Author: Gerhard Hassenstein

About Gerhard Hassenstein

Gerhard Hassenstein is a lecturer at BFH Technology and Computer Science.

Entries by Gerhard Hassenstein

What contemporary identity management must fulfil

31. May 2022/in Digital Identity, Privacy & Cybersecurity EN, Professional Contribution EN/by Gerhard Hassenstein

With increasing data protection requirements, it is becoming more and more important to take the data sovereignty of users into account. Therefore, user-centric approaches are being discussed in identity management that ensure user privacy in addition to overall system security. An identity holder should disclose as little information as possible to an auditing service and, […]

Will “Verifiable Credentials” replace X.509 certificates in the future?

16. December 2021/in Digital Identity, Privacy & Cybersecurity EN, Professional Contribution/by Gerhard Hassenstein

X.509 certificates have been around for over 40 years. They are used for the identification of subjects (web servers, persons, etc.). They are considered trusted and proven credentials and we rely on them every day. So why introduce Verifiable Credentials (VC), a new technology unknown to the general public? In order to be able to […]

6 reasons against a central state identity provider

12. October 2021/in Digital Identity, Privacy & Cybersecurity EN, Professional Contribution EN/by Gerhard Hassenstein

The Federal Department of Justice and Police (FDJP) presents three different technical scenarios in its “E-ID target picture” . One of them is an “E-ID solution by means of a central state identity provider”. We show from a technical point of view why a central “E-ID” login cannot advance digitisation in Switzerland. The survey of […]

Centralised or decentralised identity?

1. October 2021/in Digital Identity, Privacy & Cybersecurity EN, Professional Contribution EN/by Gerhard Hassenstein

In recent years, the term “decentralised identity” has appeared more and more frequently in discussions about electronic identities. This is also the case in the currently published “Target Image E-ID”, which is intended to publicly discuss the vision for a state electronic identity in Switzerland. What is hidden behind the term? What are the advantages […]

E-ID connection from the point of view of a company

23. February 2021/in Digital Identity, Privacy & Cybersecurity EN, Professional Contribution EN/by Gerhard Hassenstein

If a web application wants to use the E-ID (according to the law), it has to overcome some challenges. This compilation is intended to help clarify the conditions or raise questions about how such a connection could be made in the future This document does not claim to be complete, as some implementation details are […]

About privacy at login

19. February 2021/in Digital Identity, Privacy & Cybersecurity EN, Professional Contribution EN/by Gerhard Hassenstein

Everyone knows that with a social login, e.g. with Google or Facebook, user data is collected and the profiles formed from this data have a lot of significance. But how does this actually work and how could it be prevented? Digital identities have developed from purely isolated to federated systems in recent years. A comparison […]