All About Me

With national identity cards only a matter of time, I’m confused and not really certain who I am anymore, so perhaps the arrival of a piece of plastic displaying my photo and thumb-print will clear up any doubt that I am, after all who I think I am and not who the Government thinks I am?

In the IT industry, we very much think of identity in terms of authentication and authorisation. Are you acting as an individual or as an employee of someone else? Are you a citizen of the UK or are you a member of a specific group or organisation?

Once this has been established in a rather arbitrary manner, then we need to be authorized, as in holding a driving license or having the right to enter certain buildings, access systems and networks and sign or authorize documents, payments, tax returns and all the other pieces of red tape that define modern existence.

Increasingly then, identity management is used to streamline and eliminate business processes and is integrating the individual into the legal and regulatory processes of society. In places like Kuwait and Bahrain, this is taken for granted, as the citizen ID card defines one’s place and privileges in a way that might send shudders down the spine of privacy groups in Europe. In the smaller, technologically advanced middle-eastern countries of the Gulf coast, a grand experiment has been taking place and they are really rather proud of the results as part of their push towards their own flavour of eGovernment, which is not quite the same as our own.

Back in the West, many of us outside the Home Office are still agonising over a large number of overlapping initiatives, public and private, local, regional, central and international. Parliamentary group, EURIM argues that in the UK, the key difference appears to be between private sector models, where the consent of the individual is paramount, and public sector models, where there is currently little or no consent. Instead the sharing of data collected under statutory (or other) powers is commonly banned unless explicitly permitted.

While the issues of personal identity are central to the growth of e-commerce, the modernisation of government and the fight against computer assisted crime. EURIM argues there is also much confusion as to which of these are intended to be linked and, if so, how. Objectives, priorities and timescales, let alone funding, legal frameworks and target audiences vary.

At the same time, Identrus points to the implications of identity theft, which has grown more than 60% since 2001 and is expected to cost businesses, governments and individuals $more than $300 billion this year.

Who, asks Identrus, will vouch for you? In terms of authentication, what proof will establish that you are who you say you are? Who will store and safeguard your information and how will it be transferred into a mobile mechanism?

And when it comes to authorisation, how disputes will be resolved, will it be legally binding and what liability coverage will be provided at a time when, in The United States, people have had to declare themselves legally dead because someone else has stolen their identity and the other person has outstanding warrants for their arrest.

I’m not convinced about ID cards but I don’t have a solution either. If North African terrorists can make it into the UK on the basis of a forged French ID card and we’re swamped with one-legged Romanian roofers looking for work, I’m rather wondering why we’re bothering.


Popular posts from this blog

Civilisational Data Mining

The Nature of Nurture?