you are required to provide you passport number to the airline, rest assured that it will be checked against the database of cancelled passports. Airline staff (unless they are tasked with specific additional security duties, in which case they might be working for a security contractor that provides adequate training) is definitely not trained nor equipped for the task.On the other hand, consider that the cliché of people passing through customs completely undetected with a bag full of explosives, drug money, rare artifacts and a completely made up passport is… well… a cliché. People with fake ID are probably the easiest cases an immigration officer will face. Deciding whether the person you have in front is really just visiting his cousin or is actually going to work illegally in the country is much more difficult. And these people come with genuine ID.

This question can be comprehended in two ways: Either you need to register with IRCTC for the first time with a new user ID and password or you have forgotten your login details. In either case, please refer to the following answer:If you need a new account:The creation of an account on IRCTC website is absolutely free of cost. All you need to do is, click on the ‘register’ option and create an IRCTC account.This simple step will help you avoid the hassle of long queues at the ticket counters and enable booking of train tickets online. You can book an e-ticket, make reservations, cancel reservations, book instant tickets (tatkal), etc. by creating an account on IRCTC website. For a hassle-free experience, download ixigo trains app and get all this and much more easily. ixigo trains app offers features like PNR prediction, running status, station alarm, platform locator, seat availability, coach position, etc.Follow these simple steps to get the user ID and password for your IRCTC account:1. Visit https://www.irctc.co.in/nget/train-search. Click on the extreme right menu icon and select ‘LOGIN’. Now, click on the ‘register’ option and fill up the details like username, password, security question and answer, and preferred language.Please note: Username should be between 3 to 35 character. Only letters and numbers are allowed.Password should be of Min. 8 characters & Max. 15 characters. Password must contain at least one small & one capital alphabet and numeric digit.2. Further, fill up your personal details like name, gender, date of birth, etc. along with residential address. Agree with the terms and conditions and click on ‘Register’ button.3. Your email ID and ISD-mobile number will be verified on first login. Please ensure email id and mobile number are correct.Following these above mentioned steps will result in the successful creation of your IRCTC account.If you have forgotten your IRCTC user ID and password:In case you have forgotten your user ID, click on ‘Forgot User ID’ in the login section. You will be redirected to a page that will ask for your email, date of birth and captcha code. Click on the submit button and follow the instructions.Other than this, you can also search for the keyword "ticketadmin” in the inbox of your email ID used for registration. You might be able to find your username in this mail if you've ever booked ticket from your account.In case you have forgotten your password, click on ‘Forgot password’ in the login section. Here, you need to enter your user-id and the captcha code. Now, click on the ‘Next’ button.Further, a verification code will be sent to your registered Email id and mobile number. Enter the OTP and fill up the section for NEW PASSWORD and CONFIRM PASSWORD. Enter captcha code and click on ‘Update Password’.These simple steps will help you retrieve your IRCTC user ID and password.

Set a tracking cookie (i.e. random hash) and log its value on login, look for multiple logins from the same cookie value. Logins from same IP address/user-agent combination. Logins from same IP address only (less reliable than the previous two bullets) Accounts with email addresses from free webmail services (Gmail etc .,)Detect the duplicated accountsSince we cannot totally stop users holding multiple accounts, we have to work hard to prevent the situation from going worse. We need to find out the duplicated accounts (i.e. accounts held by the same users), and more importantly, do this on a regular basis.The process of finding duplicated accounts are based on an assumption that : There are always something in common for two accounts that are held by the same user. For example, they may shows the same name (not user name but the name of the account holder), same email address, same password, same address etc. What we need to do is to quantify the level of similarity of two accounts, and sort out the accounts with high similarity. Then we do further investigation on those suspicious accounts.The approaches to quantify the level of similarity varies depending on the nature of the website and the user account information. From my personal experience, I prefer to use this algorithm:1. The value of similarity between two accounts is initialized as ZERO.2. Go through the checking on each items as listed below:Password: Usually if the user is holding multiple accounts, the user would prefer to use the same password for all the accounts so as to avoid remembering too many passwords. So if two accounts has the same password (or hashed password string), Similarity += 30;Email address: If the user emails from two accounts are exactly the same, Similarity += 100; It is almost 100% certain that these accounts are used by the same user. However, sometimes the user may not register the account with same email address, instead, they will use another email address with different domain name (i.e. the string after @), and same local-part (i.e. the string before @). So if the two email addresses has the same local-part, (e.g. [email protected] vs. [email protected]), similarity += 40;Mailing Address, Phone Number, Answer to forget-password questions : If they are the same for two accounts, each one would add 40 to the Similarity.UserID or User name : Calculate the word similarity with PHP’s similar_text(), convert the result as a percentage, then times 100 and add it to the Similarity. That is: Similarity += round(similar_text(UserID1, UserID2) / max(strlen(UserID1), strlen(UserID2)) * 100)Date of birth, Sex : add 10;Last log-in IP : If the IP of the last log-in of two accounts are the same, add 40;Last log-in User-Agent String : add 10;3. Finally if the Similarity is greater or equal to 50, then highlight the two accounts.Don’t ask me how the scores for each item come out. They are just my experience. My only concern is whether these scores work well, and fortunately they do work quite well in my case. You should alter those scores and the checking items to fit your projects. Nevertheless, there are always false alarms from the detection. So the highlighted accounts should pass through a manual screening and confirmation.I wish you a Good-Luck!!!