2024-12-27 –, Saal GLITCH
Language: English
Digital identity solutions, such as proposed through the EU's eIDAS regulation, are reshaping the way users authenticate online. In this talk, we will review the currently proposed technical designs, the impact such systems will have, and provide an outlook on how techniques from modern cryptography can help to improve security and privacy.
Digital Identity solutions are on the rise all around the world. In particular the European Union is establishing a range of ambitious proposals like eIDAS to establish a general purpose platform for identification, authentication and transfer of personal data that will be used by eGovernment, logging into Facebook, public transport, eCommerce and doctor visits. With the Digital Euro, the EU Digital Travel App, Age Verification Apps and many other proposals we can see the scary trajectory the EU is headed towards. This talk provides a critical reality check about the underlying technology, the impact these systems will have on our privacy on a daily basis and what security (hell) we can expect.
The talk will also give an overview of the proposed technical eIDAS architecture, and the Cryptographers' Feedback on the EU Digital Identity’s ARF. We will also provide a brief introduction into zero-knowledge proofs, the security and privacy properties they can provide for Digital Identities, and what is missing to bring these technologies into reality.
Thomas Lohninger has worked for the digital rights NGO epicenter.works to advocate for strong privacy in the eIDAS law on EU level. He is a member of the Ad-Hoc Technical Advisory Group of the EU-Commission on eIDAS Wallet and the only civil society Jury member of the SPRIND EUDI WALLET Prototype of the German government.
Anja Lehmann is a professor for cryptography at the Hasso-Plattner-Institute, University of Potsdam, with a focus on developing privacy-enhancing technologies, in particular enabling privacy-preserving authentication. She is a Jury member of the SPRIND Funke on EUDI WALLET Prototypes and also supports the SPRIND EUDI project on the integration of zero-knowledge proofs since October 2024.
Anja Lehmann is a professor for cryptography at the Hasso-Plattner-Institute, University of Potsdam (https://hpi.de/lehmann/). She works on the design and analysis of cryptographic protocols with provable security guarantees, with a particular focus on privacy-enhancing protocols, such as anonymous credentials.
Thomas was a programmer and anthropologist in his former life. Digital rights had been his hobby until it became a job when he intensively accompanied the EU Net Neutrality Regulation as Policy Advisor for European Digital Rights (EDRi). Thomas was one of the driving forces behind the www.savetheinternet.eu campaign and has a strong work focus on net neutrality, data protection, and mass surveillance. Since 2010 he has played an active part at Epicenter.works and since 2014 he is the executive director of the organization. He also writes on Netzpolitik.org, is a regular guest in the Podcast Logbuch:Netzpolitik and a non-residential Fellow of the Center for Internet and Society at the Stanford Law School. He was in the board of the EU umbrella of 45+ digital rights NGOs (EDRi) and since 2024 he is Chair of the Governance Working Group of the UN dpi-safeguard initiative and member of the Jury for the German eIDAS Wallet and the Ad-Hoc Technical Advisory Group on eIDAS of the European Commission.