On 1 May 2016, at 13:38, Julius ter Pelkwijk <pelkwijk@gmail.com> wrote:
I think that the EU should advocate an universal log-in system....
NO! A MILLION, TRILLION, BAZILLION TIMES NO! The EU should not be advocating any form of universal electronic identity token at all. Ever. No government should do that. And neither should anyone else. Despite what our google/facebook/apple/M$/etc overlords would like us all to believe, the holy grail of universal single sign on (USSO) is an impossible fantasy. Framing a discussion on USSO around how to make it less intrusive or more privacy-friendly or less exposed to DoS or accommodate multiple trust anchors or whatever misses the point completely. Assuming these systems could ever be made to work, their benefits are grossly outweighed by their disadvantages and risks. IMO that has to be the message which needs to be heard and understood by legislators. I hope this WG will be up to that challenge.