FB pixel

Hold up: 300 say eIDAS rules could make surveillance easier for EU nations

Categories Biometrics News  |  Surveillance
Hold up: 300 say eIDAS rules could make surveillance easier for EU nations
 

Language in proposed revised regulation of eIDAS in the European Union is being loudly rebuffed by 335 individuals and civil society organizations in 32 nations.

In an open letter to the European Parliament and the Council of the EU, signatories argue that articles within the revised eIDAS would open the system to surveillance by rogue governments, and block checks on the security of EU web certificates. They also believe the rules for the European Digital Identity Wallet would enable surveillance by governments and service providers.

A similar statement issued by ten internet infrastructure and security companies says articles 45 and 45a “are likely to weaken the security of the Internet as a whole.” The articles require all web browsers to recognize new site-authentication certificates.

But the passages in question are “imprecise,” they say.

That imprecision could be interpreted as saying that all browsers must recognize the certificate authorities that are appointed by each state to authenticate domain names.

Open letter signatory and University College London Professor of Security Engineering tells Computer Weekly that the offending clause is outside of the regulation’s intended scope of governing digital identity and signatures.

A separate statement issued by Mozilla says that forcing the world to recognize authorities hand-picked by EU nations gives the government of those nations more power to “surveil their citizens by ensuring cryptographic keys under government control can be used to intercept encrypted web traffic across the EU.”

Browsers would be prohibited from revoking trust in the keys unless the relevant government allows them to. And there would be no independent body to check what a government does, according to Mozilla.

Article Topics

 |   |   |   |   | 

Latest Biometrics News

 

Ireland will get mDLs in 2025

There’s a wee delay on mobile driver’s licenses (mDL) in Ireland, but the government is on track for a rollout…

 

Google can depose Texas in biometric data privacy lawsuit after partial appeals win

Google will be allowed to depose Texas as it defends itself in a lawsuit brought by the state, but not…

 

Can digital identity wallets fix the identity theft and AI deepfake fraud problem?

As AI becomes a staple of the fraudster’s toolkit, driving an uptick in identity theft and deepfake fraud, some are…

 

Link EU digital ID wallet to social media accounts to end anonymity: Spanish PM

Social media accounts held in the European Union should be linked to EU Digital Identity Wallets to prevent anonymity, Spanish…

 

Dominican Republic awards contract for 5M biometric passports

The Dominican Republic is set to begin issuing biometric passports in August, president Luis Abinader has announced.  The tender for…

 

Digital transformation of healthcare gathers pace globally

The UAE and Estonia could see cooperation in the digital transformation of healthcare. Riina Sikkut, Estonia’s minister of health, said…

Comments

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Most Viewed This Week

Featured Company

Biometrics Insight, Opinion

Digital ID In-Depth

Biometrics White Papers

Biometrics Events