• No results found

PRIME. Privacy and Identity Management for Everyone/Europe. Thomas Gross (IBM Research) with a PRIME hat on.

N/A
N/A
Protected

Academic year: 2021

Share "PRIME. Privacy and Identity Management for Everyone/Europe. Thomas Gross (IBM Research) with a PRIME hat on."

Copied!
19
0
0

Loading.... (view fulltext now)

Full text

(1)

PRIME – Privacy & Identity Management for Europe

www.prime-project.eu

PRIME

Privacy and Identity Management

for Everyone/Europe

Thomas Gross

(IBM Research)

with a PRIME hat on

(2)

2 PRIME: Privacy and Identity Management for Europe

The PRIME project receives research funding from the Community’s

Sixth Framework Programme and the Swiss Federal Office for

Education and Science.

Integrated Project in the Information Society Technologies Priority

Duration: 4 years (March 2004 – February 2008)

Budget: M€ 18 (M€ 10 granted EC contribution, M€ 1 Swiss contr.)

Number of Partners: 20

Reference Group

(3)

IBM Belgium, B

IBM Zürich Research Lab, CH

Unabhängiges Landeszentrum für

Datenschutz, D

Technische Universität Dresden, D

Katholieke Universiteit Leuven, B

Universiteit van Tilburg, NL

Hewlett-Packard, UK

Karlstads Universitet, S

JRC / IPSC Ispra, I

Università di Milano, I

Centre National de la Recherche

Scientifique / LAAS, F

Johann Wolfgang Goethe-Universität

Frankfurt am Main, D

Chaum LLC, USA

RWTH Aachen, D

Institut EURECOM, F

Erasmus Universiteit Rotterdam, NL

Fondazione Centro San Raffaele

del Monte Tabor, I

Deutsche Lufthansa, D

Swisscom, CH

T-Mobile, D

Object 20

(4)

4 PRIME: Privacy and Identity Management for Europe

(5)

Vision:

In the Information

Society,

users

can act and

interact in a

safe and

secure

way while retaining

control

of their

private

sphere

.

Goal:

Empower the user

to manage and protect her

private data effectively.

(6)

6 PRIME: Privacy and Identity Management for Europe

PRIME's Objectives

Advance the state-of-the-art in

privacy-enhancing identity

management

Demonstrate how to

embed (European) privacy laws

and

regulations into technology

Empower individuals

to effectively realise their right to privacy and

informational self-determination

→ Development of real-world tools and solutions for identity management

Legal, Social, Economic Framework

Architecture and middleware prototype incl. Identity Mixer

→ Demonstrator for 3 real-world applications

eLearning (Anonymous Learning, Roles, Certificates)

Location based Services (Policies)

(7)
(8)

8 PRIME: Privacy and Identity Management for Europe

Privacy needs an Integrated Approach

Legal, social, economic requirements

Roles and responsibility of different stakeholders

Individuals (users, data subjects)

User & Consumer associations

Policy Makers, Parlamentarians

Privacy Commissioners

Research Communities

Data processors

Service providers, Operators

Standardisation Organisations

System developers and designers

Business and industry organisations,

Trade Unions

Law enforcement organisations

Media

(9)

Design must start from maximum privacy

Anonymous & secure communication

No transaction linking by default

Privacy friendly business processes

Sometimes special crypto application (voting, etc)

Explicit privacy rules govern system usage

Explicitly set the rules

Explicitly set the per role settings

Privacy rules must be enforced, not just stated

Privacy enforcement must be trustworthy

Privacy must be usable

Users need tool support for IDM

Tools must be

easy to use

(good HCI)

(10)

10 PRIME: Privacy and Identity Management for Europe

(11)

Identity Mixer: Superior Privacy Protection…

Citizen holds ID Card with

idemix

private certificates.

Vendor may have simple policies

“age > 21”…

ID Card generates

new

token from

the original private certificate.

Proves “age > 21 according to ID

Card” ...

Important: new token valid under

public key of the Gov Citizen CA!

Gov Citizen CA

Issuer

Proof:

“My ID Card states:

I’m older than 21.”

Policy:

Must be

older than 21.

Citizen

Vendor

Idemix-enabled

ID Card

Identity file:

Date of birth = 1980/12/01

Unique ID = 123456…

Address file

Age > 21

offline

(12)

12 PRIME: Privacy and Identity Management for Europe

Identity Mixer: Strong Privacy Protection…

Citizen holds ID Card with

idemix

private certificates.

Vendor may have simple policies

“age > 21” or complex formulas

(opinion poll)

ID Card generates

new

token from

the original private certificate.

Proves complete logical formula

over arbitrary attributes.

Important:

Unlinkability implies strong

privacy protection for honest

citizens!

Policy:

Must be

older than 21.

Citizen

Vendor

offline

Policy:

Must be

older than 18

AND

Live in Brussels

AND

not used poll yet.

Opinion Poll

Proof:

“My ID Card states:

I’m older than 18

AND

live in Brussels

AND

I have not attended this poll yet.”

Transactions

Unlinkable

Complex formula

Gov Citizen CA

Issuer

(13)

Identity Mixer: … AND Strong Security

Citizen may be offline after

transaction.

In case of disputes or fraud,

anonymity of perpetrators can be

easily revoked by authorities.

Proof token contains unique ID

(e.g., SSN number, strongly

encrypted):

only readable by authorities.

Important:

honest citizens stay

anonymous whereas fraudulent

individuals are easily caught.

Citizen

Policy:

Must be

older than 18

AND

live in Brussels

AND

not used poll yet.

Opinion Poll

offline

Dispute?

Fraud?

Legal

TTP

Verifiable

encryption

of unique ID

Gov Citizen CA

Issuer

Anonymity revocation

with encrypted RRN

number.

(14)

14 PRIME: Privacy and Identity Management for Europe

Partial Identities with Identity Mixer

(15)

Partial Identities with Identity Mixer

Single Secret Key

(16)

16 PRIME: Privacy and Identity Management for Europe

Partial Identities with Identity Mixer

Single Secret Key

Different IDs/Pseudonyms

Credentials on different nyms

(e.g., identity on ID Card)

(17)

Partial Identities with Identity Mixer

Single Secret Key

Different IDs/Pseudonyms

Credentials on different nyms

(e.g., identity on ID Card)

Controlled Release of

Attributes (e.g., age>21)

Enable Accountability &

Anonymity

(18)

18 PRIME: Privacy and Identity Management for Europe

Conclusions

Identity management with strong privacy protection

is emerging significantly.

Open standards are vital for enabling collaboration

between all stakeholders and organizations.

Do promote pseudonyms, partial identities, and

controlled attribute release.

(19)

Contact Information

Public Web Site

www.prime-project.eu

Speaker at OECD IdM Workshop

Thomas Gross (ZRL)

[email protected]

Project Management & Coordination

Eric Goderniaux (Brussels)

References

Related documents

Original or certified copy of birth certificate, social security card, student’s school picture ID and Certificate of Successful Completion in sealed envelope with completed

As this thesis deals with the effect of integrated informa- tion systems on process performance within management ac- counting, it is very interesting to observe the total effects of

Records document the changing nature of the Speakers’ Bureau from the constitution and meeting minutes of the 1950s and 1960s, to policy regulation and programs for speakers

Subject Comprehensive pension Executive insurance Benefits and severance-pay provident funds For employee For self-employ ed For controlling principal For employee For self-employ

Thankfully, just as advancements in ID card technologies and solutions have enabled affordable yet vast improvements in campus safety, connectivity, and efficiency, the latest

sweeteners [lugduname, carrelame, sucrononate, sucrooctate] and to other miscellaneous artificial sweeteners tested [magapame, sucralose, NHDHC

We propose an integrated and holistic approach for harnessing bioenergy potential, also facilitating interactive cross-sectoral collaboration among stakeholders, favoring synergies

The graphic loop was then able to render the correct position of the particle on the screen and feeling the force from the haptic device.. This process is shown in