Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror
×
Government Technology

Identity As the Great Enabler 58

New submitter steve_torquay writes: Last week, President Obama signed a new Executive Order calling for "all agencies making personal data accessible to citizens through digital applications" to "require the use of multiple factors of authentication and an effective identity proofing process." This does not necessarily imply that the government will issue online credentials to all U.S. residents.

The National Strategy for Trusted Identities in Cyberspace (NSTIC) is working towards a distributed identity ecosystem that facilitates authentication and authorization without compromising privacy. NSTIC points out that this is a great opportunity to leverage the technology to enable a wide array of new citizen-facing digital services while reducing costs and hassles for individuals and government agencies alike.
This discussion has been archived. No new comments can be posted.

Identity As the Great Enabler

Comments Filter:
  • by NicBenjamin ( 2124018 ) on Saturday October 25, 2014 @10:41PM (#48232481)

    It would be great if you could more easily and securely access more of your tax records, or your Social Security benefits statement. This would also greatly improve things like government contracting.

    OTOH, if the system is hackable then you could easily lose all your data to some guy on another continent.

    Which would be a bad thing.

    • first four words (Score:4, Insightful)

      by raymorris ( 2726007 ) on Saturday October 25, 2014 @11:21PM (#48232575) Journal

      Done right,

      Didn't read the first four words of the summary, eh?

      My career has been in internet security. I now work for a government agency where we teach cyber security to other government workers. I can assure you, it won't be done right.

      • Is that because you are the instructor? I jest.. seriously I was joking because it was wide open with the wording you used.

        However, you are probably 100% correct. I did the networking and IT for a local county government for a number of years in the past. It was unbelievable that you could give instructions and before the day was out, have them completely ignored by people who thought they knew better.

        For instance, we had a server in another location connected to the main building by T1. The T1 line was sch

      • "done right" I wish I could mod this "sad but true". There's really not a lot of incentive to keep other people's data private.
    • OTOH, if the system is hackable then you could easily lose all your data to some guy on another continent.

      I resent that- they're perfectly capable of losing our data to some guy on this continent, too.

    • Done right it's a great idea...

      NO, it is not. It is a terrible idea. There are many reasons why:

      First off, it's based on a premise that is known to be broken: a "web of trust". We already have a very good example of that type of system failing, and failing big time: SSL Certificates.

      SSL Certificates are a web authentication scheme that depend on Certificate Authorities (CAs) to certify that a particular site is legitimate and unique. So far so good. BUT... then a number of problems arose that should be harsh lessons.

      [1] Some CAs

      • If you were actually rational about this issue at all you wouldn't have included the ObamaCare bit. The site was a few months late, but has since been a key part of providing health insurance to millions of Americans. Anyone who has actually worked in the private sector for more then a week can list at least three IT roll-outs that were more bungled then that.

        Most of your reasoning falls apart with one simple change: if the Federal government is the only entity issuing certificates, then objections 1 and 2

  • NSTIC points out that this is a great opportunity to leverage the technology to enable a wide array of new citizen-facing...

    And this week I've probably watched to many movies about our dystopian future. My brain was really expecting that to end with the name of some type of weapon.
    After reading everything again I am still left with a feeling that, while much smaller, it is still a step in that direction.

    • no worries this can still get dystopian on this. probably the best way for NSTIC to secure people's records are through a national id cards. for extra security we better register people's biometrics too. better yet, link all gov interactions (traffic stop, flights, etc) to a national DB. also, for the kids. jumping the shark would be to implant RFID tags, so I won't go there.

    • You're definitely over-reacting. They're not talking about collecting new data, turning data over to law enforcement, or anything like that. This is actualy the opposite of that. It's an attempt to make it easier for you to see what the government has on you.

      Right now you can access your tax records (it's called a tax transcript) online for free, but it's a multi-step process and it's a huge pain in the ass when they start asking trick questions about whether you lived at 3205 Green Rd, or 3105 Green Rd for

  • by schwit1 ( 797399 ) on Saturday October 25, 2014 @11:06PM (#48232545)

    Any solution that comes from bureaucrats should be immediately discounted.

    I suspect it will be too easy to compromise, inflexible and require antiquated, proprietary technology.

  • I think I would rather they concentrate on putting more government information online, making government more open rather than implementing systems to make citizens prove who they are.

  • is NSA now my backup service? Does this also apply for EU citizens?

  • I'm David in general, DCB at work (there are lots of Daves), Orv as a nickname, Uncle Dave to my nephew when he was little, Mr Collier to all sorts of illiterate clerks. I have a pen-name, and a bunch of versions of my name required by email providers. My name also changed when I got married, as did my wife's.

    When dealing with vendors I don't necessarily trust, I'm just "sir" and pay with cash. Considering the internet make it possible for vendors to be anywhere and anyone, I expect that we'll all to do mo

  • "Honed" is a term I've coined in honour of Mat Honan and how his info got owned/wiped... http://apple.slashdot.org/stor... [slashdot.org]

    It's one thing for trusting/ignorant people to put their data in the cloud, and get it stolen. What's the reaction going to be when everybody's data is forcibly put in the cloud?

Life is a whim of several billion cells to be you for a while.

Working...