- CNET NETWORKS UK BUSINESS SITES:
- atlarge.com
- BNET UK
- silicon.com
- SmartPlanet.com
- ZDNet.co.uk
Except there isn't actually a database, or ID cards, yet…
By Andy McCue
Published: 15 March 2004 11:30 GMT
Security experts have begun work on threat and vulnerability tests to ensure that the National Identity Register database, which will form the basis of the UK's controversial ID card scheme, is secure from hack attacks and unauthorised internal access.
The threat assessment is being undertaken despite the fact the specifications and design of the database and its security features have not yet been established. No decision has been taken on the nature of the biometrics to be used on the ID card itself, which has not been passed by Parliament.
Home Office minister Beverley Hughes revealed the progress on the ID card scheme in an answer to a Parliamentary Question last week.
"The security and integrity of the database are integral to maintaining trust in the Identity Cards scheme," she said. "Home Office officials are already working with security experts, to ensure that security issues are considered from the start of the database design, and with other government departments which have similar databases with similar security needs, such as the United Kingdom Passport Service."
Hughes said there will be further public and stakeholder consultation on ID cards after the results of the UKPS' six-month trial, which is due to begin this month, that will test the recording and verification of facial, iris and fingerprint biometrics using 10,000 volunteers.
Questions have also been raised about problems authenticating identity in some categories of individuals who have a higher failure rate with certain biometrics.
Hughes said: "One of the specific objectives of the UKPS pilot is to test biometric enrolment on a sample of people who may have difficulties with enrolment. Data gained from this pilot will inform the design of the Identity Card scheme's enrolment processes and procedures for enrolling those unable to provide certain biometrics."
On the issue of 'scope creep' and the possibility that the National Identity Register could end up being used for more than just ID, Hughes said organisations querying the register will not be able to get other personal information such as health or tax records.
It sounds like they are doing the risk assessment ...
Anonymous
Passport database
So if there is already a secure...
Allan McBain
Big Brother, Orwell you were 20 years too soon. bu...
Anonymous
Maybe George Orwell was not 20 years too soon. Per...
Reed Howey
Well here we go!! 0rwell was prety light weight re...
anonymous
Maximo Practice, and in collaboration with sales, customer support, and product development, as well as with client IT owners, business process ...
Our people are technology experts, and use their expertise in everything from devising an initial strategy and developing technology solutions ...
We are looking for experienced consultants with a strong background in HCM transformation who are viewed as subject matter experts in this area, with ...
CIO50 2008
The silicon.com CIO50 2008 profiles the most influential and innovative tech chiefs in the UK across all industries and organisation size, from the biggest FTSE100 companies to high growth dot-com start ups and the public sector. The list was voted on by the UK CIO community and a panel of experts. Find out more in our latest special report.
Live Webcast: Dell EqualLogic PS Series Demonstration for SQL Server Protection and...
Live Demonstration on Aug. 21st: Disaster Recovery with VMware Site Recovery Manager...
Live Event on Aug. 15th: Dell EqualLogic & VMware Infrastructure 3 Product Demonstration
IT Infrastructure Upgrade Helps Financial Firm Improve Productivity, Customer Service
Stories from the web...
Copyright ©1995-2008 CNET Networks, Inc. All rights reserved. Top of page
Digg
Slashdot
Del.ici.ous
Stumble
Reddit
RSS Feeds
Jeremy Hore Beijing Olympic diary: Producing results Sleepless nights paying off?
Naked CIO The Naked CIO: Best backgrounds for CIOs? People from finance need not apply…