1 / 13

Ms Joyce Tam, Principal Assistant Secretary for Information Technology and Broadcasting

Presentation on the introduction of a multi-application smart ID card scheme, addressing concerns about privacy, data concentration, security, choice of cardholders, cost, and durability of the card.

huertaa
Download Presentation

Ms Joyce Tam, Principal Assistant Secretary for Information Technology and Broadcasting

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Presentation on Multi-application Smart ID Card to the Information Infrastructure Advisory Committee Thursday 30 November 2000 Ms Joyce Tam, Principal Assistant Secretary for Information Technology and Broadcasting

  2. Multi-application Smart ID Card Scheme 方充明 FONG, Ching Ming 2455 0339 2494 出生日期 Date of Birth 女F 17-08-1965 Z-A-B-C 簽發日期 Date of Issue 19-10-2000 (02-00) 2

  3. Initial Applications of theMulti-application Smart ID Card Electronic Authentication Digital Certificate Driving Licence Library Card Enhancement of Financial Infrastructure, e.g. e-purse Change of Address 3

  4. Public Consultation on the Project • We have carried out consultation through the following channels - • Legislative Council Security Panel • Legislative Council Security Panel Public Hearing • Information Infrastructure Advisory Committee • District Councils of 18 districts • Roving Exhibitions in shopping centres • Feedback from the media 4

  5. Common Areas of Concerns • Privacy • Data Concentration • Security • Choice of Cardholders • Cost of Project • Durability of Smart Card 5

  6. Privacy • Concerns - • The Smart ID Card would infringe data privacy of the cardholders • Measures to be taken to address concern - • Strict compliance with the Personal Data (Privacy) Ordinance • Privacy Impact Assessments (PIA) • Close consultation with the Privacy Commissioner • Legislative safeguard and introduction of administrative code of practice where necessary • Minimal data to be stored on the card 6

  7. Data Concentration • Concerns - • Concentration of data on the card may lead to function creep where data would be used for purposes beyond those for which data were originally collected • Measures to be taken to address concern - • Minimal data to be stored on the card • No sharing of databases among different departments • Stringent access control to system and database • Data on the card to be segregated and encrypted • Central monitoring through a steering committee and development of administrative code of practice where necessary 7

  8. Security • Concerns - • Smart card is not entirely secure • Measures to be taken to address concern - • High maturity level of cryptographic technology • Adequate risk management measures • Experts to conduct security design and audit • Compromise of one card will not result in compromise of the whole security regime • Minimal data to be stored on the card • Sensitive data to be stored in backend systems of Government departments as at present 8

  9. Choice of Cardholders • Concerns - • Cardholders may not have genuine, voluntary and non-discriminatory choice on the additional applications • Measures to be taken to address concern - • Measures to ensure genuine and non-discriminatory choice • Driving licence is likely to be the only possible exception as it would be confusing to have two types of driving licence 9

  10. Cost of Project • Concerns - • Cost of project at $3.06 billion is expensive • Justification • The cost is for replacement of the whole ID card system and the individual cards • The cost is well-justified by the benefits (higher security level, auto-immigration clearance, greater convenience provided by the additional applications) • The cost differential for smart card against non-smart card is about 10% • The cost differential for multi-application smart card against immigration-only smart card is also about 10% 10

  11. Durability of Card • Concerns • Smart card not durable and cannot last for 10 years as purported • Measures to be taken to address concern - • Strong card materials - Polycarbonate will be used • Guaranteed minimum life of 10 years • 100,000 - 300,000 read/write access 11

  12. Looking Ahead • Open Forum organised by Hon. Emily Lau (1 Dec) • Motion Debate at Legislative Council (6 Dec) • Forum organised for the IT sector by Hon. SIN Chung-kai (Jan) • Seeking funding approval from Finance Committee (Jan) • System development (2001-2002) • Card issue and replacement (2003-2007) * • * Essential legislative amendment to be made before card issue 12

  13. Thank you

More Related