Subscribe
|
|
|
|
|
|
|
News

Gov.UK Verify may have severe privacy and security problems

Tuesday 23 June 2015 00:08 CET | News

The governments e-identity system, Gov.UK Verify, has severe privacy and security problems, including a flaw in its architecture that could facilitate mass surveillance.

A paper conducted by a trio of academics at University College London, which examined both Gov.UK Verify and the US Federal Cloud Credential Exchange (FCCX) found them both to be highly flawed.

The researchers claim that FCCX and Gov.UK Verify suffer from serious privacy and security shortcomings, fail to comply with privacy-preserving guidelines they are meant to follow, and may actually degrade user privacy.

The problems start from the identity ecosystem that both Gov.UK Verify and the FCCX are endeavouring to provide. Both schemes provide a hub that actively mediates the communications between different parties in the system.


Free Headlines in your E-mail

Every day we send out a free e-mail with the most important headlines of the last 24 hours.

Subscribe now

Keywords: digital identity, online security, web fraud, personal data, privacy, data protection, US, Gov.UK Verify
Categories: Fraud & Financial Crime
Companies:
Countries: World
This article is part of category

Fraud & Financial Crime

::: more





Industry Events

Free Headlines ::: subscribe now
RSS ::: follow ThePaypers via RSS ::: connect
LinkedIn ::: connect with ThePaypers on LinkedIn ::: connect
Twitter ::: follow ThePaypers on Twitter ::: follow
Facebook ::: like ThePaypers on Facebook ::: like