[EMAIL PROTECTED] wrote: > Tim Churches wrote .. > > >>The correct body is the medical registration board in each >>State, or its equivalent for nurses (the Nursing Registration Boatd and >>teh Allied Health Professional Registration Board in NSW, probably the >>same in other States). >> >>These Boards already know who you are and they have a duty and great >>interest in weeding out people who fraudulently claim an identity. These >>Boards ought to act as Registration Authorities for each and every one >>of their registrants, as a matter of course. The Certificate Authority >>can be a separate body, even a private-sector one, so the Boards actauly >>need minimal extra technical capacity - all they are doing is vouching >>for the identity of their registrants. Naturally the system should bind >>user generated certifictaes as well as generate certs for users whoc >>don't wish to generate their own. The CA should publish the public certs >>in a publicly-availale LDAP directory as HeSA does. >> > > Without degrading from this comment, I was wishing that my Registration > card had a photo on it, after forgetting to tell a third party booking > me on aeroplane flights that it should be done in another name. Well, > shouldn't registration documents have a photo? Many female docs are like > me and their up to date photo IDs are in their alternate name. No effort > to add a PKI cert. I could send one up with my photo for them to > catalogue.
Yes indeed. Not only that, the X.509 PKI standards allow your photograp and alternative names to be embedded in the signed certificate. Of course, the check-in desk at teh airport won't know what to do with your certificate on your USB memory key, so you still need a physical copy of it which looks like it is authorative. As an aside, who has used the automated check-in facilties for domestic flights which Qantas (and possibly other airlines) now offer (perhaps only with corporate bookings, don't know)? They send you a 6 character alphanumeric ticket code in an unencrypted PDF with your flight details via unencrypted email. When you get to the terminal, you walk up to the little automated check-in kiosk, enter the code and it gives you you boarding pass(es). But if you've forgotten your code, you can still get you pass by entering your flight number and name... At no stage does anyone or anything ask to see any form of ID. Rather curious, I thought. Tim C _______________________________________________ Gpcg_talk mailing list [email protected] http://ozdocit.org/cgi-bin/mailman/listinfo/gpcg_talk
