Author

Entries by Gerhard Hassenstein

What contemporary identity management must fulfil

With increasing data protection requirements, it is becoming more and more important to take the data sovereignty of users into account. Therefore, user-centric approaches are being discussed in identity management that ensure user privacy in addition to overall system security. An identity holder should disclose as little information as possible to an auditing service and, […]

Will “Verifiable Credentials” replace X.509 certificates in the future?

X.509 certificates have been around for over 40 years. They are used for the identification of subjects (web servers, persons, etc.). They are considered trusted and proven credentials and we rely on them every day. So why introduce Verifiable Credentials (VC), a new technology unknown to the general public? In order to be able to […]

6 reasons against a central state identity provider

The Federal Department of Justice and Police (FDJP) presents three different technical scenarios in its “E-ID target picture” . One of them is an “E-ID solution by means of a central state identity provider”. We show from a technical point of view why a central “E-ID” login cannot advance digitisation in Switzerland. The survey of […]

Centralised or decentralised identity?

In recent years, the term “decentralised identity” has appeared more and more frequently in discussions about electronic identities. This is also the case in the currently published “Target Image E-ID”, which is intended to publicly discuss the vision for a state electronic identity in Switzerland. What is hidden behind the term? What are the advantages […]