DOCSLIB.ORG

Anonymous Digital Identity in E-Government

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Anonymous Digital Identity in E-Government Anonymous Digital Identity in e-Government DISSERTATION DER WIRTSCHAFTSWISSENSCHAFTLICHEN FAKULTAT¨ DER UNIVERSITAT¨ ZURICH¨ zur Erlangung der W¨urde eines Doktors der Informatik vorgelegt von NIKLAS AUERBACH aus Deutschland genehmigt auf Antrag von Prof. Dr. Lutz Richter Prof. Dr. Gerhard Schwabe Juni 2004 Die Wirtschaftswissenschaftliche Fakult¨atder Universit¨atZ¨urich, Lehrbe- reich Informatik, gestattet hierdurch die Drucklegung der vorliegenden Dis- sertation, ohne damit zu den darin ausgesprochenen Anschauungen Stellung zu nehmen. Z¨urich, den 23. Juni 2004* Der Lehrbereichsvorsteher: Prof. Dr. Martin Glinz *Datum der Promotionsfeier Abstract The ongoing implementation of e-government has brought many governments to consider issuing digital identity cards. This thesis focuses on the impact of digital identity cards on the citizen’s privacy. Potential privacy threats are discussed and countermeasures that pertain to enhancing privacy are proposed. We advocate that digital identity should not solely be based on elements that disclose a citizens identity. Instead this thesis proposes a concept for digital identity cards that includes an anonymous component. This proposed approach is different from the approach taken by the current projects for digital identity cards. We propose a concept that comprises pseudonymous credentials as part of the citizen’s digital identity. We discuss current implementations of pseudonymous credential systems and consider problems resulting from the implementation in resource-restricted smart card environments. We discuss requirements for the use of credentials as part of the citizen’s digital identity. We discuss conceptual issues that must be ad- dressed for a deployment of credentials. We consider the infrastructure that is necessary to support pseudonymous credentials. We discuss conceptual issues such as the choice of credential system, devices for the secure storage of credentials, non-transferability and revocation of digital credentials. An architecture is proposed that supports the use of the extended form of digital identity. We discuss barriers that must be overcome on the way to imple- mentation. With the ongoing migration towards digital identity cards, we expect that privacy will become an issue of growing importance. This the- sis contributes to the discussion on privacy in the domain of e-government and proposes anonymous services based on pseudonymous credentials as a means to alleviate potential privacy problems related to the use of electronic identity cards. Zusammenfassung Im Zuge nationaler e-Government Initiativen haben einige europ¨aische Re- gierungen bereits elektronische Identit¨atskarten ausgegeben. Diese Disserta- tion befasst sich mit den Auswirkungen von digitalen Identit¨atskarten auf die Privatsph¨aredes B¨urgers. Potentielle Bedrohungen f¨urdie Privatheit werden aufgezeigt und Gegenmassnahmen, die zum Schutz der Privatheit beitragen, werden vorgeschlagen. Diese Arbeit schl¨agt vor, dass die digi- tale Identit¨atdes B¨urgers nicht nur aus Elementen bestehen soll, welche die Identit¨at des B¨urgers preisgeben. Stattdessen stellt diese Arbeit ein Konzept f¨urelektronische Identit¨atskarten vor, das eine anonyme Komponente um- fasst. Der vorgeschlagene Ansatz unterscheidet sich von den Ans¨atzen, die von gegenw¨artigen Projekten f¨urelektronische Identit¨atskarten implemen- tiert werden. Das vorgeschlagene Konzept umfasst pseudonyme Creden- tials als Teil der digitalen Identit¨at des B¨urgers. Verf¨ugbare Ans¨atzef¨ur pseudonyme Credential Systeme werden besprochen und Probleme disku- tiert, die sich aus einer Implementation in Ressourcen-beschr¨ankten Umge- bungen wie Smart Cards ergeben. Wir besprechen Anforderungen f¨urden Einsatz von Credentials in e-Government. Infrastrukturkomponenten, die f¨ur einen Einsatz von Credentials notwendig sind, werden diskutiert. Konzep- tionelle Fragen werden besprochen, wie die Wahl eines geeigneten Creden- tial Systems, die sichere Aufbewahrung von Credentials, Methoden f¨urdie Gew¨ahrleistung der nicht-Ubertragbarkeit¨ sowie Algorithmen f¨urdie Re- vokation von pseudonymen Credentials. Eine Architektur zur Umsetzung der erweiterten digitalen Identit¨atwird vorgeschlagen. Hindernisse wer- den diskutiert, die auf dem Weg zur Implementation ¨uberwunden werden m¨ussen. Durch die fortw¨ahrende Migration in Richtung elektronischer Iden- tit¨atskarten erwarten wir, dass das Thema Privatheit wachsende Bedeutung erlangen wird. Diese Arbeit leistet einen wissenschaftlichen Beitrag zur Diskussion um das Thema der Privatheit im Bereich von e-Government und schl¨agt einen anonymen Dienstzugang als eine Massnahme vor, die m¨ogliche negative Auswirkungen von elektronischen Identit¨atskarten auf die Privatheit verringern kann. Acknowledgements This thesis was written during my time as a research assistant at the Depart- ment of Informatics (IFI) at the University of Zurich. First and foremost, I would like to express my sincere gratitude to my thesis advisor Prof. Dr. Lutz Richter for giving me the chance to work as part of his research team, for supervising my thesis and for always having confidence in my work. I would like to thank Prof. Dr. Gerhard Schwabe for receiving me into his research team, for his support and feedback during the writing of this thesis and for acting as a co-supervisor. I would also like to thank Dr. Reinhard Riedl for bringing me into the e-Mayor project, for supporting my research and for acting as a co-supervisor. I would like to express my gratitude to Dr. Jan Camenisch at the IBM Zurich Research Laboratory in R¨uschlikon for numerous discussions on pseu- donymous credential systems and for the willingness to establish a joint study agreement. I would especially like to thank Dr. Camenisch for providing me with a prototype of the Idemix pseudonymous credential system for use in my research. Furthermore, I would like to thank the following people who have all contributed to this work: • Nico Maibaum at the University of Rostock for a fruitful cooperation during and after the FASME project and for providing feedback on my research. • Prof. Dr. Clemens H. Cap for numerous discussions on the topic of credentials and for inviting me to present my work to his research group in Rostock. I would also like to thank the members of Prof. Dr. Cap’s research group as they have taken time for many productive discussions. • Andr´as Kiraly for implementing a prototypical system for the use of credentials in Web-based service delivery as part of a diploma thesis. Andr´as Kiraly also developed a Big Integer library for the Java Card that was used for parts of my research. • Dr. Els Van Herreweghen and Roger D. Zimmermann at IBM’s Zurich Research Laboratory in R¨uschlikon for fruitful discussions. • All partners that were involved in the FASME project for interesting discussions at project meetings and workshops. • My parents Doris and Hans-Joachim Auerbach for the proof-reading the manuscript, for motivating me throughout the writing of this thesis and for always believing in me. • My partner Petra Baumg¨artner for her patience and her support during the writing of this thesis. Part of the work underlying this thesis has been performed as part of the FASME project (Facilitating Administrative Services for Mobile Europeans). The project has been funded by the European Commission in the Information Society Technology program under contract number IST-1999-10882. Table of Contents List of Figures viii List of Tables ix 1 Introduction 1 1.1 Research Contributions . 3 1.2 Structure of the Thesis . 4 2 Digital Identity and Anonymity 7 2.1 Identity, Anonymity and Pseudonymity . 7 2.1.1 Human Identity . 7 2.1.2 Human Identification . 8 2.1.3 Anonymity . 9 2.1.4 Anonymity in Computer Supported Cooperative Work 10 2.1.5 Pseudonymity . 12 2.1.6 Revocable Anonymity . 12 2.2 Digital Identity . 14 2.2.1 Digital Identity in Electronic Service Access . 17 2.2.2 Authentication of Digital Identities . 19 2.3 Summary . 21 3 Introduction to e-Government 23 3.1 e-Government . 23 3.1.1 Definition of e-Government . 24 3.1.2 Differentiation Between e-Government and e-Business . 26 3.1.3 e-Government Services . 28 3.2 One-Stop e-Government and Service Portals . 30 3.3 Uptake of Electronic Service Delivery in Europe . 32 3.4 Challenges of International e-Government Services . 36 3.5 Summary . 37 i ii Table of Contents 4 Technical State of the Art 39 4.1 Digital Credentials . 39 4.1.1 Characteristics of Digital Credentials . 41 4.2 Anonymous and Pseudonymous Credential Systems . 42 4.2.1 Implementations of Credential Systems . 43 4.3 Public-Key Certificates and Public-Key Infrastructure . 48 4.3.1 Public-Key Infrastructure . 49 4.3.2 X.509 Public-Key and Attribute Certificates . 50 4.4 Group Signature Schemes . 52 4.5 Identity Management . 54 4.6 Anonymous Communications in the Internet . 54 4.7 Electronic Identity and Citizen Card Initiatives in Europe . 55 4.7.1 General Approach Taken to Electronic Identity Cards . 56 4.7.2 Electronic Identity Card Projects in Europe . 58 4.8 Summary . 62 5 From Privacy to Anonymous Transactions in e-Government 65 5.1 Privacy in e-Government . 65 5.1.1 The Concept of Privacy . 66 5.1.2 Informational Privacy in e-Government . 67 5.1.3 The Sensitive Nature of Information in e-Government . 68 5.1.4 IT Security Goals and Informational Privacy . 69 5.2 Data Protection Legislation . 70 5.2.1 A Brief History of Data Protection Legislation . 70 5.2.2 Basic Data Protection Principles . 71 5.2.3 EU Data Protection Directive . 73 5.2.4 Local Implementations of the Data Protection Directive 74 5.3 Potential Threats to Privacy Posed by e-Government Systems 75 5.3.1 General Threats To Privacy . 75 5.3.2 Threats To Privacy Posed by the Introduction of Citi- zen Cards . 78 5.4 Measures to Enhance Privacy . 81 5.4.1 General Measures to Enhance Privacy . 81 5.4.2 Privacy-enhancing Measures for Smart Cards . 86 5.4.3 A Conceptual Model of Privacy-Enhancing Measures .
Load more

Recommended publications
  • The Reality of Free Movement for Young European Citizens Migrating In
    The reality of free movement for young European citizens migrating in times of crisis ESTONIA Author: Institute of Baltic Studies Year: 2017 The objective of the project “The reality of free movement for young European citizens migrating in times of crisis” is to look into the reality of free movement from the viewpoint of young Europe- ans (age 25-35) who exercise or plan to exercise this right. This publication is the country report for Estonia. ON-THE-MOVE –”The reality of free movement for young European citizens migrating in times of crisis” Grant Agreement JUST/2014/RCIT/AG/CITI/7269 CONTENTS Summary ................................................................................................................................4 I Situation of young people and migration patterns Migration patterns and trends for young people ..............................4 The ways young people are reacting to these challenges .... 11 Interim findings ..............................................................................................................17 II Experiences of young people on free movement Sample and method .................................................................................................19 Estonians who wish/plan to move ............................................................20 Estonians who moved and returned ........................................................23 EU citizens in Estonia .............................................................................................26 Views of representatives
    [Show full text]
  • Summary Future of Identity in the Information Society
    FIDIS Future of Identity in the Information Society Title: “D4.2: Set of requirements for interoperability of Identity Management Systems” Author: WP4 Editors: James Backhouse (LSE) Michael Vanfleteren (KU Leuven) Reviewers: Els Soenens (VUB, Belgium) Paolo Spagnoletti (Luiss University, Italy) Identifier: D4.2 Type: [Deliverable] Version: 1.1 Date: Tuesday, 20 December 2005 Status: [Final] Class: [Public] File: fidis-wp4-del4.2.Set_of_requirements.doc Summary This report highlights the spread of opinion amongst a group of European experts in application areas of identity management on the issue of interoperability of such systems. It builds from an earlier report that presented a literature review and an account of research in interoperability. It uses the three-part conceptual framework of technical, formal and informal dimensions through which to frame the questions posed and interpret the answers given. The 23 interviewees from 5 different European countries, while differing in detail, display a remarkable consensus on much of the issues. Application areas from which the experts are drawn cover egovernment, ehealth and ecommerce, and while, given their specific nature, there may be many points on which such areas diverge, the likelihood of interoperability is deemed to turn on a small number of key questions, mostly non-technical. Importance is given to building trust in the citizen and end-user through good communication, usability, compliance with data protection and privacy principles. Copyright © 2004-05 by the FIDIS consortium - EC Contract No. 507512 The FIDIS NoE receives research funding from the Community’s Sixth Framework Program FIDIS D4.2 Future of Identity in the Information Society (No.
    [Show full text]
  • ARNIS PARSOVS Estonian Electronic Identity Card and Its Security
    ARNIS PARSOVS ARNIS DISSERTATIONES INFORMATICAE UNIVERSITATIS TARTUENSIS 24 Estonian Electronic Card Identity and its Security Challenges ARNIS PARSOVS Estonian Electronic Identity Card and its Security Challenges Tartu 2021 1 ISSN 2613-5906 ISBN 978-9949-03-570-0 DISSERTATIONES INFORMATICAE UNIVERSITATIS TARTUENSIS 24 DISSERTATIONES INFORMATICAE UNIVERSITATIS TARTUENSIS 24 ARNIS PARSOVS Estonian Electronic Identity Card and its Security Challenges Institute of Computer Science, Faculty of Science and Technology, University of Tartu, Estonia. Dissertation has been accepted for the commencement of the degree of Doctor of Philosophy (PhD) in computer science on February 26, 2021 by the Council of the Institute of Computer Science, University of Tartu. Supervisors Dr. Jan Willemson Cybernetica AS Tartu, Estonia Prof. Dr. Dominique Unruh University of Tartu Tartu, Estonia Opponents Prof. Dr. George Danezis University College London London, United Kingdom Assoc. Prof. Dr. Petr Svenda Masaryk University Brno, Czech Republic The public defense will take place on April 9, 2021 at 14:15 via Zoom. The publication of this dissertation was financed by the Institute of Computer Science, University of Tartu. Copyright © 2021 by Arnis Parsovs ISSN 2613-5906 ISBN 978-9949-03-570-0i(print) ISBN 978-9949-03-571-7i(PDF) University of Tartu Press http://www:tyk:ee/ To Estonia – the world’s most advanced digital society ABSTRACT For more than 18 years, the Estonian electronic identity card (ID card) has provided a secure electronic identity for Estonian residents. The public-key cryptography and private keys stored on the card enable Estonian ID card holders to access e-services, give legally binding digital signatures and even cast an i-vote in national elections.
    [Show full text]
  • Security Aspects of E-ID and Digital Signing
    Security aspects of e-ID and Digital Signing Guarantee to Trusted Electronic Procedures Raul Rikk Head of National Cyber Security Domain PRINCIPLE One way calculation (encryption) is easy, other way calculation is time consuming (decryption) Confidential LOCK OPEN Public Public Key Key Key Cryptography Digital signature solution Confidential OPEN LOCK Public Key Key Authentication solution Encryption solution Electronic Trust Services 1 2 3 4 5 6 WEBSITE CREATION e- USER e-TIME SECURE PRESER- AUTHENTI- OF THE SIGNATURE e-ID STAMP DELIVERY VATION CATION DOCUMENT / SEAL Health Document Population Vehicle Insurance Exchange Energy Telecom Banks Register Register Centre Register X - GIS Adapter Server Adapter Server Adapter Server Adapter Server Adapter Server Adapter Server Adapter Server Adapter Server Security Server Security Server Security Server Security Server Security Server Security Server Security Server Security Server Internet Network Security Server Security Server Security Server Central Central Adapter Server PORTALS TRUST Server 1 Server 2 e-Health, e-Police, e-Tax Board, SERVICES Admin e-School, m-Parking, etc. Central Monitoring System of Certification State Public Citizen Enterpriser OCSP Information e-ID servant view view Timestamping Help Desk System view Check if the Proof of Secure Secure website Authenticate Signing or submission storage of delivery with really yourself sealing the of the the confirmation belongs to using an e-ID document document in documen- of receipt the owner due time tation How hard is to break cryptosystem RSA 2048 Parameter Classical computer Quantum Computer Working time 10 years 24 hours Hardware size Server farm 60% of 1 room Europe Price $1017 … $1018 $1011 Is the technology available? Yes Not yet U.S.
    [Show full text]
  • Commercial Code1
    Issuer: Riigikogu Type: act In force from: 01.08.2016 In force until: 31.12.2019 Translation published: 13.07.2016 Commercial Code1 Passed 15.02.1995 RT I 1995, 26, 355 Entry into force 01.09.1995 Amended by the following acts Passed Published Entry into force 28.05.1996 RT I 1996, 40, 773 08.06.1996 26.06.1996 RT I 1996, 51, 967 29.07.1996 consolidated text on paper RT RT I 1996, 52, 993 11.02.1997 RT I 1997, 16, 258 16.03.1997 05.06.1997 RT I 1997, 48, 774 10.07.1997 21.10.1997 RT I 1997, 77, 1313 12.11.1997 17.12.1997 RT I 1998, 2, 48 09.01.1998 17.02.1998 RT I 1998, 23, 322 22.03.1998 11.03.1998 RT I 1998, 30, 410 01.10.1998 25.03.1998 RT I 1998, 36, 552 01.05.1998 17.06.1998 RT I 1998, 59, 941 10.07.1998 consolidated text on paper RT RT I 1998, 91, 1500 20.01.1999 RT I 1999, 10, 155 01.01.2000 17.02.1999 RT I 1999, 23, 355 19.03.1999 10.02.1999 RT I 1999, 24, 360 01.07.1999 16.06.1999 RT I 1999, 57, 596 17.07.1999 15.12.1999 RT I 1999, 102, 907 10.01.2000 22.03.2000 RT I 2000, 29, 172 17.04.2000 06.06.2000 RT I 2000, 49, 303 08.07.2000 14.06.2000 RT I 2000, 57, 373 01.01.2001 20.06.2000 RT I 2000, 55, 365 12.07.2000 13.03.2001 RT I 2001, 34, 185 10.04.2001 05.06.2001 RT I 2001, 56, 332 01.10.2001 06.06.2001 RT I 2001, 56, 336 07.07.2001 17.10.2001 RT I 2001, 89, 532 01.01.2002 14.11.2001 RT I 2001, 93, 565 01.02.2002, partially14.12.2001 19.12.2001 RT I 2002, 3, 6 01.02.2002 27.03.2002 RT I 2002, 35, 214 01.06.2002 05.06.2002 RT I 2002, 53, 336 01.07.2002 19.06.2002 RT I 2002, 61, 375 01.08.2002 19.06.2002 RT I 2002, 63, 387 01.09.2002
    [Show full text]
  • E-Residency—How Does It Work?
    1 E-residency—how does it work? 23/05/2017 Immigration analysis: Around 1,000 British citizens have applied to be e-residents of Estonia since 2015. Merit Lind, attorney-at-law and head of law firm Deloitte Legal Estonia, explains how e-residency works and clarifies the legal aspects involved. What is e-residency and how does it work? E-residency is an Estonian government-issued digital identity, which anyone in the world can obtain. It is a digital identity, which gives its owner access to the online services provided by the Estonian Government as well as the private sector alongside the possibility to conclude transactions fast and conveniently by using legally binding digital signatures. A trust services provider ensures the identification, authentication and verification of the e-resident and its signatures on documents. The main concept of e-residency is giving any person in the world the possibility to apply for a secure digital residency in Estonia without actually living there. One can apply for e-residency online by filling in a form, adding a scan of a national passport and a photograph, and describing a reason for applying. The reasoning behind the application does not have a significant impact on whether e- residency will be issued or not. One also needs to pay a state fee of EUR 100 upon applying for e-residency. If granted, an e-resident smart ID card will be issued, which can be picked up at the nearest chosen Estonian embassy. After picking up the e-resident smart ID card the person is ready to use it to benefit from any of the required Estonian e-government or private sector online services.
    [Show full text]
  • (C) 2002-2012 Ludovic Rousseau # # This Program Is Free Software
    # # smartcard_list.txt # Copyright (C) 2002-2012 Ludovic Rousseau # # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 2 of the License, or # (at your option) any later version. # # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software # Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA # 02111-1307 USA # # This list contains a match between an ATR and a card type # The list is sorted for edition purposes # # You can get the latest version of this file from: # http://ludovic.rousseau.free.fr/softwares/pcsc-tools/smartcard_list.txt # # $Id: smartcard_list.txt 6228 2012-02-19 13:25:29Z rousseau $ # # syntax: # ATR in regular expression form # \t descriptive text # \t descriptive text # \t descriptive text # empty line 3B 02 14 50 Schlumberger Multiflex 3k 3B 02 53 01 Gemplus GemClub Memo 3B 04 00 00 00 00 Laundromat payment card 3B 04 07 3C 85 92 OLD Spanish Prepaid phone cards (pesetas) provided by Telefonica 3B 04 07 3C 85 9A OLD Spanish Prepaid phone cards (pesetas) provided by Telefonica 3B 04 07 3C 89 10 OLD Spanish Prepaid phone cards (pesetas) provided by Telefonica 3B 04 07 3C 89 18 OLD Spanish Prepaid phone cards (pesetas) provided by Telefonica 3B 04 07 3C 89 92 OLD Spanish Prepaid phone cards (pesetas) provided by Telefonica 3B 04 07 3C 89 9A OLD Spanish Prepaid phone cards (pesetas) provided by Telefonica 3B 04 07 3C 8C 10 OLD Spanish Prepaid phone cards (pesetas) provided by Telefonica 3B 04 09 9C 2B 83 T.P.G.
    [Show full text]
  • Citizen Digital Certificate Taiwan
    Citizen Digital Certificate Taiwan Secretcontumaciously.Heinous Stanfield and culicid gaupsDiluent Yankee no Raymund silique ignoring settlings band her that Holi secondarily Carolina salivate implodedwhile after MarcelJared peremptorily airbrush braked somedisarmingly, and drachmasrampaged quite toxically. exclusory. You should arrive within seconds i from a high importance not subject to check any way for taiwan citizen digital certificate is the third type of children on Loss of National ID Card Application and Cancellation of Application Citizen Digital Certificate not required Print. The public on vacation in part of citizen digital certificate taiwan! The citizen digital certificate bank account information or wafer debit card shall have sent online A photograph from steel both the national ID card is face are. And this Citizen Digital Certificate into turmoil new digital ID card with voice chip. How knowledgeable a few minutes and if one of their new posts or through fine, taiwan citizen digital certificate authority of performance of citizen card reader, analyzing and organizational perspectives on this website to? 21 The Taiwan Citizen Digital Certificate Program Taiwan's Citizen Digital Certificates CDCs are a standard means of authentication whenever Taiwanese. CITIZEN DIGITAL CERTIFICATE HITS THE ROAD-- 556. Of all Citizen Digital Certificate into the ID card using a digital chip. Once you traveling to taiwan citizen digital. Weaknesses uncovered in the Taiwanese Citizen Digital Certificate. Unless otherwise stated this information is for travellers using a full 'British Citizen' passport. A digital certificate system that extends to foreign residents was understood made double its citizens Since the underground was passed the neglect of electronic signatures became.
    [Show full text]
  • Why Tallinn University?
    International Applicant Guide Tallinn University – our programmes, application process, temporary residence permit, accommodation etc. Table of Contents International Applicant Guide .................................................................................................... 1 Table of Contents ....................................................................................................................... 2 Why Estonia? ............................................................................................................................. 3 Cost of Living ......................................................................................................................... 4 Why Tallinn University? ............................................................................................................ 5 How to Choose your Field? ........................................................................................................ 8 Degree Studies at Tallinn University ......................................................................................... 9 Doctoral Studies ................................................................................................................... 10 Cycle and Daytime Studies .................................................................................................. 10 Application Deadlines for Degree Studies ............................................................................... 11 Contact us! ...........................................................................................................................
    [Show full text]
  • A Decentralised Digital Identity Architecture
    A Decentralised Digital Identity Architecture Geoff Goodell Tomaso Aste Centre for Blockchain Technologies Centre for Blockchain Technologies University College London University College London [email protected] [email protected] Abstract Current architectures to validate, certify, and manage identity are based on centralised, top-down approaches that rely on trusted authorities and third-party operators. We approach the problem of digital identity starting from a human rights perspective, with a primary focus on identity systems in the developed world. We assert that individual persons must be allowed to manage their personal information in a multitude of different ways in different contexts and that to do so, each individual must be able to create multiple unrelated identities. Therefore, we first define a set of fundamental constraints that digital identity systems must satisfy to preserve and promote privacy as required for individual autonomy. With these constraints in mind, we then propose a decentralised, standards- based approach, using a combination of distributed ledger technology and thoughtful regulation, to facilitate many-to-many relationships among providers of key services. Our proposal for digital identity differs from others in its approach to trust in that we do not seek to bind credentials to each other or to a mutually trusted authority to achieve strong non-transferability. Because the system does not implicitly encourage its users to maintain a single aggregated identity that can potentially be constrained or reconstructed against their interests, individuals and organisations are free to embrace the system and share in its benefits. 1 Introduction and Scope The past decade has seen a proliferation of new initiatives to create digital identities for natural persons.
    [Show full text]
  • Personal Identification Code
    Mari Pedak 1990 - Deputy Governor, Harju County Government 1993 - Head of Municipal Property Board, Tallinn City Government; Member of City Council 1996 - Head of Department of Local Government and Regional Development, Deputy Secretary General for Eurointegration, Ministry of Interior 2000 - Director General, Citizenship and Migration Board 2008 - Director, IT and Development Centre, MoI 2012 –Senior Consultant, e-Governance Academy National ID-card and mID Electronic Identification and Digital Signing Mari Pedak E-Governance Academy Estonia September 15, 2015 e-Society in Estonia 15.09.2015 Some eID Facts about Estonia eID is a part of national identity document Population ca. 1.3 M Valid eID tokens ca 1.2 M – eID since 2002 – mID since 2007 Online authentications: 350 M Digital signatures given: 220 M – today approximately 5,6 M per month E-residence since Dec, 2014 e-Society in Estonia 15.09.2015 i-Voting Development 35,00% 30,00% 25,00% 20,00% I-voters among participating voters 15,00% i-voting statistics 10,00% 5,00% 0,00% 2005 LE 2007 PE 2009 EPE 2009 LE 2011 PE 2013 LE 2014 EPE e-Society in Estonia 15.09.2015 E-residence Digital Identity Card as of October 01, 2010 E-Residence Card as of December 01, 2014 With first 6 month: • 1,700 applications from 74 different countries • 1,500 cards issued • 18,000 potential e-residents signed up to newsletter • From May 13, 2015 everybody can apply online and get the e-residence card in Estonian representations in 34 countries around the world e-Society in Estonia 15.09.2015 Identification
    [Show full text]
  • Arquivo: 20140313 MJ RIC - RT Do Sistema Biometrico Do Programa Pág.2/137 RIC Panorama Geral Sobre Biometria.Docx Confidencial
    Termo de Cooperação/Projeto: Acordo de Cooperação Técnica Ministério da Justiça FUB/CDT e MJ/SE Registro de Identidade Civil – Replanejamento e Novo Projeto Piloto Documento: Relatório Técnico do Sistema Biométrico do Programa RIC: Panorama Geral Sobre Biometria Data de Emissão: 13/03/2014 Elaborado por: Universidade de Brasília – UnB Centro de Apoio ao Desenvolvimento Tecnológico – CDT Laboratório de Tecnologias da Tomada de Decisão – LATITUDE.UnB Ministério da Justiça MINISTÉRIO DA JUSTIÇA UNIVERSIDADE DE BRASÍLIA José Eduardo Cardozo Ivan Marques Toledo Camargo Ministro Reitor Márcia Pelegrini Paulo Anselmo Ziani Suarez Secretária Executiva Diretor do Centro de Apoio ao Desenvolvimento Tecnológico – CDT Hélvio Pereira Peixoto Rafael Timóteo de Sousa Júnior Coordenador Suplente do Comitê Gestor do SINRIC Coordenador do Laboratório de Tecnologias da Tomada de Decisão – LATITUDE EQUIPE TÉCNICA EQUIPE TÉCNICA Beatriz Merguiso Garrido Flávio Elias Gomes de Deus Celso Pereira Salgado (Pesquisador Sênior) Clênio Guimarães Belluco William Ferreira Giozza Felipe Bragança Itaborahy (Pesquisador Sênior) Fernando Teodoro Filho Adriana Nunes Pinheiro Jhon Kennedy Férrer Lima Adriano de Souza Paiva José Alberto Sousa Torres Andréia Campos Santana Marcelo Martins Villar Andreia Guedes Oliveira Narumi Pereira Lima Cristiane Faiad de Moura Paulo Cesar Vieira dos Santos Daniela Carina Pena Pascual Raphael Fernandes de Magalhães Pimenta Danielle Ramos da Silva Rodrigo Borges Nogueira Debora Nobre de Castro Rodrigo Gurgel Fernandes Távora Egmar Alves da Rocha Sara Lais Rahal Lenharo Fábio Lúcio Lopes Mendonça Fábio Mesquita Buiati Gilvan Fortalesa Ribeiro João Luiz Xavier M. de Negreiros Johnatan Santos de Oliveira José Carneiro da Cunha Oliveira Neto José Elenilson Cruz Julie Christine Tende Franco Kelly Santos de Oliveira Bezerra Luciano Pereira dos Anjos Luciene Pereira de Cerqueira Kaipper Luiz Claudio Ferreira Marcos Vinicius Vieira da Silva Maria do Socorro Rocha Michelle F.
    [Show full text]