BNET UK
silicon.com
ZDNet UK

Home
News
Blogs
Reviews
Videos
Jobs
Resources
Community

Leader
Comment
White Papers
Downloads
Special Reports

Hardware
Software
Communications
Internet
Security
IT Management
Emerging Tech
Leader

Group Blogs
News Blog
Post Room
Rupert's Diary

Hardware Reviews
Software Reviews
Editors' Choice
Buyer's Guides
Tech Guides
Competitions

Dialogue Box
Security threats
Server platforms
Mobile devices
Application development
Full video index

Articles
White Papers
Downloads
Companies
Broadband Speed Test

People
Competitions
Post Room
FAQ

You are here: ZDNet UK > News > Security

Security management Toolkit

EU lacks common ID privacy specs, says agency

Tags:
States,
Privacy,
Eu,
Identity

Tom Espiner ZDNet.co.uk

Published: 05 Feb 2009 18:04 GMT

European Union members lack a co-ordinated strategy on how to protect citizen data linked to ID cards, according to an EU agency.

That lack has hindered the development of interoperability standards that would let each country's authorities work with the electronic identity card (eID) of another, the European Network and Information Security Agency (Enisa) said.

"Privacy is an area where the member states' approaches differ a lot, and European eID will not take off unless we get this right," said Enisa executive director Andrea Pirotti in a statement. "Europe needs to reflect on eID privacy and its role in the interoperability puzzle."

An Enisa spokesperson told ZDNet UK on Thursday: "Member states should get their act together and formulate a strategy on this matter in more detail."

Enisa published a paper outlining its position on Tuesday, in which it evaluated privacy protections in ID card schemes across Europe. For example, the assessment looked at whether the primary data on the card could be changed, which is essential if the data is incorrect. Out of the eleven countries in the EU that have eIDs, only six of them had systems that allowed primary data to be changed.

While the use of electronic identity cards offers opportunities for governments to be more efficient in providing services to citizens, there is the risk that the citizen data collected could be misused, either by criminals or future governments, Enisa said. This is not desirable, it added.

"The fundamental human right to privacy must be guaranteed for all European eID card holders," said Pirotti.

Privacy fears have limited citizen acceptance of the cards, according to Enisa.

The quality of UK data-privacy safeguards could not be evaluated by Enisa, as the UK government has not revealed any specific details about the technology behind its scheme.

While the first UK ID cards have been issued, currently no police stations, border-entry points or job centres have any way of reading the information stored on them, ZDNet UK's sister site, silicon.com, reported on Thursday.

Did you find this article useful?

Share this article:
Digg
Slashdot
Del.ici.ous
Stumble
Reddit

Company/Topic Alerts

Create a new alert from the list below:

ID cards

Related Jobs

EDS Engineer

Senior Print and Digital Designer

Contracts and Pricing Manager Microgeneration Renewable Energy

Related BlackBerry Resources

Protecting the BlackBerry Device Platform Against Malware

BlackBerry Devices with Bluetooth - Security Overview

BlackBerry Enterprise Server IT Policy

BlackBerry Enterprise Solution - Security Technical Overview

BlackBerry Enterprise Solution and RSA SecurID

CIO's Guide to Mobile Security

See All White Papers

Video

Install Flash Player plugin

Find out more: Microsoft exec outlines...

All videos
Most popular videos
Latest videos

Featured Talkback

In association with Network Liberation Movement

It seems to me this is a burden being placed on the wrong shoulders. There is not an It system in the world that can stop an individual taking information in their heads and spewing out at the nearest undesirable third party.