Category Archives: Talks & Conferences

MIT’s online forum on the Real ID Act is underway. In an attempt to stir a little controversy, I just posted the following under the title ‘Consensus and Controversy’, which I reprint here for those not following along. While you’re welcome to comment here too, I urge those interested to Join the Real ID forum discussion.

Here are a few propositions that I think might form a basis for
going forward in reasoned debate.  (I of course welcome debate on
the accuracy of these propositions as well as the conclusions that
might flow from them)

Base propositions:

1.  A national ID is not the magic bullet that will make the
country safe from terrorism.   Given the very poor controls
we have on birth certificates at home (not to mention the impossibility
of relying on the quality control foreign credentials) it at most it
creates a speedbump for foreign terrorists who will need to get phony
versions of the credentials used as the basis for issuing the US ID.

2.  A national ID system cannot secure our borders.

3.  A national ID system can, however, assist in making illegal
immigration more unpleasant for immigrants by, for example, making it
more difficult to employ them.   All other things being
equal, this should reduce the incentive for that part of illegal
immigration driven primarily by economic considerations.

4. More generally, a national ID system has some substantial
potential to be the cornerstone of a national fraud-prevention
system.   

5. A national ID system potentially creates new avenues for super-fraud and highly effective identity theft.

6. A national ID system potentially creates new avenues for
governmental dossier creation on all citizens who use the national
ID.  These opportunities exist even if the system is not misused,
and are greater if it is misused.  As Lee Tien put it“‘national ID’ is not a card, but an entire system of databases, information gathering activities, and human beings making fateful
judgments about individuals based on that overall system.”

7.  A National Research Council report (“Who Goes There —
Authentication Through the Lens of Privacy”) noted
this:

Finding 6.5: State-issued driver’s licenses are
a de facto nationwide identity system. They are widely accepted for
transactions that require a  form of government-issued photo
ID.

Real ID substantially increases the likelihood
that driver’s licenses will become a defacto national ID for an even
greater range of offline and online transactions.

8.  The extent to which we reap the costs and benefits listed
above is very sensitive to how the system is actually
implemented.   For example, a well-implemented biometric
identifier makes fraud and identity theft more difficult, but also
makes it more devastating when it happens since people become more
reliant on the ID’s security (and it is hard to grow a new retina).

Am I correct that the above propositions are (in the abstract)
uncontroversial, and the controversy is in fact about how big and how
likely the positive and negative effects are, and how they compare to
each other?

Or, as Dan Combs put it in his contribution,

1. REAlID done right = good

2. RealID done wrong = very bad

3. The bar is high for such a system to be good.

        We aren’t close yet!

I will add the following personal observations, which I suspect might be more controversial than the above:

I.  For any ID system to be implemented competently (let alone in a fashion that inspires trust) supervisory authority must be taken out of the hapless Department of Homeland Security.

II.  For Real ID to be implemented competently it must have
federal funding rather than being left to the states as an unfunded
mandate.

III.  Real ID driver’s licenses are likely to become a de facto
national ID — much more than current driver’s licenses — not just
because of the federal pressure driven by national security needs (or
rhetoric) but also because of commercial pressure from a variety of
industries.

IV. The ID must be transparent — end users must be able to read everything coded on the ID itself. 

V.  If we are going to have a real or de facto national ID
card, all citizens must have a right to review and correct information
held on them in both public and private dossiers linked to the ID.

(For more about what I think, see my paper, The Uneasy Case for National ID Cards.)

I’m going to be participating in the MIT REAL ID online Forum this week, and you’re invited. Here’s the description sent out by co-organizer Daniel Greenwood, Lecturer, MIT Media Lab and Director of the MIT E-Commerce Architecture Program:

Your digital identity and physical identity may be about to merge under a new federal law that requires a standard federally controlled identity card. You are invited to participate in the first Real ID Forum, convened by the MIT Media Lab and MIT E-Commerce Architecture Program. The Real ID Act of 2005, as enacted by Congress and signed by the President, sets up a new federally controlled driver license that can be read by computers according to common national standards. This raises many public policy, technical and business problems and prospects. The act is binding starting in less than three years.

The first forum is on online discussion, facilitated by experts in the relevant fields, and taking place from Monday, September 19th at 3pm Eastern Time through Friday, September 23rd. Is the Real ID going to be a National Identity for the USA? Does it represent the ultimate convergence of physical identity cards and your digital log in? Are the privacy, civil liberties and administrative issues addressed adequately? How should the various competing interests surrounding implementation of the Real ID Act be balanced? These are among the questions that will be addressed in the online Forum. There will also be a face to face meeting, held at the MIT Media Lab in November, 2005. To find out more information and to register for this free program, please see http://ecitizen.mit.edu/realid.html

The tracks and moderators include:

Track 1. Real ID And National Convergence of Physical and Digital Identity (facilitated by Dan Combs, President of Global Identity Solution)

Track 2: The Need for a Secure Driver License (facilitated by Colleen Gilbert, Executive Director, Coalition for a Secure Driver’s License)

Track 3: The Need for Privacy and Civil Liberties (facilitated by Lee Tien, /Senior Staff Attorney, /Electronic Frontier Foundation)

Track 4: Practical Implementation Issues (facilitated by David Lewis, Former CIO, Massachusetts and President of American Association of Motor Vehicle Administrators)

Track 5: Balancing Interests Going Forward (facilitated by Professor Michael Froomkin, University of Miami School of Law)

In addition, there will be a section of the web site called What is Real ID? This is where we’ll house the background information on the Act itself.

While you are encouraged to register and participate from the start of this event, we will be accepting new participants throughout the week. Again, to find out more information and to register for this free program, please see http://ecitizen.mit.edu/realid.html. We sincerely hope you will join us for this important and timely event.

My track won’t actually get under way until Wednesday, but it all promises to be interesting and informative.