Slashdot Mirror

← Back to Stories (view on slashdot.org)

German Government Introduces Digital Signatures

Posted by timothy on from the weakest-link dept.

bertvl writes: "From this article on CNN: Germany's federal government is introducing electronic signatures for its employees, a step it hopes will help make the security procedure generally accepted in the country. More than 200,000 employees of ministries and agencies will be able to sign electronic documents using a chip card with an encrypted key, giving them the same legal weight as paper documents with a handwritten signature, the federal Cabinet said in a statement Thursday."

8 of 210 comments (clear)

  1. That's final proof.. by Rob+Kaper · · Score: 5, Interesting

    The German government just get it. First they send 52-page colour booklets promoting open source to all businesses in the country, then they give a large sum of money to add more security and encryption in mutt and KMail, and now this!

  2. The flaw in all security systems ... by Big+Dogs+Cock · · Score: 5, Insightful

    ... is people. How many people are going to go for a dump, leaving their keycard on their desk? Practically everyone where I work wanders off at some point leaving their PC logged with their (Notes) mail running. This could lead to hours of fun. Similarly, passwords/phrases get shared, borrowed etc.

    Unless you use biometrics (I don't generally leave my fingers on my desk when I go to lunch), the stupid-factor will always play a part. The legal status of digital signatures will only really be clarified when the first case comes to court with the defense: "someone else must have used my key".

    (OT) Oh, and would people please learn to spell "definite". It's like "finite" with a "de" on the front (quickly checks for typos).

    --
    "Under the iron bridge, we fist" - The Smiths, Still Ill
  3. Germany by Supa+Mentat · · Score: 5, Interesting

    You know Germany seems to be one of the technological world leaders. They just decided to phase out all nuclear power in favor of wind power by the year's end and it looks like they'll do it. The acceptance of digital signitures is a huge step in helping the internet reach its full potential for changing the way we live our lives. Germany is taking this first step. What I want to know is: who are the politicians making all of these progressive decisions and what affect are they having in the EU Parliament? Are other European countries following Germany's lead in these type of issues? I know that German business law strongly favors big business, are there any other laws or policy that a liberal would take issue with in Germany? What is the state of Linux use in Germany? I ask all this because I'm looking at an offer for a research position at the Max Planck Institute in Munich (I'm sorry _Munchen_:).

    --
    "A witty saying proves nothing." - Voltaire
    1. Re:Germany by Reinout · · Score: 5, Informative

      What I want to know is: [...] What is the state of Linux use in Germany?



      Germany is home to an awful lot of linux development. SuSE is from Germany, as an example. The government is also active, sponsoring the GnuPG pgp-like developement. Top government officials (like "secretary of state") opening the LinuxTag for 2 or 3 years in a row now.



      There's a lot of debate currently on whether the Reichstag (the German parliament) should switch to linux. It's kinda funny, even people from the same party are disagreeing, one proclaiming the gospel of linux, the other (being half sponsored by Redmond) denouncing it as a threath to Germany's software industry as a whole :-)



      The best tip is to look at heise. They also've got english news now. Look at what's going on there. That 'heise' publishes two of Europe's best-regarded computer magazines, one for home-use (c't), one for professional use (iX).



      Reinout
      --
      Reinout van Rees
    2. Re:Germany by Gerein · · Score: 5, Insightful
      It would be a 20 year+ project to realise it.

      Well, it is! They just don't build new ones, and the existing nuclear plants are being phased out.

      If they don't the Christ Democrats which are ultra conservatives who think GW Bush's enviromental policies are to compromising will scrap the whole thing.

      Come on. The Christ Democrats are conservative, and I hope they don't win, but comparing their environmental politics with those of GWB?? Environmental support has always been very strong in germany, even with the Christ Democrats.

      ... that it can take upto 10 working days to cache a checque.

      Maybe, because you're the only one, who does it? I've lived all my live in Germany, and I've used a checque only once! I got the money instantly... Who needs checques?

      ... with a Genetic finger print embedded in the national ID ...

      Unfortunately you're right with this one. May very well happen. On a side note: In the moment the US is pushing european countries to introduce biometrical finger prints on the IDs, threatening to require visas for imigration again...

      ... a free for Corporations to use Genetic database ...

      Very unlikely! Privacy concerns have been very strong in Germany, I could never imaginge the government to let corporations access a (hypothetical) genetic database!

  4. Legal Weight by Mike+Connell · · Score: 5, Interesting

    Surely the 'legal weight' will be determined by the courts: It's only a matter of time before somebody signs something (or appears to), and then denies any involvment. Excuses (true or not) of "My card was stolen", "They made me tell them the key", "I don't know what you're talking about" will presumably be uttered (in german). Cryptogram has covered the problem that "the key isnt the person" in the past.

    If the first 10 cases all end up with courts deicing that there isn't enough evidence that the person did actually "sign" the document, there surely won't be much legal weight? A paper signature means little if there is sufficient doubt about it's authenticity, I dont see how that's going to change here.

    As an aside, I like the last line of the CNN piece:

    Bitkom called instead for a "citizens' card," with chip and electronic signature, for all Germans.

    Yeah Baby! I can't see anything bad happening down that road!

    --
    Tales from behind the Lagom Curtain
  5. A good next step by nsample · · Score: 5, Informative
    Regardless of your views on "net-widening" and "freedom" and "tracking" and the like, this is the next logical step for genuine security.

    Good security should consists of three parts:

    1. Something you have
    2. Something you know
    3. Something you are

    Now it seems the German government has two out of the three (know+have), which is one (or two!) better than most of the world. Now all they need are retinal scanners, and they're set!

    Like I said, it may not be a Good Thing® they end up with, but whatever it is... it's a lot closer to "secure" than anything else.
  6. Why Digital Signatures Are Not Signatures by fhwang · · Score: 5, Interesting
    Damn, I could've sworn it was just yesterday that I posted this article to another discussion here on /.

    Everyone who's praising the German government on being all tech-savvy and forward-thinking and blah-blah-blah should first read Bruce Schneier's thoughts on the subject: Why Digital Signatures Are Not Signatures.

    In a nutshell, he says this: Cryptography can do quite a bit to guarantee that a given signature came from a given computer. It can do absolutely nothing to guarantee that that signature represents the person it purports to represent. To quote Schneier: "The mathematics of cryptography, no matter how strong, cannot bridge the gap between me and my computer."

    It's all good and well for governments to embrace new technology, but only if they don't cause major fuckups in the process.

    --

    Do domain names matter?