Re: South Korean ID system to be rebuilt from scratch

The Estonian scheme ( http://www.economist.com/news/international/21605923-national-identity-scheme-goes-global-estonia-takes-plunge ) seems like it may have learned some lessons from these failings. This article doesn't get deep into technical details, but it does say Estonians can authenticate their ownership of an identity and sign documents (and they have two corresponding PINs for their ID card.) And if cards are lost they can be cancelled. 

Nate Otto, Developer 
concentricsky.com

On Fri, Oct 17, 2014 at 7:04 PM, Manu Sporny <msporny@digitalbazaar.com>
wrote:

> South Korean ID system to be rebuilt from scratch
> """
> The ID numbers and personal details of an estimated 80% of the country's
> 50 million people have been stolen from banks and other targets, say
> experts.
> """
> Things we should avoid:
> """
> There are several reasons that the ID cards have proved so easy to steal:
> Identity numbers started to be issued in the 1960s and still follow the
> same pattern. The first few digits are the user's birth date, followed
> by either a one for male or two for female.
> Their usage across different sectors makes them master keys for hackers,
> say experts
> If details are leaked, citizens are unable to change them
> The government required net-users who wanted to deal with banks or shops
> online to use a Microsoft product, ActiveX, to provide a digital
> signature but critics say it was a simple password that could easily be
> duplicated
> """
> http://www.bbc.com/news/technology-29617196
> -- manu
> -- 
> Manu Sporny (skype: msporny, twitter: manusporny, G+: +Manu Sporny)
> Founder/CEO - Digital Bazaar, Inc.
> blog: The Marathonic Dawn of Web Payments
> http://manu.sporny.org/2014/dawn-of-web-payments/

Received on Saturday, 18 October 2014 16:23:03 UTC