Anders Rundgren wrote: > In Sweden an "e-ID" (which is considered as another thing than physical > IDs), costs nothing for the citizen as it is prepaid and is not a "card". > Issuance is performed on-line from the citizens on-line bank which is > a 2-5 minute procedure.
Well (and we may be able to get closer to the MUSCLE world here), we need to know exactly what is stored on the token when your e-ID is issued, and how it is used. Is a certificate and private key stored on the token? Is there an ISO/IEC 7816 application (applet) loaded? Is the e-ID used only on-line to a server, or are there other ways of using it? Are there hotlists involved? > > A huge difference between a passport and an eIDs is that the former > (as far as I can see), does not really need a PIN-code or a private key > as it is supposed to be used in a situation where the person (=biometrics) > and the ID-information is "matched" using automatic or visual means. > My point about the UK ideas (as far as we can understand a still fluid situation) is that it is suggested that we can have our passport (ICAO spec, I hope), and then we can have our national ID applet loaded AS WELL. This is analagous to taking your passport along when you apply for a bank account (in the e-world they will want you to take an ID applet along, and it will not matter whether it is on a passport, a driving licence, or an out-and-out ID card - indeed, it may get to the situation where they do not trust a passport unless it has the e-ID applet on it as well). > It seems that there are some lose ends here. It is similar to the thing > the banks are trying to pull off: A "combo" of eID and a VISA card. > I believe an "account" and a "person" are two different entities > with entirely different use-cases. But we'll see what happens. I have heard of the banks wanting to do this, but do not know what the content of the token that banks want us to accept as an e-ID is. Of course, the banks may continue to live in their own world and want us to have the e-ID that they issue, while the public sector here in the UK will tell us that we must have their e-ID certificate in their e-ID applet. Is detail of the content on the card that we cannot get a clear view of, certainly when we view it from the UK. Peter _______________________________________________ Muscle mailing list [EMAIL PROTECTED] http://lists.musclecard.com/mailman/listinfo/muscle
