Presentation is loading. Please wait.

Presentation is loading. Please wait.

Thomas Myrup Kristensen EU Internet Policy Director Microsoft Corporation

Published byEmma Kent Modified over 10 years ago

Similar presentations

Presentation on theme: "Thomas Myrup Kristensen EU Internet Policy Director Microsoft Corporation"— Presentation transcript:

1 Thomas Myrup Kristensen EU Internet Policy Director Microsoft Corporation tmyrup@microsoft.com

2 Copyright © 2005-2008 Microsoft Corporation. All Rights Reserved. The Internet was built without a way to know who and what you are connecting to. People have been trained to accept any information request from any website as being the normal way to conduct business online Goal: to give Internet users mechanisms to ensure safety, privacy and certainty about who they are relating to in cyberspace. 2

3 Dubious preconceptions? Everybody knows : to get authorized to access a system a person must disclose their identity ? …but suppose thats not true the accepted principles of privacy protection are technology-neutral …but perhaps some technologies are intrinsically better for privacy than others cyber-security and privacy is a tradeoff …but perhaps both can be improved together

4 The issue with PKI (public-key infrastructure) certificate contains identity attributes verifiable by a digital signature must disclose entire certificate in order for verification mechanism to work ….results in disclosure of excessive data for any particular transaction Cert ID is inescapable persistent identifier Too bad! - just the way the math works? Well, no…can do (much) better 20 years of research into multi-party security and privacy techniques

5 Name:Alice Smith Address:1234 Crypto, Seattle, WA Status:gold customer DOB:03-25-1976 Reputation:high Gender:female Name:Alice Smith Address:1234 Crypto, Seattle, WA Status:gold customer

6 Prove that you are from WA and over 21 Name:Alice Smith Address:1234 Crypto, Seattle, WA Status:gold customer Which adult from WA is this? ? ? DOB:03-25-1976 Reputation:high Gender:female Over-21 proof

7 Copyright © 2005-2008 Microsoft Corporation. All Rights Reserved. Avoid unnecessary (excessive) data trails in transactional systems Access services based on proof-of-age-limits, or class of entitlement reduce liabilities, exposure to breaches / insider-attacks safe private-sector use of data in national eID systems Apply different policies to different risks Inherently more proportionate for ECHR These capabilities are counter-intuitive !

8 Copyright © 2005-2008 Microsoft Corporation. All Rights Reserved.

Download ppt "Thomas Myrup Kristensen EU Internet Policy Director Microsoft Corporation"

Similar presentations

What is. Digital Certificate It is an identity.

What is. Digital Certificate It is an identity.
Chapter 10 Encryption: A Matter of Trust. Awad –Electronic Commerce 1/e © 2002 Prentice Hall 2 OBJECTIVES What is Encryption? Basic Cryptographic Algorithm.

Chapter 10 Encryption: A Matter of Trust. Awad –Electronic Commerce 1/e © 2002 Prentice Hall 2 OBJECTIVES What is Encryption? Basic Cryptographic Algorithm.
1 Proposal for a Regulation on Electronic identification and trust services for electronic transactions in the internal market (COM(2012 238 final) {SWD(2012)

1 Proposal for a Regulation on Electronic identification and trust services for electronic transactions in the internal market (COM( final) {SWD(2012)
© fedict 2008. All rights reserved Legal aspects Belgian electronic identity card Samoera Jacobs – November 2008.

© fedict All rights reserved Legal aspects Belgian electronic identity card Samoera Jacobs – November 2008.
© 1998-2003 ITU Telecommunication Development Bureau (BDT) – E-Strategy Unit.. Page - 1 Seminar on Standardization and ICT Development for the Information.

© ITU Telecommunication Development Bureau (BDT) – E-Strategy Unit.. Page - 1 Seminar on Standardization and ICT Development for the Information.
1 ABCs of PKI TAG Presentation 18 th May 2004 Paul Butler.

1 ABCs of PKI TAG Presentation 18 th May 2004 Paul Butler.
CS898T Mobile and Wireless Network Handheld Device Security By Yuan Chen July 25 th, 2005.

CS898T Mobile and Wireless Network Handheld Device Security By Yuan Chen July 25 th, 2005.
3SKey 3SKey.

3SKey 3SKey.
The World Internet Security Company ID Management in e-Health February 2007.

The World Internet Security Company ID Management in e-Health February 2007.
The Need for Trusted Credentials Information Assurance in Cyberspace Mary Mitchell Deputy Associate Administrator Office of Electronic Government & Technology.

The Need for Trusted Credentials Information Assurance in Cyberspace Mary Mitchell Deputy Associate Administrator Office of Electronic Government & Technology.
Lesson 1. Course Outline E-Commerce and its types, Internet and WWW Basics, Internet standards and protocols, IP addressing, Data communication on internet,

Lesson 1. Course Outline E-Commerce and its types, Internet and WWW Basics, Internet standards and protocols, IP addressing, Data communication on internet,
Confidentiality and Privacy Controls

Confidentiality and Privacy Controls
2 3 Who are you? What are you allowed to do? How should your experience be personalized? How do I get apps that are provably securable and manageable?

2 3 Who are you? What are you allowed to do? How should your experience be personalized? How do I get apps that are provably securable and manageable?
Information Security & Cryptographic Principles. Infosec and Cryptography Subjects / Topics : 1. Introduction to computer cryptography 1. Introduction.

Information Security & Cryptographic Principles. Infosec and Cryptography Subjects / Topics : 1. Introduction to computer cryptography 1. Introduction.
ESign-Online Digital Signature Service February 2015 Controller of Certifying Authorities Department of Electronics and Information Technology Ministry.

ESign-Online Digital Signature Service February 2015 Controller of Certifying Authorities Department of Electronics and Information Technology Ministry.
6/1/20151 Digital Signature and Public Key Infrastructure Course:COSC513-01 Instructor:Professor Anvari Student ID:106845 Name:Xin Wen Date:11/25/00.

6/1/20151 Digital Signature and Public Key Infrastructure Course:COSC Instructor:Professor Anvari Student ID: Name:Xin Wen Date:11/25/00.
Government Online – White Paper Companion – Copyright © 2007 Credentica Inc. All Rights Reserved. This presentation is animated. Press the “space bar”

Government Online – White Paper Companion – Copyright © 2007 Credentica Inc. All Rights Reserved. This presentation is animated. Press the “space bar”
6/4/2015National Digital Certification Agency1 Security Engineering and PKI Applications in Modern Enterprises Mohamed HAMDI National.

6/4/2015National Digital Certification Agency1 Security Engineering and PKI Applications in Modern Enterprises Mohamed HAMDI National.
Designing and Implementing Secure ID Management Systems: BELGIUM’s Experience Washington - September 27 th, 2010 Frank LEYMAN © fedict 2010. All rights.

Designing and Implementing Secure ID Management Systems: BELGIUM’s Experience Washington - September 27 th, 2010 Frank LEYMAN © fedict All rights.
Using Digital Credentials On The World-Wide Web M. Winslett.

Using Digital Credentials On The World-Wide Web M. Winslett.

Similar presentations

Ads by Google