this post was submitted on 08 Dec 2024
398 points (92.9% liked)
Privacy
32442 readers
1016 users here now
A place to discuss privacy and freedom in the digital world.
Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.
In this community everyone is welcome to post links and discuss topics related to privacy.
Some Rules
- Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
- Don't promote proprietary software
- Try to keep things on topic
- If you have a question, please try searching for previous discussions, maybe it has already been answered
- Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
- Be nice :)
Related communities
much thanks to @gary_host_laptop for the logo design :)
founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
But they have one advantage: They are way easier to counterfeit. Meaning that with a few months of programming at most, if you ever find yourself on a run, you'll be able to ID yourself on trains or buses or check in to hotels with fake personal info.
you realize they're more than just your picture on a screen, right? there's a whole public key private key verification process that happens, which covers your photo and personal info, at least from what I understand of ISO 18013-5.
if anything it should be almost impossible to make a fake mobile id, barring exploits in reader software or the govt leaking their private key.
Yes I do. Therefore I would never use it in front of state authorities, but I doubt a hotel receptionist would make use of a pubkey cryptography.
you don't think they'll just use some app to verify it? my state's mdl doesn't even show any personal info other than name, if they want birthday they have to scan it
If you're just flashing an ID like a badge, maybe not. But as soon as the hotel tries to use the information to do anything (even as trivial as adding it to their local systems) there's a good chance it'll get bounced or hung up. A fake digital id is worse than none at all. Its a big red flag saying "Look harder at this person, they're suspicious!"
i don't think that there's no check at all. There's either a server side check or a digital signature to verify, or both. You can trick the train ticket check (here they don't even scan the qr code, they see the screen on the phone and continue) or the lazy airbnb landlord, but that can be done also today