Australia's new digital ID scheme falls short of global privacy standards. Here's how it can be fixed-web3.0-php.cn

Home

web3.0

Australia's new digital ID scheme falls short of global privacy standards. Here's how it can be fixed

DDD

Oct 30, 2024 am 09:30 AM

AustraliaDigital ID Privacy Standards

The federal government is still developing the system, with a pilot expected to run next year. Known as the “Trust Exchange”, it is part of the Trusted Digital Identity Framework, which is designed to securely verify people’s identities using digital tokens.

Australia's new digital ID scheme falls short of global privacy standards. Here's how it can be fixed

Australia’s federal government is developing a new digital ID system, known as the “Trust Exchange”, which is designed to simplify the way we prove our identities online. The system will work alongside the myID platform, where Australians can store and manage their digital ID documents.

The Trust Exchange is part of the Trusted Digital Identity Framework, which is being developed by the federal government to securely verify people’s identities using digital tokens. The tokens will contain a person’s key digital identity documents, such as their driver’s licence and Medicare card.

When a person wants to access a service, such as banking or applying for a government service, they will be able to use a digital token to prove their identity and share personal information, such as their age, visa status or licence number — without handing over any physical documents or revealing too much personal information.

For example, instead of showing a full driver’s licence to enter a licensed premises, a person will be able to use a digital token that confirms, “Yes, this person is over 18”.

The system is designed to be both secure and convenient. However, it has several privacy issues, especially when compared to international standards like those in the European Union.

The World Wide Web Consortium sets global standards around digital identity management. These standards ensure people only share the minimum required information and retain control over their digital identities without relying on centralised bodies.

The European Union’s digital identity system regulation builds on these standards. It creates a secure, privacy-centric digital identity framework across its member states. It is decentralised, giving users full control over their credentials.

In its proposed form, however, Australia’s digital ID system falls short of these global standards in several key ways.

First, it is a centralised system. Everything will be monitored, managed and stored by a single government agency. This will make it more vulnerable to breaches and diminishes users’ control over their digital identities.

Second, the system does not align with the World Wide Web Consortium’s verifiable credentials standards. These standards are meant to give users full control to selectively disclose personal attributes, such as proof of age, revealing only the minimum personal information needed to access a service.

As a result, the system increases the likelihood of over-disclosure of personal information.

Third, global standards emphasise preventing what’s known as “linkability”. This means users’ interactions with different services remain distinct, and their data isn’t aggregated across multiple platforms.

But the token-based system behind Australia’s digital ID system creates the risk that different service providers could track users across services and potentially profile their behaviours. By comparison, the EU’s system has explicit safeguards to prevent this kind of tracking – unless explicitly authorised by the user.

Finally, Australia’s framework lacks the stringent rules found in the EU which require explicit consent for collecting and processing biometric data, including facial recognition and fingerprint data.

It is crucial the federal government addresses these issues to ensure its digital ID system is successful. Our award-winning research offers a path forward.

The digital ID system should simplify the verification process by automating the selection of an optimal, varied set of credentials for each verification.

This will reduce the risk of user profiling, by preventing a single credential from being overly associated with a particular service. It will also reduce the risk of a person being “singled out” if they are using an obscure credential, such as an overseas drivers licence.

Importantly, it will make the system easier to use.

The system should also be decentralised, similar to the EU’s, giving users control over their digital identities. This reduces the risk of centralised data breaches. It also ensures users are not reliant on a single government agency to manage their credentials.

Australia’s digital ID system is a step in the right direction, offering greater convenience and security for everyday transactions. However, the government must address the gaps in its current framework to ensure this system also balances Australians’ privacy and security.

The above is the detailed content of Australia's new digital ID scheme falls short of global privacy standards. Here's how it can be fixed. For more information, please follow other related articles on the PHP Chinese website!

Statement

The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn

Australia's new digital ID scheme falls short of global privacy standards. Here's how it can be fixedOct 30, 2024 am 09:30 AM

Australia Mandates Crypto Firms to Get Financial LicensesSep 24, 2024 pm 06:05 PM

ASIC commissioner Alan Kirkland...

Tether (USDT) Surpasses Germany and Australia as One of the World's Top Holders of US TreasuriesNov 01, 2024 pm 12:14 PM

Stablecoin Tether (USDT) has just released a new audit regarding the company's year-to-date performance. The audit – performed by third-party auditor “BDO” – highlighted the stablecoin's record-breaking performance in 2024.

Best Bitcoin Wallets in Australia for 2024Aug 15, 2024 am 12:22 AM

Australia's financial market has seen Bitcoin become a major player. As Australians increasingly invest in Bitcoin, the demand for safe and user-friendly Bitcoin wallets has risen dramatically.

Australia to License Digital Asset Service Providers, Turkey Suspends Digital Asset Taxation PlansOct 03, 2024 pm 04:14 PM

Virtual asset service providers (VASPs) in Australia will have to obtain financial services licenses under a new regulatory regime that some in the sector have criticized as ‘ambiguous.’

Australia's Crypto Industry Grapples with Uncertain Regulatory FrameworkSep 12, 2024 pm 12:05 PM

Australia has the third-highest rate of crypto adoption in the world with an influx of products such as Bitcoin ATMs. However, crypto exchanges and operators are concerned about the Australian regulators' laws.

Australians Lose $122 Million to Crypto Scams in 12 Months, Younger Individuals Become Primary TargetsAug 31, 2024 pm 10:06 PM

According to a recent warning by the Australian Federal Police (AFP), Australians have lost up to A$180 million ($122 million) to crypto-related investment scams over the past 12 months.

Circle Expands USDC Stablecoin to Australia in New PartnershipOct 01, 2024 pm 09:46 PM

Circle has solidified a partnership with venture capitalist Mark Carnegie's MHC Digital Group to extend the reach of USDC stablecoin into Australia and the broader