> Contrary to systems such as the German one this identity system actually has a working upgrade and revokation path.
Systems without this are even more broken, but this is hardly the main problem.
The problem is that with a system like this, if you can compromise one person, you can compromise them totally. You compromise every part of their life that uses this system instead of just one when it's isolated from the others.
And if you can compromise that system itself, even temporarily, you can compromise everyone that comprehensively at once. Everyone's health records, stolen. Bank accounts drained. Trade secrets published or sold to foreign competitors.
Canceling their credentials after the fact doesn't undo all the damage.
> These private keys are not isolated from your identity. You receive them from government institutions that use the exist physical identity infrastructure.
In most cases this is a liability rather than an asset. It's only useful if you for some reason need to prove your physical government identity, e.g. so you can vote. But those few things can use the same process you use to bootstrap into this identity system to begin with.
If all you want to do is sign into a website or acquire a book or a contraceptive or travel, having that tied to your government identity is bad.
Systems without this are even more broken, but this is hardly the main problem.
The problem is that with a system like this, if you can compromise one person, you can compromise them totally. You compromise every part of their life that uses this system instead of just one when it's isolated from the others.
And if you can compromise that system itself, even temporarily, you can compromise everyone that comprehensively at once. Everyone's health records, stolen. Bank accounts drained. Trade secrets published or sold to foreign competitors.
Canceling their credentials after the fact doesn't undo all the damage.
> These private keys are not isolated from your identity. You receive them from government institutions that use the exist physical identity infrastructure.
In most cases this is a liability rather than an asset. It's only useful if you for some reason need to prove your physical government identity, e.g. so you can vote. But those few things can use the same process you use to bootstrap into this identity system to begin with.
If all you want to do is sign into a website or acquire a book or a contraceptive or travel, having that tied to your government identity is bad.