Illinois Tests A Blockchain-Based Birth Registry/ID System (illinoisblockchain.tech) 151
An anonymous reader quotes Government Technology:
The state of Illinois, which has six blockchain pilots underway, will partner with Utah-based Evernym for a birth registry pilot meant to individualize and secure identities... The endeavor, one of six distinct blockchain explorations Illinois began last summer with a working group, is expected to utilize the Sovrin Foundation's publicly available distributed identity ledger and expand upon accomplishments of the W3C Verifiable Claims Task Force, the state said... Recognizing that identity -- and, now, digital identity -- begin at birth, the state will explore using these technologies to create "a secure 'self-sovereign' identity for Illinois citizens during the birth registration process," it said in the announcement.
More from the Illinois Blockchain Initiative site: Self-sovereign identity refers to a digital identity that remains entirely under the individual's control. A self-sovereign identity can be efficiently and securely validated by entities who require it, free from reliance on a centralized repository. Jennifer O'Rourke, Blockchain Business Liaison for the Illinois Blockchain Initiative commented, "To structurally address the many issues surrounding digital identity, we felt it was important to develop a framework that examines identity from its inception at child birth... Identity is not only foundational to nearly every government service, but is the basis for trust and legitimacy in the public sector."
In the proposed framework, government agencies will verify birth registration information and then cryptographically sign identity attributes such as legal name, date of birth, sex or blood type, creating what are called "verifiable claims" or attributes. Permission to view or share each of these government-verified claims is stored on the tamper-proof distributed ledger protocol in the form of a decentralized identifier... This minimizes the need for entities to establish, maintain and rely upon their own proprietary databases of identity information.
Evernym's "Chief Trust Officer" sees the program as "a major contribution to the larger effort of solving the online identity problem."
More from the Illinois Blockchain Initiative site: Self-sovereign identity refers to a digital identity that remains entirely under the individual's control. A self-sovereign identity can be efficiently and securely validated by entities who require it, free from reliance on a centralized repository. Jennifer O'Rourke, Blockchain Business Liaison for the Illinois Blockchain Initiative commented, "To structurally address the many issues surrounding digital identity, we felt it was important to develop a framework that examines identity from its inception at child birth... Identity is not only foundational to nearly every government service, but is the basis for trust and legitimacy in the public sector."
In the proposed framework, government agencies will verify birth registration information and then cryptographically sign identity attributes such as legal name, date of birth, sex or blood type, creating what are called "verifiable claims" or attributes. Permission to view or share each of these government-verified claims is stored on the tamper-proof distributed ledger protocol in the form of a decentralized identifier... This minimizes the need for entities to establish, maintain and rely upon their own proprietary databases of identity information.
Evernym's "Chief Trust Officer" sees the program as "a major contribution to the larger effort of solving the online identity problem."
Without having read the article (Score:1)
Re:Without having read the article (Score:4, Insightful)
Actually it's unlikely to happen anytime soon. Why? Because it would be INCREDIBLY profitable if you could do it. You think there aren't already thousands of highly trained and motivated security gurus working day and night trying to crack that? If you can do that, all of the bitcoins in the world could be yours!
This is how you find a secure technology for your application. Find one where cracking it would be insanely profitable and such a hack would instantly be noticed. If it's still secure after a few years, it probably is.
Re: (Score:3, Insightful)
"If lots of people are working on something and it isn't done yet, it must be impossible."
And that's why SHA-1 is still considered completely secure? I mean, it was introduced in 1995 and nobody had found a weakness in it by 2004. 9 years without being cracked clearly means it's unbreakable, right?
And distributed blockchain has been around since 2008. 9 years without being cracked. Clearly it will never be cracked, right?
Re: (Score:2)
Stop that. Using blockchain to maintain your 'digital identity' only requires that the blockchain be *functional* for perhaps 110+ years, though if you need historical or archival data past death the required timeframe is essentially infinite.
That can;t be so hard for this remarkable, unassailable tech, can it? Besides, you could always reconstruct it...
Re: (Score:2)
What would you gain by demonstrating a hash collision in SHA-1? You'd present it at Black Hat. Big whoop. A bunch of security researchers got to say "Finally! Someone proved that we're right!" and nobody else gave even half a shit about it.
Net result? Probably close to zero, more probably negative when you count how much time you had to invest to finally find a ITW usable hash collision.
We are talking about something that would IMMEDIATELY make you rich beyond what normal people (i.e. any security researche
Re: (Score:2)
There has already been a hash collision demonstrated.
What you get from a SHA-1 collision, in a blockchain ecosystem based on SHA-1, is that you can fake votes to make an illegitimate transaction legitimate.
Re: (Score:2)
Anyone still using SHA-1 for signing? Get out of the system while you can!
Re: (Score:2)
Doesn't Bitcoin use SHA1 hashes? That's the whole house of cards waiting to fall.
Re: (Score:2)
Really?
I didn't care too much about it until now, but it suddenly got interesting...
Re: (Score:2)
"We are talking about something that would IMMEDIATELY make you rich "
Doesn't that assume that the value of BITCOINS wouldn't immediately go to zero? Wouldn't they?
Re: (Score:2)
I'm fairly sure there would still be enough time to simply dump them onto the market. You probably won't get 5k a bitcoin, but who cares if you have millions?
Re: Without having read the article (Score:1)
Well, they certainly already have my SSN. So does everyone else. I'll take the off chance that some basement autist will hose block chain tech accidentally over the current situation.
Re: (Score:2)
Since the second virtue of blockchain is anonymity (IOW security by obfuscation), and we know that is merely a question of applying sufficient resources to discern the trail of transactions, it's only a matter of time before a specific scheme is understood and decoded sufficiently to subvert security and pwn
As with all encryption, success is measured by that time, be it scale (centuries) or absolutes (6 years to decrypt my digital wallet when it's being replaced every 3-5).
So alas, blockchain is just anothe
Re: (Score:2)
If they had it, they could easily use it. The fact that they're not using it kinda points towards them not having it.
Re: (Score:2)
If they had it, they could easily use it. The fact that they're not using it kinda points towards them not having it.
How do you know they're not? Also, having a weapon doesn't mean you need to use it immediately. Especially if it's one that you'll only get a chance or two to use. Just like when Enigma was broken...how many folks knew, certainly not the public. And, every caution was taken to make sure that the enemy didn't know that it was broken.
Re: (Score:1)
Without having read the article, I can tell you that someone's definitely going to name their kid Robert'); DROP TABLE Students;-- [xkcd.com] or similar if this goes anywhere.
And when that happens, we'll all be here to laugh at their dumb asses for riding the blockchain bandwagon.
IMO blockchain is a solution in search of a problem.
Re:Without having read the article (Score:5, Funny)
And because it will take an increasing amount of sex to mine each new baby, the population of Illinois will be algorithmically limited. Budget problem solved!
Re: (Score:2)
Well worth the viewing. These two have a series of great little songs, including one with Weird Al.
Re:Without having read the article (Score:4, Insightful)
Wow, what an incredibly boring application.
Who is going to validate the block chain? What is their incentive? How are we going to trust it any better than we currently trust the state department of records? What exactly are we gaining by this?
Re: (Score:3)
No longer have to rely on The State to believe who the list of people is. I think that is huge.
Re: (Score:2)
Re: (Score:2)
OH. Well if that's the case, then yes it is a worthless endeavor. I just figured the new births would be voted on by peers who knew of the event and trusted the signature of the parents.
Re: (Score:2)
It's not boring.
Re: (Score:1)
Exactly the opposite. Someone will get ahold of the state's key and suddenly millions of Guatemalans will be us citizens born in Illinois and eligible to vote.
Re:How do Dems/The Left (Score:4, Informative)
... Someone will get ahold of the state's key and suddenly millions of Guatemalans will be us citizens born in Illinois and eligible to vote.
Thats the exact thing which would be very very hard to forge even for someone with write access, because they would have to insert those birth records at the right point in the timeline of the chain and then recalculate the resulting hash from every db transaction after that, and then get a bunch of other independent chain operators to all agree that all those entries being inserted now, from 20-50 years ago are legitimate.
Re: (Score:2)
Re: (Score:2)
Problem is the implementation of ID laws. After experiencing how the right wing fucked up our voting ID requirements here in Canada, I'm a lot less pro voters ID.
This blockchain idea sounds just as easy to fuck with, just make sure the internet is slow in various parts of town on voting day. Imagine the lineups as each voter waits for the blockchain to be verified over dial-up speeds.
Re: (Score:3, Insightful)
Hmm... last time I checked the side of The Party pushing for national ID was the democrats and the republican side was strictly opposing it.
Did something change since the prez election?
Re: (Score:2, Insightful)
Did something change since the prez election?
Everything changes after presidential elections; good becomes bad and bad becomes good, depending on your pov. You must be new here.
Re: (Score:2, Troll)
The party pushing national of is tepunlicans and has been for 12+ years now. Or did you forget that realID is a republican plan? And it is liberal states that refused for most of the last 12 years to implement it. Also it is republican states that want to prove identity to vote. Forget that all states make you register to vote months in advance anyways.
Republicans are all for a religious police state. As long as they are the ones In Charge of the religion and police. Believing otherwise is hypocrit
Re: (Score:2)
I'd hardly call Louisiana a "liberal" state.
Re: (Score:2)
"Republicans are all for a religious police state"
You might want to exit your echo chamber and actually talk to some before stating opinions that are clearly bullshit.
Re: (Score:2)
It's really the tin-foil-hat crowd portion f the right that believes the government is out to get them, and it's not a big portion.
So, that said, if it were passed, would the left agree to requiring ID to vote? Seems like a possibility for compromise.
Re: (Score:1)
Anytime that I see a company based out of Utah having anything to do with recording information from Birth of just about anybody, I have to check and...
Yup, "Evernym" is run by a bunch of nutty Mormon Missionaries. It took me all of a minute to find this out; they are hardly secretive about it.
Be very very Afraid...
Mormons are not to be trusted in these matters.
Re: Trust issues (Score:2)
Why? Mormons are obsessed about lineage. Lineage is a big deal in their dogma.
But how does that 'corrupt' this technology? People who are automobile enthusiasts often are involved with developing new automotive technology. People who are bicycle enthusiasts often are involved with developing new bike technology. This is nothing different.
Are you trying to stir up anti-Mormon sentiments? Is that the thrust of your comment? Because people do that to be anti-Muslim or anti-semetic, too.
Re: (Score:1)
Not sure why I'm bothering to respond to a crazed A/C, but... Are you Mormon (or Ex-Mormon)? You sure seem to have a rather unhealthy fear of what someone else believes. "Forcibly convert"? Like a Voodoo doll from a comedy where they're going to go "ooga booga" and force something to happen to someone?
Hey, if Muslims want to dig through my family records (which are a fairly sad collection; maybe they can find some long-lost rich relatives for me!) and go through some ceremony and call me Muslim after I'v
Re: Trust issues (Score:2)
"The online identity problem" (Score:1, Interesting)
There is no online identity problem, just a couple of power-hungry fascists who can't grasp the idea of anonymity or why it's essential to the internet. Without anonymity, you have no internet, just another government-approved propaganda outlet like TV.
Re: (Score:3)
There is no online identity problem, just a couple of power-hungry fascists who can't grasp the idea of anonymity or why it's essential to the internet. Without anonymity, you have no internet, just another government-approved propaganda outlet like TV.
And with anonymity, you give the impression you are either insufficiently invested, or too afraid, to have your opinions associated with an identity. And what makes you think you can't have government-approved propaganda WITH anonymity?
Re: "The online identity problem" (Score:1)
Which horrible Pixar-country do you live in where that happens?
Do you live in North Korea? Perhaps in a time-warped East Germany?
You seriously live in a place where if you can't post anonymously on blogs they will take away your house?
Re: (Score:2)
Which horrible Pixar-country do you live in where that happens?
Do you live in North Korea? Perhaps in a time-warped East Germany?
You seriously live in a place where if you can't post anonymously on blogs they will take away your house?
Yes, that place is Slashdot.
And if we ever find out who that Anonymous Coward person is that is always posting here, then, yeah, he/she/it is probably gonna lose the house and get executed.
Re: (Score:2)
Which naively wonderful little Disney planet do you live on where that doesn't happen?
Kolob
Re: "The online identity problem" (Score:1)
That would be 'in Soviet Russia.'
You know.. the place that was VERY LOUDLY anti-fascist for many years.
Re: (Score:1)
Without anonymity, you have no internet, just another government-approved propaganda outlet like TV.
I believe it is the other way around -- If you have Internet, there is no anonymity. Even though it sounds the same, it is actually not but rather overlapped.
Re: "The online identity problem" (Score:1)
You are correct. The Internet flattens out the map, and includes everybody on it. In ways no authoritarian could have imagined 50 years ago. The psuedo anonymnity that peole get while 'hiding' behind an ip address that by definition is traceable is a little weird, but people need fantasy in their lives.
Re: (Score:3)
There is no online identity problem,
Yes there is. I used to work for a state govt agency and fake Identities and the associated fraud were a huge problem costing taxpayers millions a year. A Blockchain solution can eliminate this if done properly.
Re: "The online identity problem" (Score:1)
Fake identities are only a problem when large and overreaching amounts of power are wielded by entities that control the means to validate identities. Make everything a little more local and democratic and the problem evaporates.
I know... you can't hide in your big fucking cities if your neighborhood becomes a district where everybody knows each other. Fetishes are no fun if we're open about them, etc. and so on...
Re: (Score:2)
Fake identities are only a problem when large and overreaching amounts of power are wielded by entities that control the means to validate identities. Make everything a little more local and democratic and the problem evaporates.
Exactly, which is why I said blockchain solves this. It democratises the identity problem.
Re: (Score:2)
Maybe we could verify the blockchain using Equifax?
Re: (Score:2)
However this entire announcement seems to be post-Equifax noise to drive additional funding to Evernym, in order to bolster the $750,000 they received from the Department of Homeland Security in May as part of their Small Business Innovation Research initiative (which, strangely, was kept quite quiet at the time).
why? why? (Score:3)
Information about people is complex. What if something about the birth record changes or needs to be corrected?
We already know the saying, databases are real easy to create, impossible to correct. What do you expect the ability of a government agency to properly administer some new technology like this will be?
Is this really needed?
Re: (Score:2)
Re: (Score:1)
In my understanding it is about trust and verification?
It's a good example of a word ('trust') being used while the opposite is meant.
Birth certificates, ID's and other legal documents are all about distrust, not about trust.
In a world where everyone trusted each other, id's, legal documents and contracts would not be needed.
Re: (Score:2)
In a world where everyone trusted each other, Nigerian scams would be far more common and far more profitable than they already are.
A little distrust is a good thing.
Re: (Score:2)
Love him or hate him, Ronnie's "trust, but verify" is the right thing to do.
Re:why? why? (Score:5, Insightful)
Actually, since we're talking about data that can be changed and/or corrected over time, it is vital to store all this data as an initial set, accompanied by precisely timestamped changes. Because if something occurred when the data was incorrect, or with a previous version of the data, then that exact situation needs to remain preserved for posterity.
If I sign my name to a contract today and I legally change my name tomorrow, then that contract needs to remain valid. Having a tamper-proof ledger that correctly records what my name was at the time of the signing, and what my name is right now, means that no-one can claim the contract is no longer valid just because of the name change.
Re:why? why? (Score:5, Interesting)
I've been trying to imagine what a society where identities are disposable would be like. On the internet it's easy to change your identity, you just create a new account. Bans are basically impossible, all they can do it make it slightly harder but never impossible to generate a new identity and carry on using the service.
The benefit of being able to change your identity at any time is that you can move on from mistakes, or reputation bombing, or keep different parts of your life (work, politics, family) separate. There has been a lot of talk about how politics should not result in you losing your job lately, for example.
That would mean that punishments would have to be temporary and only affect one identity. At the moment, even after you come out of jail your criminal record follows you around, so we would have to change our idea of what prison is - a place for rehabilitation, that you come out of when you are no longer a danger to society.
Of course generating a new identity has its down sides. You start with no reputation, no credit history, and people who know you remember your previous incarnations.
I think it's worth speculating about, if only to better understand how poorly we manage identity now.
Re:why? why? (Score:4, Interesting)
I've been trying to imagine what a society where identities are disposable would be like....
I think it's worth speculating about, if only to better understand how poorly we manage identity now.
People have already thought about it which is why things like this are happening, I helped implement one here in my state.
When dealing with the govt, you can create as many online 'identities' as you like. You then choose if you want to use the same identity across all agencies, or use individual ones for each. Blockchain merely makes this a whole lot easier to validate your reputation. Regardless of your 'identity' used, the other party can choose to transact with you or not based on reputation (rather than govt issued ID which really isn't that reliable).
Ultimately an identity is just a reputation, and only blockchain technology can give the most reliable way to validate this.
Re: (Score:2)
A blockchain doesn't know what digital signatures go with what legal person or who was in control of the signing keys or if they've been duped into signing false information. All that security comes from digital certificates. The only thing a blockchain prevents is rewriting history, like a running checksum that depends on all the previous entries. So the government can't go back and say "no, we never said Bill was now Bob", but if anyone else kept a digitally signed copy of that it'd be proof enough. It's
Re: (Score:2)
Sounds great, until an honest mistake is made and needs to be rectified. In the current system, there's an override that allows us to correct mistakes such that they aren't visible and don't bias any reader's view of the information their reading. Making a system too indelible will marginalise a minority, not for actions they've ever taken, but for actions someone else took, potentially many years ago.
None of that means this is a bad idea, but it doesn't make it a good one either.
Also: central authority (Score:4, Interesting)
Isn't blockchain mostly for transactions that will never be modified/reversed or are single well-defined actions at a point in time, like transfers of money or sales?
And in the same vein of "Why?" :
- The whole purpose of blockchain is to have NO central authority, but a distributed public trust.
(customer A gives money to company B and no central authority is needed to confirm it, as long as both A and B use the bitcoin protocol)
- The whole point of a Birth registry is TO HAVE a central authority.
(in case of doubt, check the *official* birth certificate with authority XyZ)
So it seems even weirder to me. it doesn't seem very useful.
Information about people is complex. What if something about the birth record changes or needs to be corrected?
In theory you could still add "amend" records updating the database in the blockchain.
(Just like the "well-defined actions at a point in time transfers of money" can be followed by subsequent further "transfers of money" - e.g.: spending money previously received).
In practice that is going to be problematic, because some of this information is personnal - I would guess sex changes, in some jurisdiction : the person doesn't necessarily want that the history of past sex identities to be publicly known.
In a blockchain technological implementation, all the history NEEDS to be available for the public consensus mecanism to work.
In a authority clasiccal implementation, the authority might only provide the latest official version publicly and keep the access to the history restricted to the person (and medical personnel)
Re: Also: central authority (Score:2)
Central vs decentral (Score:5, Interesting)
Isn't blockchain mostly for transactions that will never be modified/reversed or are single well-defined actions at a point in time, like transfers of money or sales?
I think a birth fits that definition rather well.
- The whole purpose of blockchain is to have NO central authority, but a distributed public trust. - The whole point of a Birth registry is TO HAVE a central authority.
No, the purpose is to be able to verify data. Centralization or the lack thereof is a side effect - possibly a useful one but a side effect all the same. There is no inherent reason a birth registry has to be centralized. It just has been because it was was the most expedient and reliable process at the time to do so at the time most birth registries were developed. If anything it would be more useful to have a decentralized registry of such public records if it could be done safely and reliably because it become more robust if you have multiple copies. I have family that had critical master copies of documents (birth certificates and military records) lost in fires because they were centrally stored with inadequate backups.
Now whether a blockchain is a good use for this specific problem is something I haven't given serious thought to but it's an interesting question. I've said for a long time that Bitcoin is an idiotic implementation of a currency by people who generally value ideology over evidence in economics. But the blockchain technology it relies upon is actually really promising for a wide variety of practical applications and is probably the most valuable thing about bitcoin.
Re:Central vs decentral (Score:4, Interesting)
The ONE SINGULAR benefit of centralized government control of this database is that I can go to a judge and say 'this guy isn't me, someone stole my identity, and I think that someone is Jim'. Then the judge can have jim brought before the court, have him tried of identity theft, and even if jim doesn't get jail time, the judge can have the government documents modified so that I am now in control, I can use the law to have the credit reporting agencies correct their reports and scrub the entries created by JIM because I have the judicial verdict to show them
Re: (Score:2)
In practice that is going to be problematic, because some of this information is personnal - I would guess sex changes, in some jurisdiction : the person doesn't necessarily want that the history of past sex identities to be publicly known.
Yes, and there are many other situations where there is a long legal tradition of retroactive and potentially sealed changes to a birth record:
Re: why? why? (Score:1)
Re: (Score:2)
Sometimes that amended data needs to stay private. My wife was adopted, which meant being issued a new birth certificate with a completely different name on it. Often records of adoption are sealed, how do you seal off the records before she was 3 years old and her name change?
Re: (Score:2)
Just because the data can ve verified by everyone doesn't mean the plain text of the data has to be visible to everyone. That is one of the advantages of blockchain.
Re: (Score:2)
Re: (Score:2)
Isn't blockchain mostly for transactions that will never be modified/reversed or are single well-defined actions at a point in time, like transfers of money or sales?
Yes, that's the whole point, What is an identity other than a history of transactions you've had with others?
Information about people is complex.
Complexity not a blocker
What if something about the birth record changes or needs to be corrected?
How do you correct transactions now? You make an error, and you correct it. With block chain both error and correction transactions are on record and are verifiable. I fail to see an issue here, in fact it makes it more robust
We already know the saying, databases are real easy to create, impossible to correct. What do you expect the ability of a government agency to properly administer some new technology like this will be?
Difficult to correct because the govt alone owns and controls the data. With Blockchain that power shifts back to the people.
Is this really needed?
Having worked on a governmen
Re: (Score:2)
Issue a patch - just like software, you're not _supposed_ to need to change it once you've released it.
Re: (Score:2)
Yes. Blockchain is a buzzword and not useful here. What you're looking for is public-key identity (PKI is public-key infrastructure) based on a non-shared-secret challenge-response.
Today, we can implement this simply by using FIDO devices (UAF/U2F), wherein a user walks into a bank, shows their hard ID (driver's license, passport, etc.), and then establishes a trust with a third-party entity (such as a Credit Reporting Agency--TransUnion, Experian, and Equifax). I've described this for credit fraud [facebook.com] (Yo [youtube.com]
St00pid, as usual (Score:5, Insightful)
No, blockchain won't help you to establish your identity. It's your private key that you use to sign blockchain updates that establishes it. And if your key is stolen then it's game over for you - somebody ELSE will be owning your identity. Forever. With no recourse for you.
All realistic proposals (including the one in TFA) include key revocation protocols through some kind of central authority (i.e. government), at which point the whole system becomes indistinguishable from a simple centralized database.
Re:St00pid, as usual (Score:5, Insightful)
Your typical birth registry DB is SIGNIFICANTLY easier to tamper with. With blockchain you can have MILLIONS of copies as an authoritative source".
It is true that compromising the cryptographic proof of blockchain tech may cause identity theft to be far less believed and thus so much more destructive but it is also significantly harder AND the tech is constantly improving.
Key revocation can be automated via all nodes/clients in the chain and with multi-factor multi-key signing it becomes significantly harder to tamper with the system,
Short story, you have your private key, government has their key - decentralized and autonomous solution requires (outside of logins) BOTH keys to produce a unique signature. This is FAR more secure than the current system.
Blockchain can do more for securing your identity than current methods. Faking national insurance or the like is so much easier.
You may be a smart person but this time you gave an uninformed comment.
While it is true that there's a lot of buzz and hype about blockchain it does not make it any less a game changer. Literally will change the world we live in.
Re: (Score:2)
I don't really understand your point about "improving tech" - if your private key is stolen then it's over, no matter what tech you're using. And 2FA doesn't even apply if you keep your key locally. I also don't understand WTF you're talking about "both keys".
Re: (Score:1)
Where is the motivation here for the decentralization. I mean who is going to provide the encrypting power and host copies of this?
I wonder if this kind of thing was designed by a committee that wanted to add blockchain to something because it is a great buzz word.
How about simply saying we will secure a database, it might not be perfect but it works (it is working.) maybe they have a host of benefits which are totally non obvious, I just doubt it.
Re: (Score:2)
Where is the motivation here for the decentralization. I mean who is going to provide the encrypting power and host copies of this?
The many govt agencies, banks, finance companies, big employers, basically anyone who has an interest in validating your reputation, just like they do now.
I wonder if this kind of thing was designed by a committee that wanted to add blockchain to something because it is a great buzz word.
Or people smarter than you have thought about it and can see a better way to do identity.
How about simply saying we will secure a database, it might not be perfect but it works (it is working.) maybe they have a host of benefits which are totally non obvious, I just doubt it.
How about simply saying horses might not be perfect but they still get us from A to B. Let's forget about cars and planes and stuff. Are you sure you're in the right place?
Re: (Score:3)
Yes it makes someone stealing your identity harder. But it makes the proliferation of fake IDs trivial. If there's no central authority, what's to stop someone from flooding the decentralized database with a bunch of fake birth IDs every day. Then in the future if you need a fake
How about using the built-in blockchain id system? (Score:5, Interesting)
You know, the one using the letters G, A, T, and C.
(I think I saw a movie [wikipedia.org] that did this ... and nothing went wrong.)
Re:How about using the built-in blockchain id syst (Score:5, Interesting)
Re: (Score:2)
not unique, some identical twins have been found with variations at certain places in genome but not all are like that, and of course the whole genome is not used for DNA test
Easy to create false identities? (Score:1)
If the birth is verified and signed by an agency key then what happens when the agencies private signing key is inevitably leaked (probably via a USB key dropped on a bus or something). Presumably, that means that it would be fairly easy to construct a totally false identity.. You can't just stop trusting real identities that now are signed with an untrusted key?
It's entirely under your control (Score:1)
Legal name? Sex? Not sure any of this makes sense (Score:1)
In the UK, at least, it's normal for children not to have any kind of name until weeks after they are born. And when people change their sex they often don't want that information to be permanently embedded in any kind of public record. So I would have thought that a paper document or a standard government database would be a much better solution that any kind of "blockchain", however fashionable that concept may be.
It doesn't matter if it's blockchain (Score:2)
or quantum encryption or photographic evidence or eye-witnesses testifying under oath.
People will still believe that Obama wasn't born in America.
Perhaps only if it was in the Bible (and in BOTH testaments and inscribed on the Ten Commandments and the Dead Sea scrolls) would they be willing put aside their prejudices (by the way, that word is derived from PRE JUDGMENT) to face reality. Why? Because these people, and I'll call a spade a spade here, are RACIST. (And I'm not even Black!) No amount of techn
So who does the mining and why? (Score:2)
one more step (Score:2)
Comment removed (Score:5, Interesting)
Re: (Score:2)
The notion of a national ID is anathema to much of the US population and it's something that both Democrats and Republicans don't want. Depending on who you're talking to, it's because of racial issues, immigration issues, a backdoor means for gun control, warrantless information gathering on US citizens, or some other form of unconstitutional overreach by the federal government.
That's the whole point with a system like what Illinois is putting together. It's state-run, so it evades a lot of the federal ove
Don't lose your private key, Gramma! (Score:2)
I'd like everyone involved in this project to imaging giving their grandmother a lifetime ID that can never be replaced that requires grandma to keep her private key, a 512-bit string of digits, secure from hackers, hard drive crashes, agencies with sloppy security, malware, malicious other people, ransomeware, a single typo in a long string of gibberish, back backup operational procedures, and misunderstanding the difference between her private-key, her public-key, her wallet, her address, her seed phrase,
Re: (Score:2)
I'd like everyone involved in this project to imaging giving their grandmother a lifetime ID that can never be replaced that requires grandma to keep her private key, a 512-bit string of digits, secure from hackers, hard drive crashes, agencies with sloppy security, malware, malicious other people, ransomeware, a single typo in a long string of gibberish, back backup operational procedures, and misunderstanding the difference between her private-key, her public-key, her wallet, her address, her seed phrase, and her encryption password.
Sounds like a user interface problem.
Somewhat less glibly, that sounds like a user interface problem that could also be improved with the use of hardware keys, like smartcards or Yubikeys. When Grandma can no longer keep track of her car keys, then she might have a problem with her ID keycard, but until then, she should be good to go, if the interface is reasonable.
The anonymous coward's comment about the government losing control of its root key seems to be a far worse problem, though that too is manageab
Its Too Soon... (Score:2)
The state should not be jumping on the latest fad of blockchains but instead should stick with a tried and true technology like letters and numbers, writing, print, things that have been proven for thousands of years.
The problem with blockchain and such is that it is so new the probabilities are it will not be around for long.
Criminal Evidence? (Score:1)
Re: (Score:2)
My children's birth will not be registered.
Good luck with that. At least here in the US it is pretty difficult to get though life without a birth certificate (which is a registration).