De risico’s van “Pinnen moet”.
Steeds meer winkels accepteren geen contant geld meer. Pinnen moet – in plaats van pinnen mag. Als reden wordt het voorkomen van overvallen genoemd. Maar mag het wel: contant geld weigeren? En wat nu als je nergens meer contant kunt betalen? Dat heeft gevolgen voor de privacy, en de betrouwbaarheid van de samenleving.
Pseudonymous data should not be exempted from data protection.
Europe is currently discussing an update of its data protection regime. The Albrecht Report suggests several amendments to the Commission’s proposal for a new regulation. One of the proposals is to limit the protection for pseudonymous data. I think this a dangerous idea.
De Amerikaanse arm der wet is echt langer dan de minister suggereert.
Het parlement had wat vragen over lengte van de Amerikaanse arm der wet, als het gaat om het ‘datagraaien’ in de cloud. De antwoorden van de minister zijn op zijn zachts gezegd verhullend te noemen.
Attribute based credentials and digital signatures on a single eID
In our IRMA project we are implementing attribute based credentials on a smart card. In fact, we are developing a proof of concept for the Dutch Ministry of the Interior, to show that this technology can, in principle, be embedded on a national identity card to support eID functionality. One important other application of eID’s are digital signatures. The use of smart cards (combined with secure terminals) allow the generation of so called qualified digital signatures as specified in the law. How should these two applications be combined on one smart identity card?
How to make money with privacy friendly identity management.
Technically it is feasible to provide privacy friendly identity management, for example by using attribute based credentials (ABCs). We are currently demonstrating their applicability in practice, even on smart cards, in the IRMA (I Reveal My Attributes) project. However, the use of ABCs in the real world is still very limited. One of the factors is the lack of a business case that supports the (substantial) cost of establishing an identity management infrastructure. In this (rather long) post I will sketch the issues, and indicate certain ways in which I think money can be made in an identity management infrastructure. The analysis is sketchy, primarily because I am not an economist. I would love a discussion on this topic, to advance the ideas in this post further.
9 comments