Digital driver’s licenses: Are they secure enough for us to trust?

States ought to use a privateness by design method as a substitute of making a brand new system to trace purchases and different actions, in response to safety consultants.


In 2016, Gemalto, a subsidiary of The Thales Group, obtained a federal grant to fund pilot initiatives in 4 states to check digital driver’s licenses. This mockup is from the pilot undertaking.

Picture: Thales Group

When a bartender checks your ID, she would not document your house tackle or your peak and weight. All she must know is whether or not or not she will be able to legally serve you a drink. Digital driver’s licenses ought to work the identical method, in response to privateness and safety consultants. 

Digital id platforms ought to prioritize private privateness and information minimization over scanning and storing as a lot info as doable. Which means limiting entry to info primarily based on what information is required to finish a transaction.

A number of states are transferring ahead with digital driver’s licenses. Drivers in Arizona and Georgia will quickly have the ability to use iPhones and Apple Watches as digital licenses or ID playing cards. Individuals dwelling in Kentucky, Maryland, Oklahoma, Iowa, Utah, and Connecticut are subsequent in line for this transition.  

Here’s a take a look at the right way to construct digital id programs that defend privateness by design and stability the necessity for info trade with a person’s proper to privateness.

Constructing a safe system

States ought to take a lesson from blockchain know-how to implement digital driver’s licenses, in response to John Evans, chief know-how advisor at World Vast Know-how. These platforms must be constructed with these safety protocols:

  • Cryptology
  • Distributed information
  • Multi-factor authentication

Evans stated this multilayered protection will make it arduous for attackers to get entry to this information. 

“If an individual will get entry to 1 piece of your info, they can not put all the remaining collectively as a result of it is distributed,” he stated. 

Aaron Ansari, vp of cloud safety at Development Micro, agreed that blockchain is an effective match for cell driver’s licenses to uniquely ID a single individual.

“If a replica ID occurs to indicate up however the blockchain would not match, we’ll know immediately that there’s a faux of your ID,” he stated. 

SEE: Cellular wallets and the way forward for commerce

Evans was the CISO for the state of Maryland for 5 years and helped the state get began on the transition to a digital driver’s license. His group checked out how Estonia applied an identical system. That nation’s digital ID system was hacked in its early days. 

Evans stated that states should use the precept of least privilege when constructing these digital programs. The individual checking a digital license ought to get solely sufficient info to finish a transaction and nothing extra.

Scanners that test digital IDs might be programmed to entry solely the data a selected group wanted. A scanner in a bar may flash inexperienced or purple, primarily based on the individual’s age. A scanner at a financial institution would have entry to extra info to fulfill the authentication necessities for opening an account. 

Evans sees this transition as a option to put controls on entry to personally identifiable info.

“Ideally you do not even need to open the digital driver’s license, you scan it and solely items which can be related present up on the scanner,” he stated. “Ideally you’ll be giving them much less info than you are actually. 

The chance of constructing a brand new monitoring system

Ansari agrees that least privilege and information minimization must be the guiding ideas however he is not optimistic that these priorities will win out. 

“I do not see that as one thing that’s occurring, in truth I see precisely the alternative,” he stated. “It appears increasingly more that there’s overreach from a state and federal POV.”

 The ACLU sees a major danger for the potential of misuse of digital licenses:

“This raises the hazard {that a} comparatively small cadre of companies and specialised authorities bureaucracies will construct a brand new infrastructure for their very own financial and administrative functions, whatever the bigger implications. It raises the hazard that there might be no balanced evaluation of the prices and advantages of such a system and that we are going to undertake programs that don’t strike the best stability between the wants for identification, safety and comfort and People’ well-founded aversion to authorities and company surveillance and regimentation.”

In its “Id Disaster” report, the group recommends that digital IDs be designed to stop the issuer from monitoring a person’s transactions.  

Bob Rudis, chief information scientist at Rapid7, stated that state legislatures rolling out digital driver’s licenses haven’t all added sufficient protections to limit legislation enforcement from utilizing unlocked units for different investigative functions. 

“This might be an actual privateness mess for residents in these less-ethical states,” he stated. “Hopefully Apple and Google wallets will enable for simply unlocking the mDL and never the whole telephone.”

SEE: Id is changing the password: What software program builders and IT execs have to know

Ansari of Development Micro expects a number of the safety requirements for digital driver’s licenses to come back from corporations that make the telephones. He stated one key to securing the digital driver’s licenses might be an entire segregation of the pockets and the fee elements of the pockets, he stated. 

“Apps can request entry by way of Apple however they can not get entry to the pockets instantly, ” he stated. “There must be full segregation the place nothing has entry besides the core OS which ought to have the ability to move alongside the information in a safe method.”

Limiting the chance for monitoring

One other privateness problem round digital IDs is the potential to trace an individual’s actions and actions in a method that’s not presently doable. Al Pascual, senior vp of information breach options at Sontiq, stated meaning prioritizing information minimization together with the precept of least privilege.

“That info would not should be saved or retained by everybody accessing it, solely these regulatorily mandated to take action, resembling monetary establishments,” he stated. 

SEE: Cellular driver’s license would change the bodily card with a digital id

With tech corporations earning money by promoting digital id administration platforms and authorities companies attempting to streamline operations and lower your expenses, residents must be the privateness advocates within the digital id debate, he stated. 

“We wish privateness by design, which suggests know-how that stops others from figuring out the place we have been and what we have bought,” he stated. “Privateness by design  inherently obscures how that license is getting used and that must be the usual by far.” 

Pascual additionally sees few market forces encouraging corporations to guard shopper information, which means that information minimization works extra in precept than in observe.

“The fines will not be frequent sufficient or vital sufficient to essentially drive the type of conduct change we’d count on,” he stated.  

Safety dangers of cell driver’s licenses

As states transfer to implement digital id platforms, dangerous actors will search for new alternatives to steal information whereas additionally utilizing customary social engineering and different frequent assault strategies. Rudis of Rapid7 sees these potential mDL risk eventualities:

  • An elevated floor space for attackers on account of connecting the mDL issuer infrastructure to the web 
  • Potential bugs and vulnerabilities within the pockets app 
  • Data overreach throughout transactions

One instance of the data overreach concern is reader apps requesting extra info than obligatory for a given transaction, resembling a liquor retailer reader app may request all of the fields from a mDL as a substitute of solely the one required subject. 

“I see this as being a really actual downside, since customers will simply need to get a given transaction over with and really possible simply faucet ‘OK’ with as a lot pace as they dismiss cookie consent dialogs with out reviewing them first,” he stated.

Rudis stated that certificates aren’t any panacea and that entities on the Verified Issuer Certificates Authority Checklist additionally will endure integrity points, and that rogue entities will make it onto that listing. 

“Poorly applied encryption-in-transmission schemes can also be topic to person-in-the-middle assaults,” he stated. “Ransomware operators can maintain up the operators of the back-end issuer and validator infrastructure by way of denial of service assaults that would trigger thousands and thousands of residents to be delayed in actual life till the assault ceases.”

Rudis sees mDLs as worthwhile general, regardless of these potential safety dangers and stated that the cell driver’s license customary has been labored on for a few years and a variety of states have already applied their very own variations of the mDL pockets and reader apps.

These programs conform to the ISO/IEC FDIS 18013-5:2021 customary, which covers encryption on-device, encryption in-transit, authentication for unlocking the mDL information and configuration guidelines for cell units and servers.

Additionally see

Recent Articles


Related Stories

Leave A Reply

Please enter your comment!
Please enter your name here

Stay on op - Ge the daily news in your inbox