Government IT - eWeek


Battery 500 Project Charged Up over All-Electric Cars
Charting the Final Frontier--Google Maps for Indoors
Get Smarter Technology on Your Mobile!
  Government IT


Momentum Builds for Digital IDs



 By: Chris Nolan
2005-06-09
Article Rating:starstarstarstarstar / 0


There are 0 user comments on this Government IT story.


Rate This Article:
Poor Best
Opinion: Given the current ease of data theft, consumer demand may spur development of more secure forms of ID.

Its beginning to feel like a weekly occurrence: A large company with sensitive employee or customer information—financial records, Social Security numbers—announces that its security has been breached. Theres a flurry of headlines and then a little pause. Then theres another announcement by another company.

This week it was CitiGroups turn. The company said digital tape records carrying customer credit ratings had been lost en route to a credit agency. In this announcement, CitiGroup joins Time Warner, ChoicePoint and Lexis-Nexis in having to acknowledge security breaches or loss of records, although CitiGroup said that, as far as it could tell, no harm had been done any of its customers.

Whats going on here? Why are these incidents in the news all of a sudden?

For that you can blame California politicians. Lawmakers probably didnt intend to launch a drumbeat of bad publicity for credit card and other big companies when they passed a law requiring those companies to notify customers when they learn that their personal information has been released. But thats the effect the law is having.

Its simply too hard to parse out California customers—the state is so large that it would receive most of the notices anyway—so companies are erring on the side of caution and telling everyone when theres a potential problem. And that drumbeat of publicity is, itself, having consequences.

Resource Library:
Click here to read about Bank of Americas approach to fighting identity theft.

Not to be left out, other states are passing or introducing their own legislation mimicking Californias law. And its fairly clear that Congress will take similar action by the end of this year. So notification will become the law of the land. That, of course, could mean more bad publicity.

Which raises a more important question: What—really—is to be done in the long term? Its hard to tell.

Part of the problem, says Larry Ponemon, a data security and privacy expert, is that Congress and the Federal Trade Commissioners (the FTC is the agency that oversees fraud and other consumer issues) isnt very technically sophisticated. They dont see the range of trouble and theyre often dismissive of sophisticated solutions.

"I dont think the regulators understand the complexity of the problem, said Ponemon, who has been called in to talk to some groups on Capitol Hill. "Their technological acumen is pretty low."

Well, its hard to make a group of folks who depend on being recognized by the Capitol Police as they walk around the U.S. Capitol and its surrounding office buildings understand the utility of, for instance, a barcode system of tags that could be read by sensors embedded in doorways thresholds. For the unsophisticated, it just seems too easy to rely on a machine, not a man who smiles and holds the door.

The security systems that are used today—reliance on personal information like birthdays, mothers last name, Social Security numbers—worked well when commerce was based on paper and information was harder to discover and difficult to save in an orderly fashion.

Once information is stored in a database it can be found, replicated, linked to other information and easily shipped around. That, of course, makes it easy for an American shopper to use a credit card in Singapore or for a business traveler to claim frequent flyer miles at the airport check-in, but it also creates easy opportunities for theft. Once a thief knows a little, he knows a lot.

One solution that appears to be gaining some credibility is the idea of a Digital ID. The ID—a number or code—could be replaced if it fell into the wrong hands. Unlike a Social Security number, its not tied to bank accounts or credit reports. There are problems with this idea, of course. It cant be sloppily managed like, say, the allocation of Social Security numbers has been. If compromised, the system would never work properly. Its got to be tightly managed from the beginning.

Read more here about Microsofts digital ID vision.

Still, the idea of a system which separates identifying features from the accounts that are currently associated with ID—namely Social Security numbers—isnt a bad one. But Digital ID does sound a little too controlling for some. Its a bit too close to the creation of a national ID card—in fact, its probably a first step—and that is a concept that will meet with strong opposition from a number of quarters in and outside the tech community.

Certainly, frustration is building, and the regular announcements about data security breaches arent going to ease anyones fears. Instead, they may well increase peoples worries. Consumers, frustrated by seeing their personal information released again and again into the wrong hands, and especially business and other frequent travelers frustrated by airport and immigration delays and a growing sense that online security is far too fragile, may well force some sort of universal solution.

It wont be immediate—its maybe four or five years away—but its coming.

Check out eWEEK.coms for the latest news, views and analysis of technologys impact on government and politics.



  Reader Comments: Momentum Builds for Digital IDs
>>> Be the FIRST to comment on this article!
 

 
 
>>> More Government IT Articles          >>> More By Chris Nolan
 


x}ks㶲*Q3皢H=m-y3cigR[HHbL<$G˭_zPq2D th4{$ G3L{B1(ٟ9ЧGLzIj}ݻ@AizN)##3WrD廚fw2'v=S;^> \?g#Q;Y|v@ߨV9AÙML}! {>"B%h!1Qus{/ !X]~j4Lߵ#2hj9TN`Uƞfn=Ƌaz.91rx&j- Go,gu'9"ScO$աNIp/09Q#@XSTHԢf̴;gj5[gb}ױ}ǣ# 3E5L_FB$fŭ0)5g?LGхN؎MEnOU[۾tisqDfrdKHU6)C Tw<-0;DL=:/GyÙÌ[~i ˇjP8.VKBYr7mù-Ӟ?89n^wf?͇_a9ʑ#Ko5-'4Pt;׽~l@.{Q\`'HH7&LT-JR,ϒLCaOmq5 u P礋\獒A7nJtXT Z, Ԏ$0L"ÌJ3~̢(CdNdВ-AoA>C,[3sAVU̠`W:+1㝩S9k<_st.[>9]VSGV=Bg#j`Bmiue_Zr`Kk'^3Q&ںa#jCICw:|&޺xr9%9Ioȿ `lDmYܾ̑\RyǛȃka)(7F`X@7? iP2zq* ߱n^S;G5ۯhV9<<䭱JG+Ҕj 9BA`ܼN49Vϡ8蟩$Wm4@r1YSl؅ RMFoB@{e ,}PEtBAͨO ${3BDȝ`g@ BD4?CC0&pt/\~5 .ÓawW9Q] K\MޢG <Ǟ4vz~6LqJjpX.B2iKB0.pjjۛjr_)CR/+&rO f[Ԗ-Pò˔A ><fC aͨ6s|Vix>:ACA4icŦh4@ӧ&h`C:ҋ:L{ͣn]=&tno7,AbGa`Ψs!FAтMx>tT؎]6}l2w9;-L&w& zrWtc` VPCh9N@tmS(r`ڝfZȴc@LdlٚM܏63uBB13 =gƠ'_u˙.'˗јSQrRҋsMwd50egYA3'|(@]4>+WUPÃ"`"+42[m̞w(V֌f;\X䞅ʁZ¿Jʳ"#P3>ťp(mtfй+>q^v.iC@ӬXKuooE[1(ĿKúJJx -Hod koռE_xee8HyK-#rB`}.E6Gh?40;LSw]:6pȞc>S+EE.WӟBxz#ZY-cU=JRzgܲK(N$7CJ$l%KWw@4-=]OT hBJmHǝ:~LҦV L U)ꊩ(zq X0b={t9pJ.,q暚\,-*g5eOlJ s<&uM8` ;fcxF3FԱiQP7uig#2RLא~3VʅĴL~5<2eX]2XrƎe9ٔA5n\?0Sʤkh& gziD*˜,Zag+F5aްܧ^ǨOv"5w.Bā&h<.[Ro==;Ģ\Qۂ+6B`Sքc'M}XtSykyWӀap‘"}jA46\,0|*W*Uˈ`n+V/(% 7]@.&D~?DNS}O=.C+DÜU^fx.$jXUcrxɡV\=.)j8+|%ZA~~̻8 iߥ: 9tc~y890Nݟo>4zxp87 `3|x+푹ߙ#[W`eaSƘ=H`S +R_͑<]I0K1SlcSxt$ b*ZAU[+[3]>F]h!.־7)X@P A6+8SU-JT\rO-x[zGs8-" ,r޻e=Qe৔TVQqi?r;d跸2] Q|`̌؇^gm/JzX+*5"KAG^320"#;wF!bVS_C܏.q=:(T\7gmE{H^ac7U[@oF)-ӫe4 "cIpR|5}M>r7poj%[Z]EnMsE)yFD3=JTɍ#<Dr?n206Em/POG]Qr/19W|փt8ߙW]?`gvѯk`jd W- hܕ[2Ad r6_?L}[L4zɖ0-0]sK]7a Z/i)ր EXqkTV c-ϼ \X 5ry%&Q j>Gwiŏh(5rv=C> PjQKKIպi2RKbU)<*쵊jlm  l⊗vXCKτkox~E 6-2j>kR9,ԕKOe3q1쌸8DX=x`6 5]st53yp0Ns-$NM6fƺ}`}` YV|ejMRԞE'L40|aߏ uRԣo{{k7}3݀ G+L)߭~*1WIHT]{ si#gD)UjJeѓ%O.'-U*j vq *s>P9۷BlpH3TmCXp| ^?KXXD>DQkF\{e"nxb* gF Dccbh^f{q`z oP[/I6S0:;_tMb3ax -⤔Qԕº}wi ΏHQegˁtv.> ~l?<wo&cr?DZ}cq ,}E\:"c{/[R|Q^ٷ9P K rcF16bd+]=/aoVta؆.g0F@qIDWNzA+t;Kߧ5?wL.:m)ޠw%y0WԼ輿m48Z&IyD)t_6Q"B@I˸[k,ruXMr!}%=CɢkhM~{+^+,k 5̀o$ÃXP8,׀zB*.i%D[( `E/)(+RJ)"4FYO |FZu3_f| Rt<~Ur;Hעo)MJ!}J_cNfo4~ ɮP=8,rh%縵vR.0?xԾ6 z?&i^K_"TS8LMàv)fTSeoy0;Ɩs8@!՝R"(u?Is6uYԺY[&͘#xAR:%Ii" Uu$JRSfj*# $_2HI,v+ht$lAW jÚ]e /.t6D20O&8v\f0G`q06/‰@P V% ?f@t)cf ~]ު箅MZ%71Axl Ggay8F<.Ə%⇆3LQLV\y1h_9ar҆>cAIi#Q 6j 2}?GB"fFc8EE[o\fmef7cŸA!{zm'MNi l&Ƕs$;grx l;omݭnM M A;"J <[N=>[4 2UCnK_:Z1iE0pDao[1΢ Imi|o(o'򽥎x5) kNW&/6o).w?дg=.0Sa_Ͻy2.mE>zQc%F}?^Sϗ,t4?q27 ~~+lFY:Ө+EXɇ&L+dXZgƺ1w?|DyYbZrqx/aЀvnD(^GNK|2,xhP 7uY% . a)1uS8ҷqL)gs-DEtete s/ b# uC]L@- rF;06|p4uYD81e?;ˌH-f>SϪb3`@0:ɬa;l)R5,yDҥdId+Nl$.ŕBCym"e[P6"pEZQ)ٚ/iM6F..O&"YJDN(:;7La 3cǧyׇQԗ5z&λ$ΗX,m0IDhrbp_~t_tx9 z!bdi 'PBbsR'ADI-dҟHkW%7ޠ,J")y<>t1m*ᣞdKytfښ%uf;b@{vzx<.p& 0x$G<Š˯`/H;,lWŗ]t zx$X-nl]uKN(2'j(@;V@jbh3<H OP 3W x_=i][yƺ/ q% L"x1REC?!K!$DAw7~5#D$Di-,b'c0/Ř0/RVIa<둟a}X220g"9LkG Ř6|̋6r}oa>>(-^awUqjki\Mc ziv0%y4I v ͯ]JL_"|ͱɒqfs[OyюM-۠[.н"%&hPjߙcǁv/:OļT^sn?La.=`` e|oEZ`3+n{lˊRMȶ8.kAJNa\5m:ˡS4 ?R)!m%:* <+src6يjM]SG%K..ڰkbD+ )o3FcSOcSP0ۄC c  Ƅ[)RUfwܠ~z*ڟOgh^f{BV{F dM,˒|U:l|%wRW3-b6}~ }^ANM V.MFoJ@QoIg!4ߌ Pm¼܏HbSx3 Gd.$1qs5`G< roEVIz# ,@'Eꊍ\DQ`B p47f\o}G@F3G}m"Ay;f `(!VvW.+Ja 3( x7tg)CѧV<?qa)rA1H3vGVo>\_ "1";'ph\`sr@KgL*2&Bs879|_LYJ%#a k(E$1mDR,) [s6#&|M\Q·׹bbWoP$P`HW3( 9|_i~ <*$ZU,KEvY@y+LL͂`Aa~L­!Rjs# h_¼fF Lma`t.t?~?]:Affp͒w\j:rtT b8+M4?3,ȏe%nK ᩊRyL ]ǒ 4B1h6A2_7=}m|?ݩ2{xCbwT IhR tX(9CȮ KDn*:m_]xC%ԠYQ^*_ӄ^I+\QY / PIj WuGSIS`ٷGмLzפIήmx?\ :KrҾ9*lkEQvIwsپ\r3 cQlB[d_T ΓQ9lvNSʙWfqm.4 "GdȀW.}Q X\mB }J*Q^e5DU@*:7h21SlM֖C|@VՉt.1]rZO-LOi4Q`1D*'M& τI8SD~}: vn"((M$彌rР(?g@ Pq}y'8/rN+g:NF?sPy}Ȁ]1>]w}} v3e2OP)3(By72c|/A~.32cz^F{z_?2 ޿x:?>7_?}OP)'ߧ @MV9M@7d_ryʛrּ…)IFy98rEUrXB]eBy><_`ekWtsf_3̭L_:WVr]!,.%PUZ« /Y3ʹqմ 6 VD=՞bMdG,DlG\%Üf1'a*e(c#h .Ñp[y剹?|K2xwi0@ۓ{ݯ\pmঠϻH^-aીOW]}ExvY^]Yj7mϋ9y}³2Sw١އ ߊD+,z e%Hi_1ϛ"MLg<?jnAm{} `/ë6{hg"diA]adz37P3 !GaW@je2 Er)<螁1~54]M4pὍ6&3O3ebHHTTR{5M = G1wQTY)ȅ[V R`" *s>P`26UJ` Pz!OJ1=4c­dK_cwp EУ/hH\˘@͛YH~ݢHጽNѯXJ 1`f@p b/[{8z5(s/ƶ7:/ hӐM Fؒ%Dİ-=)N>@O2#Y&38M!7cAݡ=G'oB~ S-G37dKdp!gB-Zыt^HaD˺&"/L( 5=_oaV'ֆ"V<'B.:N/ɱw|ಓ_b৸4-3ѭpS&bb P|_|a^\='Ḡ08=8Gf2Ş_ m޳Zo/TsLH yOcӄ2v~u, {+2‡_i uu'sE5nƄ!نI7a'6AՋpOaĵwB=Xt$,Y{N6 )4Mϫ΢Ryn%()%y+6(م0U7VAO=Y,> N_$v{%Bp`#,ޛ |o,CgcS/r}7 |In[zQڗ@1a璧;f*i/K7? /X)Ns'|oSې)0Ʃy4ŵ;OulÝg@ P!y޴}LWFWݞO Xo}8l-d6CF|%Joy 9D/7a{~ r@c],ngn`Cl .3.OY& hWa! e71KLP`O3&w6G}wd ȉ(l}jf+owt%(5x;nGOWe%!Ү\)Vbʥ.Sܟ=Ba҇fHEץk,^zeXٿ"gP9N]PjãÍ ,Wck-ҭ<P0_CA&?c5Vqٮ7GL}ݰ+` jk7E]EtAA wVǰ=dBLN Po3pRaL (b[иT{&Lǫ 92lt* X*KŬ"D0H'Z:tsh{h۟ZsTHهl*~&/1Y,{ۺнT~xI*'\`b T*7/KwbA; <]fsTO34[;<;Oo;{hT*ቋoڝ烣ŧu Fғ׽-)h,=R$Du $zWVs>YuK+_1ZF-<#@g5Vj"<&/(FҢΰ \岞JV01{l~r[)#Es̥D/4^JB\qrh6