|
|
Whatever digital products are launched in Russia, if there is no end-to-end identification, whereby the client can freely switch from one service to another, they will remain ineffective, said Olga Skorobogatova, First Deputy Head of the Central Bank of the Russian Federation, at the Finopolis forum on November 11. She is convinced that
regulators need to implement the issue of linking the "Gosuslugi" identifier to commercial analogues
The identification system, which is being formed on the Unified Portal of State Services (UPGS), already has a large scale of penetration into domestic IT systems, noted the head of the Ministry content writing service of Digital Development of the Russian Federation Maksut Shadayev at the forum.
According to him,
the state needs a single system of reliable and secure identification that can be easily connected to. To do this, it is important to ensure a seamless transition of the user from the government services portal to other systems
According to Irina Levova, GR Director of the Big Data Association (BDA), ease of penetration between the junctions of digital platforms is indeed a pressing need. And not only from state to commercial systems, but also vice versa, she explained to RSpectr.
Irina Levova, ABD:
“We evaluate this idea positively, but much depends on the implementation in terms of data security, truly seamless interaction, and the readiness of the Unified State Services Portal’s capacities to work with businesses .
At the same time, she noted,
seamlessness may lead to the State Services portal having general access to all user data
The Russian secure identification system is supposed to be centralized – a profile on “Gosuslugi” can be used as identification on other services, experts interviewed by RSpectr note.
But the centralized source of information about a person used by banks, mobile operators and other business areas has many weak points, noted personal data consultant Alexander Partin. He highlighted the key risks of the mandatory use of the State Services identifier – the Unified Identification and Authentication System (ESIA). It is obvious that
a database that contains huge amounts of information about many people becomes very attractive for hacking
Alexander Partin, personal data consultant:
– Considering that control over the information will be not with the person, but with the ESIA operator and the state, any error, inaccuracy or outdated information can seriously harm the user. At the same time, even a simple update of information can get bogged down in bureaucratic procedures. For example, how quickly will the system react to a person’s report of losing their passport?
In addition, the state will have the opportunity to accumulate arrays of information about a person’s personal life by analyzing information about which companies or programs he registers with and what data he provides there, the expert notes.
VERIFY THIS
Systems similar to the Russian ESIA operate abroad, for example, SingPass in Singapore or the Italian SPID . However, foreign platforms, unlike Gosuslugi, are built on the opposite principle of decentralization of credentials, noted the head of the analytics department at SearchInform, Alexey Parfentyev. For example, this approach is used by commercial tech giants in their own ecosystems, he recalled in an interview with RSpectr. At the same time, many third-party services support the ability to authorize using accounts from these ecosystems.
|
|
發表於 2024-11-10 13:43:06