Follow Slashdot stories on Twitter

 


Forgot your password?
Close
typodupeerror
×
Privacy United States

Single Government ID Moves Closer to Reality 239

Posted by samzenpus from the papers-please dept.
NewbieV writes "The Washington Post is reporting that "federal officials are developing government-wide identification card standards for federal employees and contractors to prevent terrorists, criminals and other unauthorized people from getting into government buildings and computer systems." The project is known as the Personal Identity Verification Project, and is being managed by the National Institute of Standards and Technology (NIST)."
This discussion has been archived. No new comments can be posted.

Single Government ID Moves Closer to Reality More

Single Government ID Moves Closer to Reality

Comments Filter:

  • Oh? (Score:5, Insightful)

    by mythosaz ( 572040 ) on Thursday December 30, 2004 @08:41PM (#11224303)
    Wow, similar IDs for government employees? This might prove as dangerous to our freedom as, say, Military IDs.

    • Re:Oh? (Score:4, Funny)

      by Alabama_Man ( 844944 ) on Thursday December 30, 2004 @08:51PM (#11224368) Journal
      Dangerous to our freedom? Our freedom is already in the toilet. Hell, even the future isn't safe anymore,it's being sold! [ebay.com] So much for all your plans of a "unified id card".

    • Re:Oh? (Score:5, Insightful)

      by Staplerh ( 806722 ) on Thursday December 30, 2004 @09:06PM (#11224459) Homepage
      Wow, similar IDs for government employees? This might prove as dangerous to our freedom as, say, Military IDs.

      Oh, give me a break, who modded this 'Flamebait'. Give me a break, he had a valid point.

      If you don't want a Federal ID card for employees/contractors, don't join the Federal government? This is more akin to a Military ID card than a 'national ID card'. I think this is a great analogy, and if I had meta-mod points I'd mod that unfair.
      • If you don't want a Federal ID card for employees/contractors, don't join the Federal government
        Oh goody, in your world the government is controlled by market forces and voluntary participation. That means I can choose not to pay taxes or follow the laws if I don't like them.

        Sorry, but our government isn't a corporation that can dictate rules on a whim and tell citizens to go away if they don't like it. Not yet.

        • Re:Oh? (Score:2, Insightful)

          by Xoro ( 201854 )

          Oh goody, in your world the government is controlled by market forces and voluntary participation. That means I can choose not to pay taxes or follow the laws if I don't like them.

          You pinhead.

          The system is for government employees. Surely you can decide if you want to become a government employee or not?

    • Re:Oh? (Score:5, Interesting)

      by The Snowman ( 116231 ) * on Thursday December 30, 2004 @10:08PM (#11224862)

      Wow, similar IDs for government employees? This might prove as dangerous to our freedom as, say, Military IDs.

      Exactly. This is not a federal ID for the masses, it is a combination ID card and access badge for secure facilities. It provides a single ID so checking IDs is easier.

      Checking IDs at public places is retarded. Checking IDs at restricted access places like military bases, NASA, NSA, etc. makes a hell of a lot of sense. Joe Blow should not be allowed in the CIA headquarters. As it stands right now, each agency has its own ID card. Let's say the FBI is investigating a military member. The gate guard has to know what an FBI ID looks like if he is to provide effective entry control. By creating a common ID across the government, the gate guard knows where to look on the ID for the relevant information and what should be there.

      I have one of the new military IDs. Military, civil service civilians, contractors, everyone uses the same damn ID but certain words are different, color coding is different (e.g. civil servants have a green stripe), etc. It has a microchip built in with RSA keys unlocked by a PIN. I can use it to log in to Windows NT and Solaris boxes with card readers. If this is the future of IDs for government workers, the government finally did something right for once.

      • Not really (Score:2, Insightful)

        by Safety Cap ( 253500 )

        Checking IDs at restricted access places like military bases, NASA, NSA, etc. makes a hell of a lot of sense.

        Every single one of the 9/11 hijackers had IDs.

        Timothy McVeigh [rotten.com] had ID, too.

        IDs do nothing for security at all [schneier.com], except lure gullible people into believing they do something to promote security. The proposed Federal IDs can tell you if a known terrorist is trying to get a job in the government. If a person is a "known terrorist" why in god's green earth hasn't she/he been picked up yet? Oh wait..

        • Re:Not really (Score:4, Insightful)

          by crawling_chaos ( 23007 ) on Friday December 31, 2004 @09:38AM (#11227485) Homepage
          Passwords can be cracked. Should we stop using them? Locks can be picked. Do you leave your house door open?

          Properly handled IDs do contribute to security, but they are not a panacea. Nor is anything else for that matter. Security is a process, not a technology, but dismissing a unified government employee ID as "totally useless" is just disengenous. At a minimum, it increases security by lowering the training burden on the officers responsible for checking on access rights. Can it be defeated? Sure. Is it harder to defeat than the hodgepodge of identification systems currently in use by federal agencies? Yes, it is. The current FDA IDs are a joke, for example. I would bet any talented forger would have no trouble producing a reasonable copy of one with today's technology.

    • This might prove as dangerous to our freedom as, say, Military IDs.

      Coincidentally, have you noticed that military personnelle have very little freedom? As a friend who was in the infantry put it, it's ironic that to defend freedom you must give up your own. When in the military, you can be involuntarily moved around the world, and you may or may not be able to bring your family. You often cannot choose your own line of work. You have restricted [nydailynews.com] freedom of speech. You can't choose your own clothes.

      • Re:Oh? (Score:2)

        by ifwm ( 687373 )
        Amazingly, since we in the US have an all volunteer army (this is where someone attempts to claim a draft is coming) none of your points matter at all. You don't like the rules, don't play the game.

        I think the gp was making the point that ID cards for government employees are COMPLETELY UNRELATED to ID cards for private citizens. They were right. I saw no reference to "Big Brother's disinterest in running our lives".

        In fact, I'm not sure why "big brother" and "running our lives" are even valid topics
        • You don't like the rules, don't play the game.

          And increasingly people are not playing. The army has a huge problem recruiting, largely because people heard of conditions outlined by your parent. I thought about national guard when I was a bit younger. You know, being a hero you always see in the movie during a natural disaster without having to kill people or live in barraks for extended time. Fucking liers! [army.mil]

          Do you really want other federal jobs to lose appeal as well because they do so many invasive bac
          • And increasingly people are not playing. The army has a huge problem recruiting, largely because people heard of conditions outlined by your parent.

            Actually, that's not true. They've exceeded the ever-increasing yearly quotas for years. The specific category of recruiting for the national guard has had a hard time of it lately because they can no longer say with a straight face that it'll be only one weekend a month and 2 weeks a year, and they usually recruit outgoing regular military folks looking for a

  • I'm against this.. take three guesses why? (Score:5, Insightful)

    by Ckwop ( 707653 ) * on Thursday December 30, 2004 @08:41PM (#11224311) Homepage

    Oh dear jesus god no. If you're going to put all your eggs in one basket at least guard the basket well! The problem is that by unifying all the ID card systems they don't defend the basket as much as they should.

    This point can be illustrated well with Safes. If it costs fifty pounds to break into a safe and only put forty pounds worth of valuables in the safe my safe is secure. If I get ten of these safes, each with forty pounds in them then the total of four hundred pounds worth of valuables is secure. Now let's say I decide to replace my ten safes with a single safe! A safe that only takes three hundred and fifty pounds to break in to is no good; I need a safe that is secure in the face of a four hundred pound attack or more.

    The problem with centralising identifications systems is that the new scheme is rarely more secure than numerous schemes it replaces. Except, Except, this time this one ID acts as identification for many types of service and this makes everything less secure. Just for the sake of argument. Let's suppose I choose to attack the system in a certain way. Let say I want to obtain a real "fake"; that is, a card that is authentic but I've paid an employee that produces the cards to put bogus information on to the card. Rather than finding two friends in two different branches of government to supply me with a real card in a fake name I only have to find a single person. This type of weaking isn't just true for this limited type of attack - this weaking is there across the board.

    Having different IDs is a simple security mechanism. It's the same reason that Microsoft's Passport technology is dying. Yes it might be more convient to have a single "sign in" but it means that you've produced a single global failure point for the entire system. Such systems are brital so please, I ask these people: hire some security professionals to make these decisions. Silly politicians making "security" decisions is about as helpful as putting a football coach in control of skyscrapper construction.

    Simon.

    • single system = single point of failure
      which means when a single point fails, it ALL fails.
    • I agree, a single point of failure is just asking to be taken advantage of. However, a single well-secured standard is much better than several well-secured standards, since the latter gives more points of possible attack. I.e a well defended main gate or several gates with the security spread amongst them... Sadly, it looks like those who designed the system are going for the single point of entry which is secured in a "let's get this done as soon as we can" fashion... Just take a look at this maze of a
    • A safe's security does not depend on its contents if the contents are hidden (which most safes are, and so will ID cards). A locked box containing the Crown Jewels is no less safe than a box locked with the same type of device, containing 10 euros.

      I think you are confusing the consequences of having the safe broken into with the ability to break into the box.

      Chris
    • This is a very thoughtful analysis, and yet I still think it's a bit flawed, for two reasons.

      First of all, 10 security systems are not necessarily more secure than a single system if a successful breach is defined as breaking into any one of them. That's because now there are 10 times as many possible methods for compromise. In other words, if there are 10 security systems, and a terrorist wishes to compromise just one of them, he is now free to analyze all ten and choose the weakest. Granted, with a singl
      • Comment removed based on user account deletion
      • Except that this isn't about protection from terrorists at all, its about control-freakism on a rampage.

        The terrorist that defeats this, will be one with a valid ID as janitorial staff. Not someone trying to fake an ID as a junior senator. Duh.

        Don't you wonder a little bit, that they're rushing to protect all the official buildings, when people like you and I will still be unsafe in public buildings? Do they think this will have protected us at the airport prior to 9/11, or in the towers? Even the pentagon, that was attacked, wasn't infiltrated with a fake ID, but with a 757 hellbent for the ground. Duh.

        Centralization is a fetish for the elected nazi wannabees. It won't do a damn bit of good for you and me, and only a fool can't dream up at least one way for it to be abused...

        • Re:I'm against this.. take three guesses why? (Score:5, Informative)

          by mcg1969 ( 237263 ) on Thursday December 30, 2004 @09:41PM (#11224676)
          The terrorist that defeats this, will be one with a valid ID as janitorial staff. Not someone trying to fake an ID as a junior senator. Duh.

          Umm, I never said someone needed to impersonate a senator. In fact, a janitor is exactly the kind of thing I'd imagine, too. And yet, even janitors don't have access to every building in the government. My comment still applies.

          Don't you wonder a little bit, that they're rushing to protect all the official buildings, when people like you and I will still be unsafe in public buildings?

          Umm, no, I don't think they believe this would have stopped 9/11. In fact I'm hoping they go on the assumption that the terrorists are exploring different ideas as well. Besides, you sure do have some interesting logic: don't bother to protect anything because you're not protecting everything.

    • But, a manager in building A should only be able to grant access to builing A, and query if you have permission to access building A, not the entire government. And anyone should be able to query the system to confirm your identity. Of course the system might be vulnerable to attacks that elevate privliges.
      • Never, ever try to apply logic when trying to figure out how the government is run. Your assumption is wrong.

        A contractor can only grant access to their facility, however, with a background check you can get access to a wide variety of facilities. The question is, how is your identity verified.

    • hire some security professionals to make these decisions

      Having been involved in the process for the TWIC card, I can tell you that security experts are involved. I can also tell you that a well-designed smart card based ID system is much harder to crack than the exisiting government ID badges, since the smart card can have all the same security features that dumb plastic card has plus the cryptographic protections of a smart card. Also it will be much easier to train people to verify the cards since the

      • In short, I fail to see the downside if the system is implemented by someone with the slightest of clues.

        Oh Lord. MOD THIS FUNNY.

        You have seen the people who've been hired as security screeners at airports, haven't you? You are familiar with the perfection of implementation that DC is famous world-wide for, aren't you? You are familiar with the first rule of thumb which every 18-year old learns if they have to do any sort of real labor,"Good enough for government work."

        And, again, what is a 1024-bit
        • I am not yet familiar with the PIV card standards. I am very familiar with the use of the TWIC card. The card is issued to those that work in the transportation sector after a more extensive background check than was previously done. It is not tied to their job. They use it to prove their identity when they go to a new job so that the effort of an extensive background check does not need to be repeated. They are then issued credentials for the facility that they work at, which may be electronic credent

        • And, again, what is a 1024-bit cryptographic signature going to give me at work that the security guard at the front desk wouldn't have caught to begin with in terms of identification?

          That card will give you the ability to fingerprint communications and documents digitally the same way a web server signs SSL web pages. It will also give information that security guard does not know off the top of his head, such as which classified doors you are allowed to enter and which you are not. If you had to ask th

    • Yes, because we all know that people protect their own valuables... they don't ever gather them up in order to build very trusted places, such as bank vaults. Just to tell you that you're analogy doesn't work all to well.
    • An identity card system is not the same as a security system; in fact, the governmental standards for single ID specifically preclude its use as a privilege system. The proposed ID's have the capability of identifying the individual as a government employee/contractor, and, combined with some other security systems, will grant or deny access to different assets (buildings, computer systems, etc.) But the card is not a magic golden ticket to let you do whatever you want. Just because I'm a fed and can walk i

  • Not so bad (Score:3, Informative)

    by tirefire ( 724526 ) on Thursday December 30, 2004 @08:41PM (#11224313)
    Doesn't sound too bad - a single ID card for federal employees would be very handy - you just need one key to get into everything you have access to, instead of fumbling around with multiple keys and passcards.

    Until the gov't starts implanting RFID tags in our skulls to track our every move, I don't really see the danger.
    • Ebay just jumping Passport, so why would we want a simular thing in goverment?

      One ID means only one thing to conterfiet. Look at how well it is to get any corpate office wuth the same badge.

      • One ID means only one thing to conterfiet.

        Not really. First of all, IDs with biometrics and RSA key signatures (like my military ID) provide a level of security that protects against counterfeiting. Keys are issued at approved facilities and locked down with a PIN. To counterfeit such a card you would need to recreate the card, embed the smart chip, enter a key on it, and hack the central database with the same key.

        • Unless everyone is carring a reader you have one thing to conterfit. That is the problem.

          Now copying a card is generally easy. I worked in hotels for years, once you have a inside source or phone tap, the informarion is avaialble and a CRcard can be dupilicaed in less than 1hr. Remember the cards MUST BE readable.

          Here we are talking about adding a picture id. Yes it is alot harder, not.

  • Or... (Score:5, Insightful)

    by Anonymous Coward on Thursday December 30, 2004 @08:41PM (#11224315)
    A single ID can be forged and used by terrorists for access to any government building! Brilliant!

    • Re:Or... (Score:5, Insightful)

      by mcg1969 ( 237263 ) on Thursday December 30, 2004 @09:07PM (#11224460)
      Let's forget terrorists for a moment, do you really believe these badges would be designed so that an employee of the Department of Agriculture can gain access to an NSA building?

      • Re:Or... (Score:5, Insightful)

        by Zocalo ( 252965 ) on Thursday December 30, 2004 @09:36PM (#11224650) Homepage
        Exactly. These things will almost certainly be like swipe cards on steroids with multiple levels of validation as to what and what isn't permitted. In a typical swipe card system you divide your secured areas into zones, then assign each swipe card access on a zone by zone basis. That covers the "something you have" aspect of security, and you can still add in the "something you know" (keypad or other password system) and "something you are" (biometic) if you wish. Hell, you can even keep the people standing around with guns too if the situation merits it.

        I've been at large multi-building, multi-location sites that have implemented this kind of thing using smartcards. The obvious gains of increased convenience, cost savings through having a common system and ease of management are all there, but a loss in operational security isn't. It's not that such systems are invulnerable (they're not by a long shot), but they are no more vulnerable than individual systems and it's *much* easier to be sure ex-employees are completely locked out.

      • Let's forget terrorists for a moment, do you really believe these badges would be designed so that an employee of the Department of Agriculture can gain access to an NSA building?

        True, true. But let's reverse that for just a moment. Do you think a valid NSA, or more practically, a valid FBI ID would grant the bearer unfettered access to the Dept. of Agriculture and other "low-level" agencies? Before you say, "Yeah, but what would terrorists care about in the DOA?", may I direct you to the MIPT's repo

        • Do you think a valid NSA, or more practically, a valid FBI ID would grant the bearer unfettered access to the Dept. of Agriculture and other "low-level" agencies?

          No. What it *will* do is establish that the bearer is probably a member of the NSA/FBI to the DoA building's reception/security. How they handle it from there will depend on the DoA policies and proceedures in place at the site concerned. That could easily entail phoning a field office/superior if the person had simply turned up without prior

        • True, true. But let's reverse that for just a moment. Do you think a valid NSA, or more practically, a valid FBI ID would grant the bearer unfettered access to the Dept. of Agriculture and other "low-level" agencies?

          Actually, no, I would not. I doubt it works that way now, either.

          I would suspect that someone who looked "official" and had a convincing story would get pretty far with a reasonable fake.

          Looks don't mean squat to an automatic card reader. I do agree with you that the more a security system r

        • Could a valid seeming FBI or NSA ID get someone enough access at INS to alter someone's immigration records? Could it get someone a look at when the Dept. of the Interior schedules park ranger fly-overs or walk-throughs along the undeveloped parts of the US/Canadian border? Could it get unfettered access to many of a state or local government's files?
          Can it be used to find out things indirectly - for example, can someone find out whether DEA has found their hidden dope plantation in a national park by w
          • Could a valid seeming FBI or NSA ID get someone enough access at INS to alter someone's immigration records?

            No, how could it? There isn't just a locked door and then an open Wyse terminal that allows you unfettered access to the records.

            Could it get someone a look at when the Dept. of the Interior schedules park ranger fly-overs or walk-throughs along the undeveloped parts of the US/Canadian border?

            No, because those things are usually coordinated at the local level. Access to the State Highway Patrol

            • Tell me, if I had said, "unlike lions (big carnivorous things) rabbits can't bite harder than a typical 2 year old.", would you have misquoted me to claim that I was saying lions can't bite any harder than 2 year old humans? Before you start throwing around terms such as "blind assertion", you need to learn to read.

              Re: your earlier remarks - Dept. Interior patrols of much of the border are carefully scheduled and recorded in advance, as they are not matters of simply driving along a road for a normal day's

      • Re:Or... (Score:3, Insightful)

        by chill ( 34294 )
        No, I believe one of those badges given to a sub-contracted janitor would get them into an NSA building. Or do you believe the super agents scrub their own toilets at work?

        It also depends on how they are implemented. I believe a stolen smart chip from card A, implanted into easier-to-get card B would be a major threat.

        The devil is in the details.
        • No, I believe one of those badges given to a sub-contracted janitor would get them into an NSA building. Or do you believe the super agents scrub their own toilets at work?

          What do you mean? If a janitor is assinged to a DoA building, he's not going to be able to enter an NSA building, even if the same contractor is used for both agencies.

          Yes I'm assuming a minimal level of competent implementation but I think a reasonable amount, even for a government agency.

          • Re:Or... (Score:3, Insightful)

            by chill ( 34294 )
            If an agency like the NSA or CIA requires security clearance for their cleaning staff, and some do, then it is very likely that the same staff will be used for multiple locations and rotated around.

            Getting clearance is expensive and it isn't just done on a whim. Once they have someone with clearance, that person is going to be used as often as possible.

            If a person temporarily loses clearance, they will be rotated to a non-clearance required position until their clearance is reinstated. It happens all th
            • I have no doubt that janitors with high levels of clearance will be used as much as possible---where that clearance is required. But I'm talking about the Department of Agriculture here. There's no way a janitor with the clearance to roam the halls of the CIA is going to be wasted in the DOA (that is, unless he loses his clearance as you state).

              I have a feeling we may be crossing paths here. My original illustration was simply to point out that it takes far more than just a badge to get into a building. I t

    • Considering all the trouble the U.S. has putting together even a simple fingerprint database [yahoo.com], I think this project is going to go nowhere fast.

      Oh, and this story is a duplicate [slashdot.org].

    • What makes you think this ID system is going to be anything like the traditional system the states are using now for drivers licenses? Ever hear of a smartcard?
    • Comment removed based on user account deletion

  • reaching? (Score:4, Insightful)

    by sailforsingapore ( 833339 ) <sailforsingapore@gmail.com> on Thursday December 30, 2004 @08:44PM (#11224329) Homepage
    This is a ways away from a "single government ID". That makes it sound like we are all going to get barcodes on our necks, this is simply a way to streamline the process of verifying federal employees, just as corporations have for years...this is not a problem. It becomes an issue when the ID starts to become mandatory for the non-governmental public, where the potential for abuse is.

  • Online single sign on (Score:4, Insightful)

    by SilverspurG ( 844751 ) on Thursday December 30, 2004 @08:45PM (#11224332) Homepage Journal
    Does anyone really think that you should have a single sign on name and password for every online service, site, e-mail account? Would you want that single sign on to be linked with all of your bank accounts? Why is it bad to have everything linked together? What makes identity theft easier?

    Forget trolling about tin-foil hats or paranoid people who have nothing to hide. Let's get back to the nuts and bolts of why, from the very beginnings of nature, squirrels put nuts in many different places.
    • Comment removed based on user account deletion
    • Squirrels can still put nuts in many places with this system. This is a standardized, centralized identification system, not a centralized access system. In other words, the information that controls who is allowed into what building can still be decentralized.

  • Bait. Switch. (Score:1, Interesting)

    by Muttonhead ( 109583 )
    I suspect the government will continue floating these id schemes until its ready to introduce the real system its got waiting in the wings whatever that is.
    • Somebody mod the parent up. This is exactly how federal security works. You don't know, and thus you can't tell.

      If it came from a government source or press release, then it is smoke and mirrors.

  • interesting (Score:3, Informative)

    by LBArrettAnderson ( 655246 ) on Thursday December 30, 2004 @08:46PM (#11224341)
    I'm assuming that with the incredibly intelligent slashdot editors we have here, that the part we should be paying attention to is "contractors." Well, no, i still don't see why this is important news, let alone have anything to do with my rights online.

    I'm not a government employee, and I don't plan on sneaking in to any government building that i'm not supposed to be in. Are you trying to say that we have a right to have illegal access to all government property?

  • Mixed bag (Score:2, Interesting)

    by wapanesechick ( 843304 )
    It seems innocent the way it's being presented now. Yeah, this does run the risk of making it easier for terrorists to forge the ID because there's only one kind instead fo many, but I could see how it can be convienent. The only problem is that if this is suscessful, who's to say they aren't beyond a National ID for everyone, like some people were reading into it?
    • Yeah, this does run the risk of making it easier for terrorists to forge the ID because there's only one kind instead fo many

      No it makes it harder. With only one type of identification one can be assured that all guards and even employees are thoroughly familiar with it. When there are many different types of valid ID it's very easy for a guard to not be trained in how to spot a forgery of that type or for a regular employee to simply think "must be a new type".

      It's why in Massachusetts you may be refu

  • Government-issued IDs are already here. (Score:5, Insightful)

    by Pendersempai ( 625351 ) on Thursday December 30, 2004 @08:56PM (#11224401)
    Drivers' licenses are ubiquitous and necessary. They are marked with identifying data and a unique number. They have your picture. Authorities are allowed to ask for it, and in general citizens are expected to cough it up. They must be checked by private parties in certain circumstances (to prove your age, for example), and in other circumstance private parties insist on checking your drivers' license as a prerequisite to doing business with you (Blockbuster, e.g.)

    Granted, each state keeps track of its own citizens' licenses, so I suppose that's one difference between the status quo and the ballyhooed National ID Card. But really, what else are we afraid of? Why don't we just bite the bullet and make citizens' identification cards necessary? The states can take care of issuing them and tracking the relevant data, and we can have laws about when authorities are not allowed to ask for identification, or when a citizen is not obligated to identify himself, just like we do with licenses. But not arbitrarily tying our ID cards to driving would be much more efficient. Why should it be harder for a blind man to identify himself at will simply because he cannot drive?

    So to everyone terrified of national ID cards, wake up: that reality arrived long ago.
    • "Why should it be harder for a blind man to identify himself at will simply because he cannot drive?"

      It is not, at least in Wisconsin. Here you can get a state ID card which is the exact same as a drivers license, except its cheaper (if I remember right, $8 as opposed to $35) and doesn't allow you to drive. You even keep the ID number if you do happen to get a driver's license in the future.
  • Wait a minute! Are you saying that the federal government is instituting a standardized system for identifying people who work for the federal government?

    Oh, no, what's next? Will this spread to privfate companies? Will I have to hold a little magnetic badge up to a card reader in order for it to unlock the door to my office building? The horror!
  • Im pretty sure most break-ins come from things like "can you swipe me in? i left my card in the car" or "i work for bob but they havnt put me on the system yet" and "hey can i just use your computer for a minute to print this?"
  • That's why I'm eargerly awaiting the forthcoming release of data by the politicians pushing for ID:their funding, their horse trading, why they voted on every particular issue, how much money each lobbyist gave them and what they wanted for it, which election promises they actually plan to keep, etc etc

  • Yeah, right. (Score:2, Interesting)

    by audacity242 ( 324061 )
    I work for the VA, and one of my duties is to make ID cards...Somehow I doubt this is gonna happen anytime soon. I mean, heck, IDs aren't even standardized throughout the VA, each medical center has its own format. About a year ago they told us we'd have a new system in place "soon." Still don't have it.

  • Threat analysis (Score:3, Insightful)

    by TrumpetPower! ( 190615 ) <ben@trumpetpower.com> on Thursday December 30, 2004 @09:09PM (#11224469) Homepage

    Let's say you're a terrorist. And, further, let's say you want to hurt Americans. What will you do?

    1) try to get into a government facility with a faked ID to do your terrorizing;

    b) get a job at said government facility and then do your terrorizing with legitimate access;

    or III) strap a bunch of explosives to your body, go to a movie theatre, buy a ticket, sit down, and blow yourself up halfway through the opening credits?

    Cheers,

    b&

  • How is this different from the current CAC card (government version of standard smart card) currently issued to soldiers, civilians and contractors?
  • we should have had a national ID long ago,but no doubt business lobbies have impeded its development. The longer they can keep importing and exploiting cheap illegal labor, the more money for them, and the more wages are driven down for citizens.

    It's criminal, IMHO.
  • if they also implement a system where you have to step into a giant glass tube (a la The Jetsons or Futurama) and if your ID is incorrect it tubes you off to the nearest holding cell.

    That would be kinda neat.
  • Badges...We don't need no stinkin badges!

  • Sure. (Score:3, Insightful)

    by Dirtside ( 91468 ) on Thursday December 30, 2004 @10:51PM (#11225085) Journal
    federal officials are developing government-wide identification card standards for federal employees and contractors to prevent terrorists, criminals and other unauthorized people from getting into government buildings and computer systems.

    Yeah. I'm sure that this new ID card will "prevent terrorists, criminals and other unauthorized people from getting into government buildings and computer systems."

    I smell someone trying to convince people that security can be had in a product, rather than requiring constant vigilance, like it really does.

  • Suprise! Already here (Score:3, Interesting)

    by TheCabal ( 215908 ) on Friday December 31, 2004 @12:12AM (#11225537) Journal
    OK, apart from the fact that all of you who drive are already carrying a form of government-issued ID, the Department of Defense is already using something like this. It's called a CAC card. It's a combination identification and smartcard. It gets me onto the base, into the PX and helps decrypt my email. It's a straw-man argument to say that "the terrorists" are going to mass producing these and getting in and out of Ft. Meade at will. Just as it is not with my CAC card, I get get to every place on post. The level of effort is going to be far too difficult when there's so many other software targets to hit.
    • So you're saying that terrorists don't have infinite time, resources, skill, and knowledge?

      Polyanna!

      • So you're saying that terrorists don't have infinite time, resources, skill, and knowledge?

        That is correct.

        Why try attempting something that takes infinte resources when it's a hell of a lot easier to commandeer a couple of airliners and crash them into tall things?
        • Why try attempting something that takes infinte resources when it's a hell of a lot easier to commandeer a couple of airliners and crash them into tall things?

          Indeed.

          That's also the same logic that explains the "hunker down, let the Americans roll over you, then pop out and retake control of the area" strategy being employed by the insurgents in Iraq and the Taliban in Afghanistan.

  • Spain had ID cards (Score:3, Insightful)

    by permaculture ( 567540 ) on Friday December 31, 2004 @02:50AM (#11226098) Homepage Journal

    UK Parliamentary Committee Releases Report Damning ID System http://www.privacyinternational.org/article.shtml? cmd%5B347%5D=x-347-63601 [privacyinternational.org]

    Spain has ID cards, but that didn't prevent the Madrid train bomb: http://news.bbc.co.uk/2/hi/europe/3500452.stm [bbc.co.uk]

    The British Parliament has abandoned their new ID cards for the Houses of Parliament despite the recent security breaches, as some hundreds have 'gone missing'.

    Reasons against ID cards: http://www.bbc.co.uk/dna/ican/A2319176 [bbc.co.uk]

    ------------

    ID cards might well:

    * Worsen harassment of ethnic minorities: They'll provide another pretext for stop-and-search, often directed at ethnic minorities

    * Have little impact on counter-terrorism: Sophisticated terror networks would soon be able to produce counterfeit cards or papers enabling people to get legitimate cards

    * Have little effect on illegal working: Employers who are already willing to break the law won't be put off by identity cards

    * Lead to 'function creep': The functions of the card will grow over time as it stores more personal information. More people could demand to see it, effectively making it compulsory to carry one

    * Lead to loss of privacy: There will be a massive database containing an unprecedented amount of personal information on people

    * Be costly and impractical: There is scepticism about the cost and operability of the scheme, as well as the government's ability to manage the technology

    ----------------

    Doubts over ID card scheme http://news.bbc.co.uk/1/hi/technology/2688697.stm [bbc.co.uk]

  • The human factor (Score:3, Insightful)

    by parvati ( 41221 ) on Friday December 31, 2004 @02:58AM (#11226122)
    What proponents of high-tech IDs tend to overlook is the importance of having people involved. A few years ago, I worked in a hospital/research center in NYC that had very tight security (for example, everyone was finger-printed before being issued an ID). The ID itself would presumably not be impossible for someone--especially someone motivated--to fake, but the security guards were another matter. They lived at the entrance to the building, and they pretty much recognized everyone who worked there. If they didn't recognize you, they stopped you, checked your ID, and called up to wherever you said you were going. This isn't a system that would work for a bulding accessible to the general public, but the majority of government buildings are only frequented by the people who work there ... for these buildings, attentive security guards are at least as important as fancy IDs.
  • All buildings will need a guest system so that's one obvious attack vector.

    Alternatively, you attack the card issuing system or the people who run it. That way you get a valid card and gain access as needed.

    There will have to be a system to deal with lost cards, that's another good way to attack the scheme.

  • How, exactly? (Score:3, Interesting)

    by jazman ( 9111 ) on Friday December 31, 2004 @10:21AM (#11227763)
    When will govts stop just saying that it will prevent terrorism and start saying how exactly?

    Recently the UK government discussed returning motorbikes to having front number plates, which were removed because they were mounted on the front wheel sideways and in collisions with pedestrians the latter ended up with bits sliced off. The basis for the discussion was that it would stop terrorists and drug barons (and of course had nothing to do with the fact that front facing cash, er, safety cameras cannot identify motorbikes).

    Now I don't know about anyone else but I really can't see how returning front number plates to motorbikes will do anything about drugs and terrorism. Perhaps they're hoping that drug barons and terrorists won't think to put front number plates on their motorbikes, and that therefore anyone without one must be one of these people?

    It will of course make the whole policy completely ineffective when terrorists and drug barons start putting front plates back on their bikes. After all, it was a real bummer when they stopped going around in sandwich boards that had printed front and back I AM A DRUG DEALER, GET YOUR DRUGS HERE, and I HAVE A BOMB, PLEASE DON'T RUN AWAY.
  • "federal officials are developing government-wide identification card standards for federal employees and contractors to prevent terrorists, criminals and other unauthorized people from getting into government buildings and computer systems."

    So how will Bush-appointed felons like John Poindexter [wikipedia.org] get into their offices?

Slashdot Top Deals

You know you've landed gear-up when it takes full power to taxi.

Close