Electronic Citizen Identities and Strong Authentication

Similar documents
41 T Korea, Rep T Netherlands T Japan E Bulgaria T Argentina T Czech Republic T Greece 50.

Reporting practices for domestic and total debt securities

World Consumer Income and Expenditure Patterns

Foreign Taxes Paid and Foreign Source Income INTECH Global Income Managed Volatility Fund

How many students study abroad and where do they go?

Appendix 1: Full Country Rankings

Trends in Digitally-Enabled Trade in Services. by Maria Borga and Jennifer Koncz-Bruner

HAS BRAZIL REALLY TAKEN OFF? BRAZIL LONG-RUN ECONOMIC GROWTH AND CONVERGENCE

GfK PURCHASING POWER INTERNATIONAL

What Is the Total Public Spending on Education?

THE CISCO CRM COMMUNICATIONS CONNECTOR GIVES EMPLOYEES SECURE, RELIABLE, AND CONVENIENT ACCESS TO CUSTOMER INFORMATION

How To Get A New Phone System For Your Business

Know the Facts. Aon Hewitt Country Profiles can help: Support a decision to establish or not establish operations in a specific country.

TOWARDS PUBLIC PROCUREMENT KEY PERFORMANCE INDICATORS. Paulo Magina Public Sector Integrity Division

Brochure More information from

MAUVE GROUP GLOBAL EMPLOYMENT SOLUTIONS PORTFOLIO

BT Premium Event Call and Web Rate Card

Triple-play subscriptions to rocket to 400 mil.

Agenda. Company Platform Customers Partners Competitive Analysis

FAQs for Two-factor Authentication

What Proportion of National Wealth Is Spent on Education?

Consolidated International Banking Statistics in Japan

Preventing fraud and corruption in public procurement

Supported Payment Methods

GLOBAL DATA CENTER SPACE 2013

GLOBAL DATA CENTER INVESTMENT 2013

Supported Payment Methods

Cisco Conference Connection

Cisco IOS Public-Key Infrastructure: Deployment Benefits and Features

The Role of Banks in Global Mergers and Acquisitions by James R. Barth, Triphon Phumiwasana, and Keven Yost *

Motion Graphic Design Census. 10 hrs. motiongraphicdesigncensus.org. 9 hrs.

Comparative tables. CPSS Red Book statistical update 427

DIRECT MARKETING STRATEGY. Web & Software Development Services

Region Country AT&T Direct Access Code(s) HelpLine Number. Telstra: Optus:

STATISTICS FOR THE FURNITURE INDUSTRY AND TRADE

How To Calculate Tertiary Type A Graduation Rate

Global Effective Tax Rates

SUPPLEMENTAL EXECUTIVE RETIREMENT PLANS IN CANADA

Canada GO 2535 TM World Traveller's edition Maps of North America (Canada, US, Mexico), Western and Central Europe (including Russia) CAD 349,95

Report on Government Information Requests

TOMTOM BONUS INTERNATIONAL MAP INDONESIA PROMOTION HOW TO CLAIM

DSV Air & Sea, Inc. Aerospace Sector. DSV Air & Sea, Inc. Aerospace

Global Dialing Comment. Telephone Type. AT&T Direct Number. Access Type. Dial-In Number. Country. Albania Toll-Free

ORGANISATION FOR ECONOMIC CO-OPERATION AND DEVELOPMENT

STATE OF GLOBAL E-COMMERCE REPORT (Preview) February 2013

Report on Government Information Requests

Report on Government Information Requests

E-Seminar. Financial Management Internet Business Solution Seminar

SunGard Best Practice Guide

July Figure 1. 1 The index is set to 100 in House prices are deflated by country CPIs in most cases.

ARE ENTREPRENEURS BORN OR MADE? AMWAY GLOBAL ENTREPRENEURSHIP REPORT ITALY AND UNITED STATES IN COMPARISON

Cisco Blended Agent: Bringing Call Blending Capability to Your Enterprise

CNE Progress Chart (CNE Certification Requirements and Test Numbers) (updated 18 October 2000)

Health and welfare Humanities and arts Social sciences, bussiness and law. Ireland. Portugal. Denmark. Spain. New Zealand. Argentina 1.

Internationalization and higher education policy: Recent developments in Finland

Audio Conferencing Service Comprehensive Telecommunications Services Group Number Award Number Contract Number PS63110

relating to household s disposable income. A Gini Coefficient of zero indicates

Delegation in human resource management

Global AML Resource Map Over 2000 AML professionals

Global Network Access International Access Rates

A Nielsen Report Global Trust in Advertising and Brand Messages. April 2012

Doing Business in Australia and Hong Kong SAR, China

UNCITRAL legislative standards on electronic communications and electronic signatures: an introduction

NetFlow Feature Acceleration

Expenditure and Outputs in the Irish Health System: A Cross Country Comparison

Data Modeling & Bureau Scoring Experian for CreditChex

Schedule R Teleconferencing Service

COST Presentation. COST Office Brussels, ESF provides the COST Office through a European Commission contract

Review of R&D Tax Credit. Invitation for Submissions

Configuring DHCP for ShoreTel IP Phones

CMMI for SCAMPI SM Class A Appraisal Results 2011 End-Year Update

Senate Committee: Education and Employment. QUESTION ON NOTICE Budget Estimates

Building a Global Internet Company: Driving Traffic to Your Site. Benjamin Edelman Harvard Business School

ENTERING THE EU BORDERS & VISAS THE SCHENGEN AREA OF FREE MOVEMENT. EU Schengen States. Non-Schengen EU States. Non-EU Schengen States.

Enterprise Mobility Suite (EMS) Overview

THE WORLD S LEADING CAR DESIGN MAGAZINE

CISCO METRO ETHERNET SERVICES AND SUPPORT

2012 Country RepTrak Topline Report

Quantum View Manage Administration Guide

Sulfuric Acid 2013 World Market Outlook and Forecast up to 2017

DIR Contract #DIR-TSO-2610 Amendment #1 Appendix C Price Index

Statewatch Briefing ID Cards in the EU: Current state of play

Global eid Developments. Detlef Eckert Chief Security Advisor Microsoft Europe, Middle East, and Africa

Size and Development of the Shadow Economy of 31 European and 5 other OECD Countries from 2003 to 2015: Different Developments

Great East Japan Earthquake Earthquake risk insurance in Japan

CISCO CONTENT SWITCHING MODULE SOFTWARE VERSION 4.1(1) FOR THE CISCO CATALYST 6500 SERIES SWITCH AND CISCO 7600 SERIES ROUTER

THE BLEISURE REPORT 2014 BRIDGESTREET.COM

International Call Services

2015 Growth in data center employment continues but the workforce is changing

Connected Life. Connected Life TNS

FOR IMMEDIATE RELEASE CANADA HAS THE BEST REPUTATION IN THE WORLD ACCORDING TO REPUTATION INSTITUTE

The VAT & Invoicing Requirements Update March 2012

Digital TV Research. Research-v3873/ Publisher Sample

Consumer Credit Worldwide at year end 2012

Credit & Debit Card Payments. Factsheet

International investment continues to struggle

Verdict Financial: Wealth Management. Data Collection and Forecasting Methodologies

Waiting times and other barriers to health care access

Transcription:

Electronic Citizen Identities and Strong Authentication Sanna Suoranta, Lari Haataja, Tuomas Aura Department of Computer Science Aalto University Finland Sanna Suoranta sanna.suoranta@aalto.fi

Content Motivation Situation around the world Technical solutions Usage around the world Summary

Motivation Why is strong citizen authentication interesting? OECD claim: lack of mature digital identities delays the development of Internet economy But credit cards are widely used as payment methods without strong citizen authentication Citizen id used for bootstrapping of other identities Nordic countries as early adopters Finland was the first country with smart cards for strong citizen authentication (1999), but few people use it Estonia provides electronic id to anyone and waits this to boost its economic life Why the survey? Background survey for our more technical research

Overview National eid projects Picture from http://www.nxp.com/documents/leaflet/939775017234_v9.pdf

Strong Citizen Authentication Two approaches: A governmental organization as identity provider Traditional source of identity (birth certificate -> passport) Often used both offline and online Outsourced to trusted non-governmental identity providers E.g. banks, post offices, mobile phone operators Already required to verify the customer identity strongly, e.g. know your customer rules for banks

Authentication by Smart Cards Electronic identity cards with a micro chip Contains e.g. X.509 certificates and biometric information Targeted for both online and offline use Contactless and contact cards Bank cards may also be used in authentication if the bank is the identity provider Banks may also provide card readers to their customers Pros: considered to be uncopyable and tamperproof Cons: requires chip reader or NFC capability Deployed (or soon to be deployed) in many countries: Argentina, Australia, Austria, Belgium, Brazil, China, Estonia, Finland, France, Germany, Indonesia, Italy, Japan, Mexico, Portugal, Russia, South Africa, Spain, Switzerland, Turkey etc

Password Authentication Some countries use passwords as the authentication method May be combined with another method Pros: familiar and easy to use Cons: may be weak, prone to phishing Canada, India, New Zealand, South Korea, Saudi Arabia Some banks offer citizen authentication using one-timepasswords Delivered e.g. on paper Pros: banks are considered to be trustworthy Cons: the same credentials used for online bank login, your money at risk Denmark, Finland, Sweden, Lithuania

Authentication with Mobile Phone Typically as a part of two-method authentication One-time code sent to the mobile phone New Zealand ETSI Mobile Certificate Cryptographic keys stored on the SIM card Used for authentication and digital signatures Australia, Finland, Estonia, Lithuania, Netherlands, Norway, Poland, Slovenia Switzerland, and Turkey Pros: trusted communication channel, personal device Cons: mobile malware, currently on national level, lack of trust between operators internationally

Other Physical Tokens for Authentication USB stick Switzerland (post office as identity provider) Pros: most of the computers have the USB port Cons: cannot be connected to mobile phones

Usage around the World Estimated that 33% of world s population have an electronic identity card in 2009 Highest numbers in Estonia: 90% has the card, 24% voted online in 2011 parliament election e.g. in Spain 27% has the card, but only 2% has card reader and 5% have used the card Mostly still used offline Some countries do not have or have even abandoned their online citizen authentication projects Fear of central database of sensitive information Citizens trust private companies more than the government E.g. United Kingdom, USA

Summary Many citizen authentication projects are still early deployment phase Technical solutions are quite mature Use grows very slowly Support from online services is lacking Cross-border use is small Alternative solutions have already filled the space Citizens often concerned about privacy and liberty issues, and sometimes for good reasons

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information