Jun 27 2008

Nation’s Capital Creates ‘One Card’ to ID Them All

The Washington Post reports on a new identification program from the DC government. DC wants to use the “One Card” to track “library accounts, public school attendance, recreation-center use and other services,” and “Metro riders can have a SmarTrip chip implanted in the card.”

The DC government’s chief technology officer says, “The eventual goal is that you’d need only one card across the entire District government.”

Why create a city-wide centralized identification system, mandatory for public school students and government workers but “voluntary” for others? We’ve all heard it before with REAL ID and other broad identification programs: the “papers please” system of One Card would be more efficient and save money.

The Washington Post points out that DC officials “could not offer specifics about those savings for agencies or the city.”

Read the rest of the story here.

Jun 27 2008

Target Store Scans Driver’s License / ID Card Data

George Hulme at InformationWeek has an interesting story about a Target store scanning his driver’s license when he went to buy Nicorette gum:

Now, during checkout, the cashier asks to “see” my driver’s license. Alright, since I’ve been carded before buying controlled substances, I figure she needs to check my age.

Before I have a chance to realize exactly what’s going on, the cashier swipes my driver’s license through the register. The machine then kicks and spasms out my receipt. Whoa!

I inquire, “What information, if any, was captured from my license?”

I get that deer-in-the-headlights what-ya-talk’n-bout glaze. She’d never thought about, or was apparently never asked, why she was physically scanning driver’s licenses.

“You asked to ‘see’ my license, but you swiped it. Big difference,” I say.

The cashier has no idea how to answer his question. Hulme leaves a message at Target’s press office asking for information as to whether his data was merely scanned to verify age or if all of his license data was downloaded by Target; if so what was the reason for this data capture and how long were they going to keep his data. No answer. He also e-mailed Target customer service and got a response. But it was a non-response. Read his full story.

Note that the final regulations for the REAL ID national identification system includes an unencrypted machine-readable zone. This means that anyone with an off-the-shelf card reader could swipe and download your personal data. And DHS Secretary Chertoff wants everyone to use this national ID card to “cash a check, hire a baby sitter, board a plane or engage in countless other activities,” so all of those situations could lead to your data being downloaded and retained.

Has your license or ID card data been swiped and retained by a store, bank, bar, club or other business? Tell us about it. E-mail jph AT papersplease.org