I never said the system is perfect or totally secure, it is merely an extension of current physical identity and signatory functions to electronic medium in such way that they have the same legal effect. Once again: (1) secure and reliable authentication and (2) signatory functions.
Think of it as a passport and pen-and-ink signature. Your passport can be stolen and used fraudulently and your signature can be faked quite easily. Just as you could be physically tortured to sign some documents, just as well you could be tortured to reveal your PIN and then use your eID card to sign them afterwards. Just as in the former case any court will rule your signature invalid, and the same applies in the latter case when document is signed electronically.
In the same good old physical world, the government still tracks your activities when communicating with public sector organizations, when you fill your tax declarations, fill out forms, etc. The information of course will be logged when you knowingly choose to authenticate yourself electronically - no principal difference here.
I never mentioned that the card is also used for shopping and not even close to also enlisting the items bought. Currently if you use any credit card, the shop already knows your name and what you bought - so nothing changes here. If you are paranoid - use cash. Period.
So nothing really changes in principle, just the way how transactions are done.
(this is a repost comment, but should answer some of your questions I hope)
Electronic ID card primariliy is a means to reliably authenticate anyone in electronic communication just like a passport in physical world.
Secondly, it is also a means to electronically sign documents as a replacement for physical pen-and-ink signatures.
It is based on public key cryptography, and private keys are generated on tamper-resistant smart-card and never leave the card (by smart card design). Governmet issues a certificate (signed by gov. CA) that confirm your identity and association with your private key (your public key is included in certificate). The microchip on the card provides functions that enable use of private keys such as signing hashes, etc (but never retrieval).
The authentication and signature functions are seperated and protected by different PIN numbers (or biometric data).
As a result, a variety of services can be put online that could never be possible without a _highly reliable_ means of authentication of individuals. Examples are government services: tax declarations, access to state registers, communication with government, e-voting, etc.
Using signatory function you could prepare and sign contracts, submit formal applications and sign them elecronically. It will provide such assurances as non-repudiation, integrity (nobody can claim that you didn't sign it and your signature is automatically invalidated if document integrity is compromised). And by law, public sector organizations are obliged to accept such documents.
If the card gets lost or stolen, the certificates are blacklisted and as a result access to online services is blocked. Certification service provider also provides a means to verify if such and such certificate was valid at certain time. Time-stamping services are also possible.
If you think about it, nobody forces you to use it, but once implemented and opportunities appear, the possibilities are endless. Your identity is protected by PIN codes and without your consent, the information available (and collectable) is very limited.
Sure, it might be a bumpy road in the begining, especially because the average user probably does not realize the importance of actually protecting his online identity, but once technology matures, users get educated and more services appear, life will become much more easier.
And imagine time saved when dealing with, for example, governmental institutions - no standing in lines to fill out some form or fill in tax declarations, etc. And it is cost and time benefits are realized on the other end too - if e.g. tax declarations are submitted electronically then nobody needs to go over each and every one and retype to get them into database for later processing. It could be done automatically.
Actually, i'm writing b.sc. thesis regarding impelmentation of electronic identity and signature in Latvia - so anyone has valuable comments, please don't hesitate to contact me:) rem[at]fabrika[dot]lv
You might want to check out Estonia, which has implemented the eID project and they have issued some 700,000 ID cards with electronic functions on them. Pretty impressive.
Electronic ID card primariliy is a means to reliably authenticate anyone in electronic communication just like a passport in physical world.
Secondly, it is also a means to electronically sign documents as a replacement for physical pen-and-ink signatures.
It is based on public key cryptography, and private keys are generated on tamper-resistant smart-card and never leave the card (by smart card design). Governmet issues a certificate (signed by gov. CA) that confirm your identity and association with your private key (your public key is included in certificate). The microchip on the card provides functions that enable use of private keys such as signing hashes, etc (but never retrieval).
The authentication and signature functions are seperated and protected by different PIN numbers (or biometric data).
As a result, a variety of services can be put online that could never be possible without a _highly reliable_ means of authentication of individuals. Examples are government services: tax declarations, access to state registers, communication with government, e-voting, etc.
Using signatory function you could prepare and sign contracts, submit formal applications and sign them elecronically. It will provide such assurances as non-repudiation, integrity (nobody can claim that you didn't sign it and your signature is automatically invalidated if document integrity is compromised). And by law, public sector organizations are obliged to accept such documents.
If the card gets lost or stolen, the certificates are blacklisted and as a result access to online services is blocked. Certification service provider also provides a means to verify if such and such certificate was valid at certain time. Time-stamping services are also possible.
If you think about it, nobody forces you to use it, but once implemented and opportunities appear, the possibilities are endless. Your identity is protected by PIN codes and without your consent, the information available (and collectable) is very limited.
Sure, it might be a bumpy road in the begining, especially because the average user probably does not realize the importance of actually protecting his online identity, but once technology matures, users get educated and more services appear, life will become much more easier.
And imagine time saved when dealing with, for example, governmental institutions - no standing in lines to fill out some form or fill in tax declarations, etc. And it is cost and time benefits are realized on the other end too - if e.g. tax declarations are submitted electronically then nobody needs to go over each and every one and retype to get them into database for later processing. It could be done automatically.
Actually, i'm writing b.sc. thesis regarding impelmentation of electronic identity and signature in Latvia - so anyone has valuable comments, please don't hesitate to contact me:) rem[at]fabrika[dot]lv
You might want to check out Estonia, which has implemented the eID project and they have issued some 700,000 ID cards with electronic functions on them. Pretty impressive.
Fallout2 definitely. I can't think of anything else that would have made me stay up all night, sometimes even 17hrs in a row..:) And I don't play games so much (besides Fallout).
Then last week, they basically send an e-mail saying that they didn't care if we downloaded stuff, as long as we didn't upload stuff.
That's even worse. That would only decrease usability of P2P networks and users' ability to find quality content, therefore damaging the network as a whole..
Slashdot Mirror
Does it support HDMI CEC? I would love this as a HTPC, with XBMC/Plex client
try http://www.giveboobs.com/ - it still produces a pop-up even if you do all those things!
You are totally missing the point.
I never said the system is perfect or totally secure, it is merely an extension of current physical identity and signatory functions to electronic medium in such way that they have the same legal effect. Once again: (1) secure and reliable authentication and (2) signatory functions.
Think of it as a passport and pen-and-ink signature. Your passport can be stolen and used fraudulently and your signature can be faked quite easily. Just as you could be physically tortured to sign some documents, just as well you could be tortured to reveal your PIN and then use your eID card to sign them afterwards. Just as in the former case any court will rule your signature invalid, and the same applies in the latter case when document is signed electronically.
In the same good old physical world, the government still tracks your activities when communicating with public sector organizations, when you fill your tax declarations, fill out forms, etc. The information of course will be logged when you knowingly choose to authenticate yourself electronically - no principal difference here.
I never mentioned that the card is also used for shopping and not even close to also enlisting the items bought. Currently if you use any credit card, the shop already knows your name and what you bought - so nothing changes here. If you are paranoid - use cash. Period.
So nothing really changes in principle, just the way how transactions are done.
(this is a repost comment, but should answer some of your questions I hope)
:) rem[at]fabrika[dot]lv
Electronic ID card primariliy is a means to reliably authenticate anyone in electronic communication just like a passport in physical world.
Secondly, it is also a means to electronically sign documents as a replacement for physical pen-and-ink signatures.
It is based on public key cryptography, and private keys are generated on tamper-resistant smart-card and never leave the card (by smart card design). Governmet issues a certificate (signed by gov. CA) that confirm your identity and association with your private key (your public key is included in certificate). The microchip on the card provides functions that enable use of private keys such as signing hashes, etc (but never retrieval).
The authentication and signature functions are seperated and protected by different PIN numbers (or biometric data).
As a result, a variety of services can be put online that could never be possible without a _highly reliable_ means of authentication of individuals. Examples are government services: tax declarations, access to state registers, communication with government, e-voting, etc.
Using signatory function you could prepare and sign contracts, submit formal applications and sign them elecronically. It will provide such assurances as non-repudiation, integrity (nobody can claim that you didn't sign it and your signature is automatically invalidated if document integrity is compromised). And by law, public sector organizations are obliged to accept such documents.
If the card gets lost or stolen, the certificates are blacklisted and as a result access to online services is blocked. Certification service provider also provides a means to verify if such and such certificate was valid at certain time. Time-stamping services are also possible.
If you think about it, nobody forces you to use it, but once implemented and opportunities appear, the possibilities are endless. Your identity is protected by PIN codes and without your consent, the information available (and collectable) is very limited.
Sure, it might be a bumpy road in the begining, especially because the average user probably does not realize the importance of actually protecting his online identity, but once technology matures, users get educated and more services appear, life will become much more easier.
And imagine time saved when dealing with, for example, governmental institutions - no standing in lines to fill out some form or fill in tax declarations, etc. And it is cost and time benefits are realized on the other end too - if e.g. tax declarations are submitted electronically then nobody needs to go over each and every one and retype to get them into database for later processing. It could be done automatically.
Actually, i'm writing b.sc. thesis regarding impelmentation of electronic identity and signature in Latvia - so anyone has valuable comments, please don't hesitate to contact me
You might want to check out Estonia, which has implemented the eID project and they have issued some 700,000 ID cards with electronic functions on them. Pretty impressive.
Electronic ID card primariliy is a means to reliably authenticate anyone in electronic communication just like a passport in physical world.
:) rem[at]fabrika[dot]lv
Secondly, it is also a means to electronically sign documents as a replacement for physical pen-and-ink signatures.
It is based on public key cryptography, and private keys are generated on tamper-resistant smart-card and never leave the card (by smart card design). Governmet issues a certificate (signed by gov. CA) that confirm your identity and association with your private key (your public key is included in certificate). The microchip on the card provides functions that enable use of private keys such as signing hashes, etc (but never retrieval).
The authentication and signature functions are seperated and protected by different PIN numbers (or biometric data).
As a result, a variety of services can be put online that could never be possible without a _highly reliable_ means of authentication of individuals. Examples are government services: tax declarations, access to state registers, communication with government, e-voting, etc.
Using signatory function you could prepare and sign contracts, submit formal applications and sign them elecronically. It will provide such assurances as non-repudiation, integrity (nobody can claim that you didn't sign it and your signature is automatically invalidated if document integrity is compromised). And by law, public sector organizations are obliged to accept such documents.
If the card gets lost or stolen, the certificates are blacklisted and as a result access to online services is blocked. Certification service provider also provides a means to verify if such and such certificate was valid at certain time. Time-stamping services are also possible.
If you think about it, nobody forces you to use it, but once implemented and opportunities appear, the possibilities are endless. Your identity is protected by PIN codes and without your consent, the information available (and collectable) is very limited.
Sure, it might be a bumpy road in the begining, especially because the average user probably does not realize the importance of actually protecting his online identity, but once technology matures, users get educated and more services appear, life will become much more easier.
And imagine time saved when dealing with, for example, governmental institutions - no standing in lines to fill out some form or fill in tax declarations, etc. And it is cost and time benefits are realized on the other end too - if e.g. tax declarations are submitted electronically then nobody needs to go over each and every one and retype to get them into database for later processing. It could be done automatically.
Actually, i'm writing b.sc. thesis regarding impelmentation of electronic identity and signature in Latvia - so anyone has valuable comments, please don't hesitate to contact me
You might want to check out Estonia, which has implemented the eID project and they have issued some 700,000 ID cards with electronic functions on them. Pretty impressive.
IBM ThinkPads have back and forward keys (located left and right to the Arrow-Up key)
You speak as if 'factual errors' in Bowling for Columbine was something obvious and self-evient. Care to elaborate?
How does it stack up against this?
It does basically nothing except spreading, and, how sweeet of him, it will stop spreading on July 14th.
mmmm... spreading..
Fallout2 definitely. I can't think of anything else that would have made me stay up all night, sometimes even 17hrs in a row.. :) And I don't play games so much (besides Fallout).
story on march 8
walmart.com
next on slashdot - tasteless food!
so where can i download it? :)
stupid riaa hippies - there is no link on their homepage..
Then last week, they basically send an e-mail saying that they didn't care if we downloaded stuff, as long as we didn't upload stuff.
That's even worse. That would only decrease usability of P2P networks and users' ability to find quality content, therefore damaging the network as a whole..
Quick! A giant meteor is speeding towards the earth! Send Bruce Willis and a couple of Oil drillers to save the world!! Don't forget Liv Tyler!