Slashdot just posted a piece that Bloomberg wants to build a database of every valid US worker to include DNA or fingerprints. This is completely insane, and more importantly its completely unnecessary.
This is insane because centralization of data is a bad idea. Just look at what recently happened with the analyst at the VA who was robbed with his laptop containing 26 million veterans records. Imagine a ~150 million worker database containing biometric data. Crazy insane. But again, its not necessary to build such a database.
I am not against the idea of unique identification via a biometric, but just don't centralize the data. If you want to make sure a person is a valid worker, build a mag card that holds two things:
- Biometric 'signature' of a person's fingerprint stored as a small data file
- Digital signature w/certificate of the biometric signature generated by a 'signature authority' with a valid certificate chain.
That's it. What this would do is create a card that can be self-authenticated without any network access. You have a terminal that takes a fingerprint, produces a signature, then compares it to the one on the card. The digital signature would be validated against the stored biometric data to ensure it has not changed since the authority 'signed' it. This terminal could be completely disconnected from any network and still produce a valid result. No log would have to be generated. No loss of privacy would result. If someone had the card it would be useless without your finger to validate it with. Its just like your signature, just one someone cannot copy without compromising a signature authority. This is not novel, its been done before although there they were trying for much more. The above idea is a simple, cheap way to ensure identity without loss of individual control or privacy and more importantly without the need for centralization.
erm..don't you think the retarded implementation is pretty far down on the list of reasons to be concerned about this great plan? Anyway, you can argue the technical details with the stormtroopers when they come knocking on your door late one night.
Posted by: Clark Slater | Monday, May 29, 2006 at 12:36 AM
Its not an implementation detail. To be able to have one entity create a credential for another entity is a fact of life. The problem is credentials are easily duplicated. In the US you are already supposed to have a credential to work either in the form of a birth certificate, drivers license or social security card. You can buy sets of these on the street right now for $150. I am proposing the creation of a credential that you can carry with you (that only you have) that can be self-authenticated. Its no different than any other form of identification except that without your fingerprint it cannot be validated. That is a good thing.
Its funny when folks worry about the government's potential abuse of power (stormtroopers) but are so OK with Google or NewsCorp/MySpace. I worry more about companies constrained merely by the perception of market dynamics than a goverment that submits itself to the rule of law. I universally don't like centralization of data unless its absolutely necessary.
Posted by: Rich Kilmer | Monday, May 29, 2006 at 10:11 AM
very informational... educative as well, i read and felt like reading over and over again....good job!
Posted by: Top Grade Acai | Friday, March 26, 2010 at 04:59 PM
It is possible that Ambien (zolpidem) may cause a false-positive
result for benzodiazepines (drugs such as Valium and Xanax). Ambien is
not actually a benzodiazepine, but it shares some pharmacological
properties with the benzodiazepines.
Posted by: generic viagra | Tuesday, April 27, 2010 at 08:26 PM
you can buy sets of these on the street right now for $150. I am proposing the creation of a credential that you can carry with you (that only you have) that can be self-authenticated. Its no different than any other form of identification except that without your fingerprint it cannot be validated. That is a good thing. http://www.hotfilemediafire.com
Posted by: Harry | Tuesday, August 10, 2010 at 04:41 AM
Great post, everything is very open and very clear explanation of issues.
Posted by: upholstery cleaning milwaukee | Friday, December 24, 2010 at 03:09 AM
There are much to learn from this article, I'll be looking forward on your next post.
Posted by: carpet cleaning milwaukee | Thursday, January 13, 2011 at 10:30 PM
I feel good to see this post very informative! really enjoyed reading thank you for sharing.
Posted by: Credit repairs | Sunday, February 06, 2011 at 04:08 AM
Just look at the wikileaks case. I seriously doubt this would be a good idea.
Posted by: Laura, Adult Tricycles | Wednesday, May 18, 2011 at 09:58 AM
Wow..just looking at this made my day.
Posted by: mba | Wednesday, June 08, 2011 at 06:44 PM
Lad mig lige slå fast, at jeg i alt indtog fem øl i går fra vi ankom til den lille forstad til Dinant og til jeg gik i seng.
Posted by: Oakley Sunglasses Discount | Thursday, June 30, 2011 at 06:05 AM
Very nice site! [url=http://aieopxy.com/osoaqqv/2.html]is it yours too[/url]
Posted by: John562 | Friday, September 09, 2011 at 03:54 AM
Very nice site! is it yours too http://aieopxy.com/osoaqqv/4.html
Posted by: John562 | Friday, September 09, 2011 at 03:54 AM
Well I guess I don't have to spend the weekend fiurgnig this one out!
Posted by: Belle | Thursday, October 06, 2011 at 07:56 AM
Nice site! I enjoy a couple of from the articles which have been written, and particularly the comments posted!
Posted by: Air Jordan 2011 | Wednesday, January 11, 2012 at 02:54 AM
Definitely one of the most complete articles on the subject. I just bookmarked your post. You are definitely one of the better bloggers out there!
Posted by: executive recruiters international | Monday, January 16, 2012 at 04:41 AM