Slashdot Mirror
Bill Gates Talks about Belgian eID Card
Brainsur writes "Today Bill Gates visited Belgium to talk about the Electronic ID card introduced last year in Belgium as experiment. Microsoft announced that they will integrate the electronic identification into the Windows Software so they can deliver more security and privacy on the internet. The register has
more news."
How should I expect privacy when my computer has my ID card? I want my ID card in my pocket, so i know when it is readable by anyone.
vajk
Might be me but whenever I see Microsoft talking about new features adding "security and privacy" I keep thinking there is a word missing.. like exploit, or hole...
"You must first open your passport .net account for us to verify your ID."
My thoughts exactly.
Don't know which is worse - a country going full tilt down the electronic ID route (when even the perceived benefits are less than the cost), just because, you know, it's technology. Or Bill G saying it will make things more "secure"
For those countries that require ID, just why is the manual system that has been in place suddenly no good any more?
"She's furniture with a pulse"
Am I the only one wondering how a state-guaranteed ID card used for authentication will provide more _privacy_???
/c
Before attempting anything criminal, better report your eID card stolen.
Now user in belgium will effectively have MS passport in physical form.
In Canada, Businesses are forbidden to use SIN#s for tracking purposes and this is not that different. Maybe if it works there, he'll be able to use the US' ID cards the same way.
Oh and patent the fuck out of it, too.
Obama's legacy: (N)othing (S)ecure (A)nywhere and (T)error (S)imulation (A)dministration
and knowing my way around windows, this has me somewhat frightened.
Hmm. There's a BIG question unanswered in this article.
Microsoft believes that combined with the eID Card MSN Messenger chatrooms will be much safer. Users would have a trustworthy way of identifying themselves online. The Belgian Federal Computer Crime Unit (FCCU) could even refuse young children access to certain chatrooms based on their electronic identity.
Now.. is the ID card REQUIRED to use the MSN service, or is it just another level of idenitifcation? One model, such as what Amazon.com uses for reviews, is to accredit reviews with a 'Real Name' sticker if it is indeed the poster's real name (as verified by their credit card). But it isn't required to actually post a review, only to get that extra level of verification.
Anybody else have a different take on it, did I miss this important point?
"There's no success like failure, and failure's no success at all."
- Bob Dylan
For slashdotters, who don't have an access to M$ internal documents, "deliver more" is replaced with "charge more for" there.
In theory there is no difference between theory and practice. In practice there is. - Yogi Berra
I'm sorry, ma'am, but your card says right here that you are Saddam Hussein. How you escaped and got the sex change and full facial reconstruction so fast is beyond us. Just come along peacefully, now. The potential for virus mayhem is amazing. If not rewritable, at least imagine the identity theft possibilities.
Reject Fear - Embrace Hope
Any Fins here wish to comment?
This comment does not necessarily represent the views and opinions of the author.
I am a little confused by this. Distributing a card with a chip with a unique ID? I didn't think Borg cared about uniqueness when it came to assimilation?
-- Knowing too much can get you killed, but knowing who knows too much can make you rich.
It was the 4th of february, 1998. It happened.
Seven years later, he dares to come back.
Men are born ignorant, not stupid; they are made stupid by education. Bertrand Russel
How long do you think it will take some bored script kiddie to end up tracking everyone and watching the results like a bad game of the sims.
Is it really all that beneficial to have this securing mechanisms?
Either way I am not gonna complain unless this effects Belgian Beer production.
Sigs? We don't need no stinking sigs!
$5 says this kind of thing (computer credentials linked to your "papers") finds its way into the various trusted computing initiatives...
Let's get drunk and delete production data!
...you don't want all that information following you? From TFA:
Just like the classical ID, the eID contains your photo, surname and first names, sex, nationality, place and date of birth, signature, national number as well as the validity period of the card.
Quite frankly, there are times I would like to use the Internet without all of that information following me around. There are sometimes online I just don't want to be identified! Even when I do want to be identified (using Canada as an example) the idea of even giving my SIN number to Microsoft sounds insane! I ccertainly wouldn't want that sort of sensitive information identifying me online. I'll stick to using my name...
Microsoft announced that they will integrate the electronic identification into the Windows Software so they can deliver more security and privacy on the internet.
So true, and yet so much marsh gas.
On one hand, it's hard to see how improving the user's authentication level would stop crackers and virus writers from breaking into Windows boxes.
On the other hand, given Microsoft's track record in internet security, it's hard to see how they could ever deliver less. Anything they do is sure to INCREASE the security level. And no, this is NOT funny.
--Bud
After the overwhelming success of Passport it was only a matter of time until this happened!
Today I recieved an e-mail from my bank saying that they wanted to verify my new government ID with my bank acount information. All I had to do was to go to this site and have my reader scan my ID card. Gee, I'm sure glad my bank is tough on security.
Fly me to the moon Let me sing among those stars Let me see what spring is like On jupiter and mars
With these cards, if it'd be so easy to block certain chat rooms from kids, who's to say the government won't use them to block certain individuals from viewing certain web sites, either because of a certain background, or just plain racial profiling? Also, who is to say they won't require web site owners to register their sites via their card, and if upon review, their site is a risk to national security, take it down under the auspices of the Patriot Act?
"Time is an illusion, lunchtime doubly so." - Ford Prefect
you cant be serious this is awful. microsoft working with goverments, to make online id systems. "no im sorry, you need windows verifyor 1.0 to access the internet or you could do ANYTHING!"
Thanks for the laughs :)
I'll do the stupid thing first and then you shy people follow...
Did Bill get a new PR firm? I've seem more Gates stories in the last week than most of last year? Is he trying to make a shift from IT Industrialist to High-Tech Cultural Pundit?
Looking at it from a marketing point of view, its like money in the bank for MS. Nothing like having your founder out there framing the next technological debate in terms of what you have coming out of the R&D lab.
Why does Jonathan Todd want to keep Bill and Mrs. Kroes apart?
Why does Mrs. Kroes appear so pissed?
And is there a developing spark between Bill and Jon?
All this and more, when you join us after the break only on Channel 25.
An Indian-American Hindu committed to non-violent thought/speech/action alarmed by the global explosion of radical Islam
the Commission balked at ``Windows XP Reduced Media Edition
You have to admit, it takes some serious nerve to suggest "Reduced Media Edition." I wonder what the less inflammatory proposals will be. Some ideas:
(Where The Phone Company tries to take over the world by implanting a phone in everybody's skull so they can make calls any time and any where... and be tracked...)
Don't leave any doodles lying around this time.
-S. Balmer
There are 01 kinds of cars in the world. The General Lee, and everything else.
Ummm.... not trying to troll (and hope you are not as well) but when did IBM kill 6 million jews? How will Microsoft do the same?
Is today International Assimilation Day or something?
No one wants them, why the hell "must" everything now require an ID? The ONLY time an ID card should be present is if you're using a public terminal or information which needs to be kept secret is around. Other wise I don't want the spammers to know my name, address and other things.
Keep ID cards to where they are needed to prove who you are, other wise leave me alone. If you need to know who I'am then I will tell you, all you need to know online is I can type and my user ID is [whatever site I'm on's username].
I like muppets.
What's more important Microsoft announced that they will integrate the electronic identification into the Windows Software so they can deliver more security and privacy on the internet.
That means that _they_ will have the personal infos of zillions of users? Oh well. Just when I thought that governments put their nose in our affairs a little too much, M$ comes to the rescue.
<whispering> So my infos will be just a secret between Bill & me? How romantìk!
42.
The Earth's most hated pejorative (Bill Gates) linked to the universe's (Belgium)... Go figure.
Bel, the mostly sane.. "Of course I can't see anything! I'm standing on the shoulders of idiots." -- Me
In short the reported asked Gates (among other things) why Microsft would be backing an e-ID card initiative, and why it is the Belgian card that won his attention. Gates replied that Microsft wanted to back the card because it is a way to make Microsoft products on the internet safer and more secure. He said that it would help protect minors from abuse in certain chatboxes and forums, to protect their private data on personal blogs, and to regulate and make traceable the actions of each registered individual. When asked if cardless users would be excluded, his answers remained somewhat vague, saying the MSN services would still be available but probably without certain features. He said Belgium is a leader on the market of smartcards, but admitted that the card would not prevent hackers from trying to engage in malicious - illegal, in his words - practices, cracking security and stealing personal data. The Bel. secratary of state who introduced the eID to MS said the card does not bring ultimate safety, but protects minors to a large extend from 'all the bad things on the internet', and that it also gives parrents a chance to monitor the actions on the net of their kids. He said that PC systems in Belgium would come with integrated card-readers.
One question that springs to mind, is if open source will have the opportunity to work with the same system. I can imagine the windows platform getting significantly more secure for minors, and thus interesting for parrents who usually buy the first PC. If Linux systems are left in the dark and can not tap into the world of protect customers, this can mean a serious set-back for any aspirations the platform may have, you know, conquering the desktop and all that jazz..
With great power comes great electricity bills.
...to not use Windows.
Don't Run. Don't Run while you still can.
since i have a rather recent classic paper ID
but i guess i should start looking for a lead lined wallet.
funny thing on the train a lady was asked for her ID
she only had one of those new ones. train personel had no way of cheking the info on the eID twas quite funny how they kept going on how she needed to have papers proving she was she along with the eID.
anyway this seems to be the perfect software for market research, now you are certain who it is that is looking at websites about what ever.
A nice reminder that i should be ashamed to be belgian, almost forgot becauze of the US bashings that have been going on lately
so that it doesn't have to run windows
"It is a greater offense to steal men's labor, than their clothes"
I'm a belgian citizen, and I'm really concerned about this. I don't like where this is going, public governments should never have close ties (especially technological ones) with a specific company. What this means is, in the future belgian citizens who don't run Windows will be 2nd class citizens (can't file their taxes online, can't use online services, etc...). That's just plain terrible, what a shame.
DZM
These eID cards aren't all that bad.
Here in Belgium we are obligated to carry normal ID cards with us, so if those become one with a chip in them, it doesn't make that much a difference.
If you don't want to use it for identifying with msn, so don't.
On the other hand, they are fully supported on all sorts of unixes, so they might be handy to login your own system or whatsoever.
It's not like they're equiped with some sort of rfid so govmnt can track wherever you are.
"The day Microsoft makes a product that doesn't suck is the day they make a vacuum cleaner."
Why is it for some reason everything, be it national security, convenience for civil servants etc etc etc gets considered before privacy in issues such as National ID cards. Surely, as illustrated by the many valient efforts at DRM the technical ability is there to produce a modern doucment to validate ID and also protect privacy.
When we hear PR speak about DRM its all about how hard it is to crack etc etc etc, why cant the same technology be employed to control access to an ID card, and PREVENT unauthorised access?
The UK (and those who still have time) should resist ID card proposals, if they wish to remain free of these really scary proposals.
Im off to room 101 now.....
Anyone know if that sort of tech is really in use? I know CSI is infamous for insane tech, but that usually in the crime solving, not in the day to day stuff. Just Curious...
You are in a maze of twisted little posts, all alike.
This article should get the award for the most gratuitous uses of the word Belgium.
Thanks to the internet, we can now all die alone together! -SomeWoman
Microsoft has reserved this name for the Longhorn release.
"My country, right or wrong; if right, to be kept right; and if wrong, to be set right." --Senator Carl Schurz (1872)
Well, it seems the Dutch don't have those "stupid Belgians" jokes for nothing...
Really, I used to think it was just stupid stereotyping, but it looks like it's all true
Everyone his opinion, but this is flamebait. You come and live here, before you pretend to think you know it all. I've worked for 3 years in TheNetherlands, and I'm Belgian. I think I can make the comparission much better than you. But maybe you can explain to me why the North of Belgium is practically invaded by Dutch (and rich) immigrants. I'm sure *you* can tell me..
With great power comes great electricity bills.
Of course they care! Post-assimilation is when you need a unique ID. Otherwise, how would you know if you're "Seven of Nine", "Six of One", or "Half Dozen of the Other"?
A marriage is always made up of two people who are prepared to swear that only the other one snores.
There are a couple of reasons why electronic IDs are being introduced:
- Counterfeiting IDs will be (nearly) impossible, due to the fact that all IDs have to be signed by the central government. No more reproducing/stealing blanks to get a fake ID.
- Currently your address data is printed on the ID card, which means getting a new ID whenever you move. Also the refresh rate for IDs is lower due to the fact that all data (including your picture) is on the chip and can be renewed.
- You will have a way to identify yourself online and use the internet for things you currently can only do in meatspace (government papers, official mails, taxes,
...); with a limited risk for identity theft (one would require access to the physical ID + a pass phrase)
I don't see why this is such a bad thing. Yes, we (I'm Belgian) will be on the cutting (bleeding?) edge w.r.t. the electronic ID technology, but there are actual benefits for us as well (not just the government).Okay... I'll do the stupid things first, then you shy people follow.
[Zappa]
xenophobia moderated insightful and informative. NICE.
-mkb
On the bright side: there are drivers for the card reader for linux, solaris, Mac, ... source code too!
n l.html d ispatcher.htm
http://www.belgium.be/zip/middleware_source_code_
http://www.registrenational.fgov.be/bev_nl/bev_n_
I agree whole heartedly this seems like nothing more than xenophobic flamebait.. perhaps i am being too harsh , but replace western with white and you will see what i mean. A country is the people and those who live there are the country. The parent is blatent flamebait .
Well, im belgian, and this eID is actually a great advance for us, we will be able to fill out tax forms and other administrative forms, maybe vote and in the future us this eID as authentification for buying prescription drugs (yeah we get most of our medical costs paid for). It also solves a lot of problems between the different language communities we have around here, since a frenchman in flanders (where they speak dutch) could fill out his forms in french. This might seem a stupid problem but it has been a pretty huge on in belgium the last couple of years.
As for M$ using this to authenticate on their services? why not, as long as anyone can use our eID to guarantee some kind of secure log-in/transaction im 100% for it. I very much doubt Belium would let a foreign company take the monopoly of their eID market, im sure all they are trying to do is develop some kind of platform onto which outside companies could use our system.
Indeed this will mean that with time, you could make sure your Credit card could only be used by you (or anyone who stole your card, has an untracable card reader device AND has your 4 digit pin code). This of course makes online transactions much safer.
The only reason i see that Bill gates decided to integrate this to MSN messenger is because thats exactly the type of product that Billy loves (hence his introduction of similar cards in his company.)
So anyways, eID is great, that MS endorses it is not bad at all, as long as the procedure to endorse our future system will not be an MS product.
I am a Belgian citizen, studying in the US... so I guess I can reply to both angles of your post. It is true that Belgian has a large, mostly northern African, immigrant population. We allow foreigners with five years of residency to vote. So they do wield significant political power, but this is not necessarily a bad thing as you seem to insinuate. I have no idea what you mean by, "accelerating destruction of Western values and Western society", because values are not something the government should be involved with in the first place. However, there are a bunch of people who think along your lines, and they have formed the 'Vlaams blok' (http://vlaamsblok.be/site_engels_index.shtml if you want the English site). It is an anti-immigration party. It was recently declared illegal due to anti-racism laws. Immigration does cause many problems, and even though I don't support vlaams blok type thinking, I'm reasonably sure they will win an election in the near future. And it will be a good thing, because they will mess things up so badly that they wont gain support in the future, and in the meantime things will finally be fixed without going to either extreme. If you are really that worried about high (US-) educated foreigners staying in the US and destroying your precious western civilization... don't worry too much, we already have much stricter controls on us than the Belgian citizens in the article do. We have to pay for the government to track us (SEVIS), we get fingerprinted and photographed upon arrival in the US, we have to check in at the start of every year, and to do any work at all we need more approval than Michael Moore has here in Berkeley.
Were there any cream pies thrown in his face this time?
It's true no man is an island, but if you take a bunch of dead guys and tie 'em together, they make a good raft.
A problem has been detected and Windows has been shut down to prevent damage
to your country.
Belgium.dll ERROR
If this is the first time you've seen this Stop error screen, restart your country. If this screen appears again, follow these steps:
Check to make sure any new government is properly installed.
If this is a new installation, ask your electorate
for any Windows updates you might need.
If problems continue, disable or remove any newly installed government. Disable government options such as democracy or socialism.
If you need to use Feudalism to remove or disable components, restart your country, press F8 to select Advanced Startup Options, and then
select Feudalism.
Technical information:
*** STOP: 0x0000004e (0x00000099, 0x00000000, 0x00000000, 0x00000000)
Beginning dump of physical memory
Physical memory dump complete.
Contact your system administrator or technical support group for further assistance.
I like you, Stuart. You're not like everyone else, here, at Slashdot.
You're a total wacko. Maybe you didn't notice, but it was the foreign immigrants who wrote the Constitution and the Bill of Rights, and the foreign immigrants who built the US into the world superpower that it is. If immigration were going to destroy the country, it would have done so by now.
Mod down posts with a "Free Mac Mini/iPod" sig, they're spam!
It's bad enough being forced by your government to have a id card... Now they have to put up with identity theft and can't even do a thing about it... This MS Cancer is growing too big for this worlds own good...
Years ago, I introduced a little concept called SoFiNet, which would be an instant messenger/ personalized DNS service based on the Dutch Social/ Fiscal number.
:-)
I never quite got into implementing the concept, but I see Microsoft is getting on to me here. Don't know if I can invalidate any of their patents now...
The whole idea was meant to be ironic, and to display the abuse of what originally was a fiscal personal ID. Somehow I've got the idea that Microsoft (as usual) didn't get the irony
"We can confirm that Debian does *not* ship the version with the trojan horse. Our version predates it." [CA-2002-28]
Everyone knows they were having their speed pass chips injected along with the colagen implants.
Seriously, silicone breast implants now come with rfid tags so that they can more readily be identified in case of problems with a particular production run or model, since about 1/4 of all new boobies are still silicone, despite health concerns. All you have to do is agree to 5 years of monitoring here and here for examples.
So now you don't have to guess - just get a remote reader (but that takes all the fun out of it).
The fraction of immigrants in political and official functions is miserably low, less than 1%; most political parties are simply not catering for immigrants. Perhaps we have completely different views of what "Western values and Western society" is, perhaps you're just trolling, or it just might be that you're just a narrowminded xenophobe. Don't forget that not too long ago you were also an immigrant. At least something we agree on
Okay... I'll do the stupid things first, then you shy people follow.
[Zappa]
Hehe. I started this post when the story was still in the mysterious future and it kept growing till, now when most everyone has already moved onto the next story. Oh well, might as well post it and this thread is as good of a spot as any.
I would actually be in favor of a Smart-card ID - especially if the citizen ID was just one uses of a generic smart card authentication system. The use of Social Security Numbers is inherently insecure. Every authentication system needs a public identifier, and at least one secret key. But as things stand right now SSN are treated as both an identifier and a key - it is impossible to be both public and secret simultaneously! It is scary how many institutions act as though anyone who can rattle off my SSN. Something like this could greatly decrease potential for identity theft and fraud, and frankly I don't think it will decrease my privacy any (more on that later).
Suppose you had a smart card which contained a readable id and public key, an non-readable private key (encrypted with a passcode), and a small amount of processing power. When you need to authenticate yourself, you would place the card in a a drive, and enter your passcode. The person requesting authentication would generate a challenge using the public key, and the drive would pass the challenge and passcode to the smart-card. The card would then use the private key to generate a response.
The nice thing about the smart-card doing the processing is that the private key would never leave the card. In fact, the user would not have to know anything about public/private keys (unlike PGP). And it follows the good policy of "something you have" (the card), "something you know" (the passcode), and could easily include the option of "something you are" (biometrics) for high security applications. But even without the biometrics, this would be infinitely more secure than SSN, more secure than a credit card or ATM, and on par with PGP signatures.
Then imagine that this is a standard authentication system - you have a card to authenticate that you are Citizen 123-45-678 for government programs, another to authenticate that you are VISA Card Holder 1111-2222-3333-4444 for purchases, another to authenticate that you are user on domain for login authentication, and yet another to authenticate that you are user@domain.com for signing and decrypting email. If there was a standard, there is no reason that the drive could not be built into all computers, greatly increasing the security of online financial transactions, and finally creating a user-friendly mechanism for encrypted communications.
In short it would solve a great deal of the security issues (or at least technical aspects thereof) that our rush into the digital world has created. Of course all the social engineering exploits are still there, and so we should never operate on the assumption that the system is infallible.
Now privacy. I don't like giving out my social security number more than anyone else. I have gone through great trouble to not give it to people that do not need it. But even so, there are a huge number of organizations that are entitled to it by law, and have a legitimate need for my personal information. Which brings up the real crux of the government privacy issue in my opinion: We asked the government to take care of our retirement, so they need some information to do that job. We asked the government to provide medical care and drug coverage for the elderly, so they need to know my medical record. We asked the government for all sorts of benefits and exceptions in the tax code, so they need to know the nitty-gritty details of my financial life. We asked the government to help pay for college, so they need to know even more information. And now people want to ask the government to provide everyone healthcare and that will erode my privacy even more. I have an idea - if we don't want the government to know everything about us how about we stop asking it to do everything for us. Until then all this cry for privacy
Now I live in Belgium. Why a post like this gets an 'Interesting' score goes beyond my mind. First of all, Belgium indeed does have a rather big foreign population. Saying that the foreign population exceeds the native one is just plain absurd. Last time I checked the stats it's not near there at all. You might want to double-check you facts and question your 'reputable analyst'. The eID is not related to this at all, though. The Belgium government is going to a long process of modernizing the administration. That includes, for example, filling out your tax form on-line. The eID card merely is a step in this process to make the goverment more accessible (from your home!) to all Belgian citizens. Let me start off with saying that we already have an electronic social security card, which has been in use for quite a while and is broadly accepted. There's quite a lot of sensitive data on the social security card, but that's why the card readers have built in security: you don't want your local pharmacy to access the list of last visits to your doctor, for example. The purpose of the eID is to facilitate e-government. You can, for example, use the eID card to fill out your tax form on-line. The eID card is also secured by the traditional PIN code, so it's as safe as, let's say, your bank card. Needless to say that if you loose it you can cancel it - you just go to the closest police station. I'd like to add as well that if you don't want to use your eID, then don't. It's still the traditional ID as well and if you don't want to use it with your computer, then don't! Thus: there is no violation of privacy: you need a ID card anyway, it just comes with a chip these days. If you don't want to use this chip outside of your contact with the government, then don't. You still have full control over your privacy, so there's nothing to worry about. Your comment based on some personal views and do not at all reflect the real reasoning behind the Belgian eID. One more sidenote: the Parlement had a short session with Bill Gates and the MP's did ask him quite some questions about open source software. Just to show you that our government is interested in Open Source Software as well. Have a nice day.
I tell you, the world is going to hell thanks to Bill Gates and Steve Ballmer's illegitimate moon child Windows. Back in the days of yore (about two years ago) I was using MSN Messenger to communicate with my intarweb pals. Then someone told me that M$ wanted to claim ownership of what I wrote in MSN Messenger. No! I didn't believe it. I figured that this had to be some kind of GNU Hippy Commie FUD lie. But I read the fine print myself and sure enough, Micro$haft owns anything you happen to write in MSN Messenger. So I stopped using MSN Messenger. Now they want to start interfereing in personal IDs? This is wrong wrong wrong!!! Can you imagine? Micronut$ would own YOUR IDENTITY! I'll bet there is fine print legalese that says that by using the ID, you promise to never do anything contrary to Micro$uck's wishes. The GNU hippies were right! I personally reject all that is Micro$oft as being invalid and declare myself a sovereign computer operator! If I can't buy and sell things as the bible tells of Bill Gates and his Beast system, then I prefer to starve to death than wear the mark of Bill (Satan) Gates!!! They'll never take me alive!!! NEVER!!!! NEVER!!!! They're going to have to pry my GNU/Linux system from my cold dead fingers.
These OSes DON'T RUN!!! (Linux, *BSD, *nix, Mac OS X) Err... wait.
-"...bad old ideas look confusingly fresh when they are packaged as technology" - Jaron Lanier (Digital Maoism on Edge.o
Microsoft announced that they will integrate the electronic identification into the Windows Software so they can deliver more security and privacy on the internet.
If their goal is to delivery more security and privacy to the internet, they need to remove the tcp/ip functionality of their operating systems.
Do you have ESP?
This has been discussed as a US issue before (ca. 1890).
Apart from the fact that the influx of "furriners" undeniably did not prevent the US from becoming a world power, genuine diversity seems (arguably) to have been a source of some of the nation's power.
More importantly, It is not your call. Or mine. Democracy, by definition, must contain the potential for its own replacement, or it is not democracy. If you don't like the idea of 'western' democracy, then you don't need the 'slopes', 'darkies', 'wogs' et al to destroy Western values and society.
I would point out that whatever G.Bush's many faults, he is right to observe that other countries (many non-'western') seem to be adopting the so-called 'western' values at an accellerating rate. The Al Qeida certainly believe this and is the main source of their hatred of the west.
There is not nearly enough love in the world, but there is far too much trust.
You have the privacy of the key and the door lock but your issuing authority has the ability to make another copy of the key "from their records" and unlock any door you have locked.
Contrapositively, any guy who muggs you and takes your house key isn't suddenly "you", but the same mugger who takes your ID is suddenly "you" "to the system" and will leave vapor-trail evidence of you-ness behind him as he goes.
Now if your ID card can't be authoratatively canceled and replaced then the thiefs access is total an perpetual. If it *can* be canceled and replaced, then the replacement ID still has to act as the "key" to open "the door". This, in turn, means that there is some fineite or infinite number of keys that can open your "door" because all of the old locked stuff needs to recognize every future permutation of your key.
Either that, or this is Palladium again, where there is nothing magical about the key and it is all in some central database that is actively scanned for each transaction, and so acts as real-time monitoring of the "identified" persons.
So, really, absolutely no privacy or completely illusitory security.
Innocent people shouldn't be forced to pay for inferior software development.
--"Code Complete" Microsoft Press
Well, "Seven of Nine" has the huge knockers. After her, who cares what the rest of them are called?
When I first read the message, my faced turned red. But after looking deeper into the matter, it might be not so bad.
First of all: the eID is there, with open standards. Microsoft is just the first big company that announces a use of it.
The idea of securing chatrooms is, well, a bit strange. But the eID, as the Belgs call it, does allow stuff like electronic voting and online exams, can enhance online banking, doing online business or logging into the server of your work.
The card itself is platform independent. Software for the cardreader is available for Mac, Java and even Linux. There is rather extensive guide (although written in 2003) for using the card together with for example Mozilla (pdf in dutch). Actually, they have made a four-languaged site about the eID
There are catches of course. The Belgs have to look out for identitytheft, although there is a hotline to disable a stolen card. And it would be nice if services that really do not need an online verification, would refrain from using it. (Like browsing in an online shop before you buy anything)
Oh, we do have to give the Belgs a bit more credit. They have Open Sourced their voting software and Open Source is a integrated part of their IT policy.
Lots of windbagging going on here but nobody here has mentioned that Belguim's smart card system is based partly on the Free Software (LGPL) OpenSC tools.
The "then don't" part will become increasingly difficult over time, as the eID becomes obligatory for even the most mundane tasks.
It's like saying: "You don't want to pay 80% withholdings and taxes on your income ? Then don't work ! You don't want to pay 20% VAT ? Then don't buy stuff !"
Yeah, right.
That aside, I don't have a problem with the card, due to the fact that we Belgians don't have a history of being abused by the government (save for taxes, that is). Let's hope that doesn't change for the worse.
As to the foreign population, the grandparent is very wrong and very right at the same time. The question is, what is a native Belgian ? A pure 100% Eburonic descendant, maybe ? Belgium has been trampled so often by foreign invaders/settlers/liberators that the gene pool is quite thoroughly mixed.
Flourescent (adj): smelling like ground wheat.
There is nothing wacko about modifying immigration policies to reflect the current state of the country.
You have a very good point, and the reason you have the voice of reason is that there is a very big difference between an economic argument and spreading fear about the destruction of Western values by letting those damned foreigners.
Dig?
-mkb
Now how long will this take to be implemented in Open Source IM clients? It already took weeks for some IM clients to work again with MSN's new protocol.
Bye bye MSN Network. I think I'm going to have my MSN account moved to the trashbin by then.
Mod the parent down please! thank you.
...). Belgium has ALWAYS been a melting pot of different cultures.
Hence, Belgians wholeheartedly embrace the eID
Not one Belgian I know, trusts the government. We have been ruled by so many different countries during the last 500 years that we've grown to not trust the government. That's why *everybody* in Belgium evades paying taxes. It's a sports.
So "Wholeheartedly embrace" seems a bit strong. The only reason Belgians want this card is because they think there will be less buraucracy. Yhe less they have to do with the government, the better. Rest assured, from the moment the government tries to use this eID is a tool to *control* us, public disobedience will render this card useless. This has happened countless of times before with stupid taxes, etc.
What is happening in Belgium, with its accelerating destruction of Western values and Western society
Belgium is a tiny country. It's in the middle of Europe. OFFCOURSE there are a lot of foreigners. Being a host to foreigners and speaking different languages is our (only) STRENGTH.
foreign-born population (including those with Belgian citizenship) now exceeds the native-born population
We have been ruled by dozens of other countries throughout history (France, Spain, The Netherlands, Austria-Hungaria,
So please enlighten me, what do you mean by "native Belgians"? There ARE no native Belgians! The country Belgium isn't even 200 years old yet! It was *created* by England as a barrier between France and Germany!
Now, these people may be coming from other cultures than before, but so what? Similar migrations happend in the past and it only strengthened us.
We're not "degrading our values" or whatever. we're evolving.
I'm a bit shocked that comments like the parent get modded up so easily on slashdot.
For those who are interested:1 2000/index.ht ml
:)
http://eid.belgium.be/en/navigation/
It's the official website of the government about the eID card.
Flemish (Dutch-speaking part of Belgium) public television also has an interview with Bill Gates on this topic. You can find it on-line at http://www.vrtnieuws.net . Click "Internetsoftware voor Belgische identiteitskaart" and then "Ivan De Vadder interviewt Bill Gates". The interview is in English, although with Dutch subtitles. It can only improve your language skills
The e-id card does have one major design flaw though: the certificate issued by the government linking your public key to your identity contains your National Registry Number (Rijksregister/Registre national).
This number is used in many governmental databases as primary key, so it's not a good idea to give it out to everyone. The law restricts the use of the National Registry Number by private citizens and corporations for data processing. But it would have been better not create the opportunity for abuse in the first place, by spreading around this number in by way of this certificate.
The academic world in Belgium has repeatedly pointed this problem out to the government, but to no avail.
Some cool graphs on the roll out of the e-id card in Belgium are availble here: E-ID page. The e-id is no longer an experiment, in theory at least 'analog' cards will no longer be issued.
"Here in Belgium we are obligated to carry normal ID cards with us".
Does "obligated" mean it is illegal to be without identification, or just inconvenient (maybe extremely inconvenient)? If it is the former, that should already have you upset. In the US, we are progressively losing the right to public anonymity. For one thing, the right to free political assembly and expression depends on being able to remain anonymous if so desired.
The US public has surrendered the ability to fly anonymously in the name of "security", as though being anonymous would somehow facilitate bringing weapons on board. The "security" involved is nothing other than tracking people's movements - it has nothing to do with making flying safer. It is equivalent to setting up road blocks and checkpoints that cannot be passed without identification.
With the spectre of I.D. cards looming over the UK I am curious about why the lady was being asked for her I.D. ?
Let's see. I'll pretend that I have an electronic ID card. Let's say that I'm paranoid and I just don't feel like using my electronic ID card in combination with Microsoft product (which I think many people would feel is perfectly reasonable) - or online generally.
So then what's the worst thing that could happen - I wouldn't be able to use Microsoft products? Aw, gee... what a letdown.
Sort of like trusting your SSN to a Microsoft product - would you use your SSN to identify you in an online chat room? C'mon get real.
I would gladly just refrain from using those software products that required me to provide my electronic ID number.
Just knowing that a company with such a sterling reputation for security as Microsoft would be protecting one's identity gives me a warm feeling. Much like I felt when driving a Ford Pinto with a full tank of gas.
they will win an election in the near future. And it will be a good thing, because they will mess things up so badly that they wont gain support in the future, and in the meantime things will finally be fixed without going to either extreme....
:o/
yeah, we said that here in the USA too
Interesting choice of country to be trying to do this in.
Some people in Belgium apparently don't like him. He got a pie in the face there.
http://www.bitstorm.org/gates/
Just because it CAN be done, doesn't mean it should!
You just proved the grandparents's point. The Belgian government, reflecting the will of the large foreign population, just banned a political party because the foreigners view efforts to slow immigration as "racist".
You would welcome a party that has as one of its main goals the overthrowing of the constitution and disbandment of the united states of america?
How very unpatriotic of you.
One reason cited was actually protection of the children, by allowing them to know the actual age of people they're chatting with, to avoid pedophiles pretending to be kids in chatrooms. Good intentions surely, but still a stupid idea if you ask me.
Great, but can the National Front rhetoric and maybe you won't get marginalized by non-psychos.
-mkb
I'm sure the government will deal with the wrongthinking bloks. Then everything will be doubleplus-good.
In other news the choclate ration has been increased again!
Give me a break. GP could have made a well-reasoned argument, but instead chose the path of fear-mongering, xenophobia, and yellow journalism.
-mkb
ford: hey zaphod, heard about this msn combined with id card thingy?
zaphod: oh belgium man! belgium!
and for those who aren't fans:
"But though even words like "juju-flop," "swut," and "turlingdrome" are now perfectly acceptable in common usage, there is one word that is still beyond the pale. The concept it embodies is so revolting that the publication or broadcast of the word is utterly forbidden in all parts of the galaxy except one - where they don't know what it means..."
As most Slashdot readers probably know, computer security has two distinct and separate functions: Authentication and Authorization. The first establishes that you are who you claim to be, the second establishes what you are and are not allowed to do. Authenticating yourself within a specific context, say a bank account transaction, is necessary within that context.
The danger in any type of universal form of authentiication is that it will be used for universal authorization. Many cities and states now suspend drivers licenses in order to collect fines, often for things completely unrelated to driving, such as failing to make child support payments, even for library fines. In time, any universal identification is sure to be abused on a much larger scale. The list of bureaucratic agencies that can red-flag your ID will grow, and so will the list of offenses that can make you unable to buy an airline ticket, rent a car, etc.
I read this pretty interesting snippet in the local Belgian newspaper (translated):
Gates went to the federal parliament, where he gave a talk about informatization of the government and society to a select number of members of parliament, and chairman of the house of parliament Herman De Croo. He received a number of questions concerning the topic of Free Software (open source), programmes anyone can use and modify for any purpose. "I explained that open source software functions well together with our software", Gates said and added that the existence of free software led to the price decrease of software.
Could it be? Positive words from Bill for Open Source Software? I guess it is because that eID works on open source software, but still..
Where's the cream pie guy when you need him? ;)
I'm not sure what the secret to success is, but the secret to failure lies in trying to please everyone -Bill Cosby
Total nonsense. The article you point to even claims the opposite. Only about 10% of the population of Belgium has foreign roots.
In the US immigrants constitute 99.9% of the population, and yes, they did destroy the original culture and values.
Acording to this article the cards are based on Sun's Java Card technology.
"I think this line is mostly filler"
Maybe I'm just paranoid, but I can think of several very scary situations that could arise from that.
I must say the parent post is very inflammatory, partisan, based on interpretations of plausible scenarios and very off topic. This type of discussion belongs in political fora, I don't think it has anything to do with "News for Nerds. Stuff that matters".
Oh, I'm a Belgian citizen too.
--- Sigmentation Fault - Comments Dumped
The Belgian government -unfortunately- has not banned that party. It was the independent judiciary system that convicted the party for being racist.
It is rather obvious that the party consists of convinced racists. The problem is that many people in Belgium don't see being racist as a problem anymore...
Here's a picture http://www.blokwatch.be/images/userimage/dillen.j
of the founder of the party we're talking about called "Vlaams Blok" and now being renamed because of their conviction to "Vlaams Belang".
Your post drowns in errors.
1) The government did not ban the party. A judge ruled that the some organisations linked to this party - organisations that were used to get money to it - had racist views.
2) The party still exists. All they had to do was to change their name. And even that was not strictly needed: they only did that for publicity reasons. In fact, because of this they're the actual winners of this whole mess.
The typo was in the 100000, not the percentages. About 10% of the Belgian population has foreign roots.
Ah! Finally some intelligent remarks on
I wish more people would understand that the roots of most European people -except maybe the Basque people- are very hard to trace because of the numerous migrants that have occurred during at least the last few thousand years.
Perhaps not too late to mention our cards (I'm right here in Antwerp) are java smart cards...
For people who speak dutch: http://www.tweakers.net/nieuws/35324
Dependency hell? =>
Alice: Hello, who are you?
Bill: I'm Bill Gates
Alice: prove it
*throws pie in Bill's face*
Bill: (unintelligible)
*communication proceeds between the two parties*
Here in Finland we've had these kind of id cards since 2000 or so. The novel idea is that that the authorities issue one for you and then you can use it when you need to prove who you are when doing business with the authorities from home. Great in theory since you can use web service from your home's comfort while previously you'd had to go there and have some other official identity with you, eg. passport. Well this thing pretty much flopped. Very rare service support it (though my company offers a service that supports it) and even fewer have card readers at home. It's a chicken and egg problem, really, combined with unfamiliar for the common people technology and concepts. Nowadays, when you need secure e-identification, many use the identification services offered by banks. Finnish banks are pioneers in e-banking and their systems are very established and generally trusted. So they've found a new business opportunity in offering their authentication and identification technology to 3rd parties who need their customers identified and are willing to out-source the operation. And this is something about everyone can use since on-line banking is so so 1996 that everyone does it by now. And to authenticate you don't need any extra computer stuff or passwords, just the code sheet your bank sent you. I believe electronic ID card is much more popular in Estonia. I don't know why, but they've been using it almost as long as Finland.
And to all American who are wondering the privacy effects. It's difficult for us to see your point. For us national id cards are no privacy threat at all. This is because the ids are mainly used when dealing with authorities, banks, etc. who one can trust (authorities) or whose interest is that their customer's privacy isn't compromised so they do their best to ensure that (banks, etc.). And why do we trust the authorities? Well our rulers don't have the habit to piss off the people by doing really things to us. And if something happened either intentionally or accidentally, they'd get caught very soon. According to Transparency International, Finland has been the least corrupted country on the planet for five consecutive years now. But it wasn't worse before, but the mutual trust and respect between governance and the people have been there since the 1917 independence.
Looks like it worked as flamebait on you. Don't take everything that sounds stupid so seriously, dude! :-P
I suffer from attention surplus disorder.
I certainly do not agree with the distruction of the constitution but why is it that everyone is so damn afraid of being unpatriotic? The last time I checked we lived in a democracy so stick up for what you believe in not what the politicians tell you that you believe in.
We allow foreigners with five years of residency to vote.
Sorry to have to correct you, but you're wrong... I'm Spanish, I was born in Belgium, I'm 27 now. Do the math on how long I've been living here. Yet I'm not allowed to vote. I have to change my citizenship to Belgian for that.
Not that I care to vote though, never cared for politics. But on a moral level I have a problem with the whole "become Belgian if you want to vote" stuff. I have the same responsibilities than the rest of the people living in this country (getting and maintaining a job, paying taxes, abiding the law etc...) so I find it a bit odd that I don't get the same privileges. At least you have a say in what happens with your tax money; I don't.
Of course, I could just become Belgian, and get voting privileges. But then again, what's to stop someone who's far less integrated than I am (remember, I was born here; culturaly speaking I'm just as Belgian as you are, only my id says otherwise) from doing just that to play the system? And they're far more motivated than I am; I'm just too lazy to change my nationality, but someone who wants to play the system will have little objections to changing nationality just to do that. Be glad they're not organised yet... ;)
Install windows on my workstation? You crazy? Got any idea how much I paid for the damn thing?
Just because immigration has worked in the past, doesn't guarentee it will work in the future. It depends on the quality of the immigrants you are getting *SNIP*
Don't know if this is an urban myth or not, but weren't the first people to colonise Australia a bunch of expelled criminals? Yet Australia has a far lower crime rate than say the US... Yup, it really depends on the "quality" of the immigrants you're getting...
If any Australian can either confirm or deny this factoid I been lugging around in my head for all these years, please do so. I'd really like to know if there's any truth in this, yet never saw that being covered in our history class, and for stuff like this I just don't trust a google search, but rather hear it straight from someone in the know.
Install windows on my workstation? You crazy? Got any idea how much I paid for the damn thing?
Are you for real? Judas priest man go on line a read SOMETHING! To say what you have said only shows you don't even have a clue about the EU. You're just some stuck up english tart that doesn't wan't to loose his knickers and have to drive on the right side of the road. You sir are nothing but rubbish!
try { println( SigString ); } catch( Exception e ) { println( 'Who cares?' ); }
*sigh* Yes, you can refuse young children based on their electronic identity, even if they don't have an e-id. You refuse them on the *lack of* e-id. You make certain chatrooms adult only, and only people who can prove (trhough their e-id) that they are older than a certain age can enter.
If it were to be like you portray it, anyone could enter any and all chatrooms: just don't plug the e-id into the computer, and tadaa! Someone between 12 and 18 who would otherwise be refused access could now also enter, because "based on their e-id" (the way you seem to interpret that phrase) there now is nothing preventing them from doing so any more.
And to think that just when I was giving you credit for not posting anonymously, you decided to blow it all on a major flaw in reasoning like the one you just displayed. It's rather sad my respect means so little to you. ;)
Install windows on my workstation? You crazy? Got any idea how much I paid for the damn thing?
If its Anonymous it cant function as an ID. It becomes "a ticket" and it only has limited applicability. That is, it will admit you to some service but it won't "identify" you at all. (All that is implicit in the definiton of the terms. 8-)
So if you have this ticket, it can not remain anonymous if you use it in conjunction with anything that is identifying. Read this weekends discussion of the Safeway Club Card leads to Arson Charge discussion. Get a completely "anonymous" club card and use it with a credit card or check or ATM card and it isn't anonymous any more.
And show me a government on the planet that is going to go into the business of issueing anoymous tickets to anything...?
Cash is anonymous, but only if nobody is looking hard enough. (Finger prints, serial numbers, DNA, etc.)
Innocent people shouldn't be forced to pay for inferior software development.
--"Code Complete" Microsoft Press
uhhm, having grown up in Belgium and currently living here - this is absolute speculation and b*llocks. For starters, the vast majority, i.e. 90%+ do not have electronic cards yet, not to speak of the rather large expat community in Brussels who have a separate residence card. So to start talking about integrating a national, governmenr funded system with a commercial enterprise is complete and utter c*ap. This will not happen within the forseable future - enough said. Gates - if you seriously think your comments will go anywhere, get real. What a load of horse sh*t!
Microsoft should soon be making this technology available worldwide with model 666.
I've got mod points but damned if I can't find the "+1 for effort, -1 for originality" option. Oh well.
You mean now I can't send paedophiles to distant places and waste hours of their time anymore?
There are better ways to conclude that some people don't like Bill. Pie throwers like throwing pies at people who act important, and who think they're important. Or something like that. It's an exciting hobby. An extreme sport.
They probably have wet dreams about smacking a pie in Bush's face, and surviving it.
You are right - there is no 'Belgian' race, no 'real' native Belgians. There are indeed few European countries who do.
;).
However. It doesn't take a lot to create some kind of 'national' feeling (as in: "I am Belgian"). I would call everybody who has a few generations of history in Belgium, speaks the language and has some feeling about the football team and the Dutch or French (depending in which part you live) a 'native' Belgian for that matter...
Most people have the Rijksregisternummer on the back of their ID card already. You could ask to not to have it there, but I don't know many who did that.
As far as I'm aware, the number is on the chip itself, not on the card, so I guess the card readers have some restrictions to prevent who can read your rijksregisternummer (for example, only government offices could do so)...
I would love to see the UK leave the EU. They are nothing but a bunch of american ass-lickers. But hey, you guys begged on your bare knees to be able to join the EU. You were scared as shit to be left out.
At the bottom of this page http://www.belgium.be/eportal/application?origin=s earchResults.jsp&event=bea.portal.framework.intern al.refresh&pageid=contentPage&docId=6418[www.belgi um.be] there are a bunch of links to Programmers Guides, Chip contents, how to configure web servers/browsers and source code to the (Windows) middleware.
you only use it once.
it's gpl!
start coding on that jabber thing...
also include it in gaim, kopete, and even in kmail, evolution, etc..
i'd love to see it implemented and released in an open source application before ms updates it's msn messenger
Besides, I thought that the Dutch where the largest immigrant group in Belgium, followed by the Turks or the Moroccans.
Yeah, and that Eburonic part (Limburg) has probably one of the largest mixed populations of Belgium. All descendants of foreign coal mine workers.
My adjutant in the army was from that part. His father was an Italian, but he spoke a Limburg dialect of Dutch/German that neither Dutch speaking nor German speaking people could understand.
Sorry, I don`t belong to the silent majority. If this would have been satire or funny, then that's a different story, but it`s not, so I give my opinion on his comments. Naive? Maybe. Conscious-clearing? Sure. Effective? Doubtfull. The right thing to do? Absolutely.
With great power comes great electricity bills.
If you're really fast, it could be done in time for presenting at FOSDEM in Brussels :P.
You do realize that everything you've said is just crap perpetuated by British tabloids? It's gotten so bad that the EU has had to put a website for debunking these myths. Guess what, almost all of them are from the UK:
See this site.
Well, I am Belgian too and got to say I do not like a private company known not to be able to protect their own products to be making our PRIVATE ID cards containing our private information.
Next to that, it shouldn't be a verification for MSN services; rather the ID card should be having the ability to have a system like "adultpass", which should be ran by the government; to protect minors from entering the Belgian MSN chatsites. This to protect our data from hacks later on.
Currently no-one can have my information; because it is fully private: my "staatsregisternummer" (in english this is the state registration number, based on your birthdate and a random number) and my identity card number will never get read except by health-services, my bank and the cops/government. Very sometimes when someone asks a copy of my identity card I give my drivers license because I do not like to give all my information to a company; which I do not know what they DO with that information afterwards.
I don't want that number to travel over the Internet or to be used in MSN or Passport. Sure not with the reputation of their security.
Currently we got a SIS card, which contains information required by our health services to be paid back a huge amount of our costs; why should Microsoft be able, to access these records, as private company? Since that SIS card (with smart chip) will probably be thrown out whenever this eID comes out...
It's a good thing this eID is coming, but I find it a very bad thing it will be centralized and depending on Microsoft; They simply do not have my trust.
--- I am known for the ones who want to find me on the net. Is that a privacy risk or a privilege? One might wonder..
I consider myself something of a patriot - I love my country and I want to work to make it greater than it is today. I don't think that our constitution is an inviolate document. Men made it, and men can unmake it, or make it again. As constitutions go it is pretty good but it could be rewritten to make it a bit more clear, particular some of the amendments. Like, WTF does "well-regulated" mean WRT militias?
"You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
In my experience, even when people ask NOT to print the RRN on the card, they still do.
And some more bad news. The RRN is not just on the chip, but it is part of the public key certificate.
So every time you use the E-id to authenticate yourself or to sign something, you have to pass along the public key certificate, which includes your RRN.
And I thought supermarket loyalty cards were bad!
Someone told me the use of the a unique identification number for people is against the constitution in Germany. So, hopefully the EU will harmonize e-id's in the future and make sure no unique identification number is used on it. The German constitutional court wouldn't look kindly on the whole thing otherwise. A serial number may be necessary, but that doesn't mean it should be the RRN.