THE US Commerce Department has unveiled a plan for a national cyber-identity system that gives consumers a single secure password and identity for all their digital transactions. FOX News reports the National Strategy for Trusted Identities in Cyberspace (NSTIC) will be a voluntary system designed to protect consumers from online fraud and identity theft - which hit 8.1 million people in the US last year, at a total cost of $27 billion.
The problem? The current system of half-remembered passwords jotted down on Post-it notes and based on pets and maiden names simply isn't good enough.
"Passwords just won't cut it here," said Commerce Secretary Gary Locke, who announced the initiative at the US Chamber of Commerce.
"We must do more to help consumers protect themselves, and we must make it more convenient than remembering dozens of passwords," he said.
The "identity ecosystem" will create secure online IDs for Americans who elect to join the program.
Instead of having to remember all those disparate passwords, a consumer would use a "single credential" to log in, with far more security than a password alone would provide, the agency said.
That log in could be anything: a smart card, a cell phone, a keychain fob, or some other type of gizmo.
And if a user so chooses, they can elect to have several log-ins from different credential providers.
Want a key fob from Google and cell phone software from Verisign? Go for it, both will work - though having two would reduce the simplicity factor, of course.


SOURCE (http://www.news.com.au/breaking-news/sick-of-remembering-all-your-online-passwords-let-the-white-house-manage-it-for-you/story-e6frfku0-1226040173034)

Yeah, like I would trust the White House to do that. :har:

Yeah, it must be very convenient for the state to track and link a single person's activities more easier that way. That Big Brother likes it that way, I can easily imagine!

You are a number you will obey, you are at risk from cybermen...Oops I mean cyber criminals, they want all your info. We will protect you in the name of security, you will be safe with us. :stare:

I just read the 40 page NSTIC draft conops.

1. This would be very hard to implement and would require the cooperation of entities not known for their cooperation.
2. There are no incentives for businesses and individuals to use this service
3. It seems, to me, to increase the risk of ID theft than to decrease it.

When I read stuff like this, I am reminded of my favourite quote from LBJ

One does not evaluate a policy based on the good it can do if properly administrated. One evaluates a policy on the potential harm it can do if improperly administered.

The "risks" of this solution is not proportionate to the "risks" of the problem

you know, this idea really isn't bad
the process itself has already been done for many years:http://en.wikipedia.org/wiki/Key_escrow

I'll let them manage my subsim account, my facebook account etc

and for that aes encrypted container on my hard drive, I will just simply not give them the key

you know, this idea really isn't bad
the process itself has already been done for many years:http://en.wikipedia.org/wiki/Key_escrow

I'll let them manage my subsim account, my facebook account etc

and for that aes encrypted container on my hard drive, I will just simply not give them the key

LOL...precisely.

Yeah, it must be very convenient for the state to track and link a single person's activities more easier that way.

That would never happen, I'm fairly sure it's all about safety...

They just want to protect us from ourselves! :haha:

Ok, passwords are one thing. Your IP adress is another.

And if "they" want, they do know your IP-adress (your provider will give it to them), and with that they know everything you do, on the internet - and not only that. Forums, passwords, money transactions, social contacts, friendships, dislikes, Facebook etc. - all those info scraping already provides "them" with a good profile of you.
This password thingie is imho just a distraction. :yep:

Greetings,
Catfish

Ok, passwords are one thing. Your IP adress is another.

And if "they" want, they do know your IP-adress (your provider will give it to them), and with that they know everything you do, on the internet - and not only that. Forums, passwords, money transactions, social contacts, friendships, dislikes, Facebook etc. - all those info scraping already provides "them" with a good profile of you.
This password thingie is imho just a distraction. :yep:

Greetings,
Catfish


I agree with that.
There is no privacy on Internet.
You want privacy-don't use internet.

I agree with that.
There is no privacy on Internet.
You want privacy-don't use internet.

If only more people understood this. I am still shocked at what The Frau's kids and her friends put on their FB sites. But they are young and don't know how such thing can come back and byte them on the butt.

Of course there are adults who do the same thing too. :damn: