this post was submitted on 05 Feb 2024
214 points (97.8% liked)
Technology
59436 readers
3509 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related content.
- Be excellent to each another!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, to ask if your bot can be added please contact us.
- Check for duplicates before posting, duplicates may be removed
Approved Bots
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
The military already has a solution to this. Smart card ID cards. So it acts like a hardware security key that you plug into your computer to verify it's you. Or at least the person possessing it. And it relies on the central authority to invalidate and verify the authenticity of that signature. Just like a yubikey
Combine the ID card with a fingerprint scanner built into the ID card. You get the best of the security enclave. And public key verification.
In Spain you just go to an office, show your ID and they give you a personal certificate you import into your browser. You can use the same cert on multiple computers and have multiple certs in the same browser. When you visit government pages it asks you which cert you want to use and voilà, you're authenticated. You can also use the same cert to sign files and it's a legally valid signature. It uses common standards and works on Linux.
Or if you buy a card reader you can use your ID (DNI) as your certificate because it has one saved inside
Not disagreeing, but for the US:
And how much would a solution cost in bulk for millions/billions of people? Also you can always tack on $10-$20 as a fee and you're done.