Hitoshi Kokumai

5年前 · 2 分の読書時間 · ~10 ·

ブログ作成
>
ブログ Hitoshi
>
Blockchain solutions offered without a reliable user authentication don’t make much sense, do they?

Blockchain solutions offered without a reliable user authentication don’t make much sense, do they?


When we say ‘This door is weak’, it could mean ‘The door panel is weak’ and ‘The lock/key system is weak’.  The blockchain technology could indeed help make a strong door panel, but it alone could never make a substitute to a reliable lock/key system.


d40409d0.png

Well, for the most reliable lock/key system for cyberspace, i.e., digital identity authentication, there must be three prerequisite

First of all, identity assurance with NO confirmation of the users volition would lead to a world where criminals and tyrants dominate citizens. Democracy would be dead where our volition was not involved in our identity assurance. We must be against any attempts to do without what we remember, recognize and feed to login volitionally.

Secondly, mathematical strength of a security makes sense so long as the means is practicable for us Homo sapiens. A big cake could be appreciated only if it’s edible.

Thirdly, being ‘unique’ is different from being ‘secret’. ‘Passwords’ must not be displaced by the likes of ‘User ID’. I mean, we should be very careful when using biometrics for the purpose of identity authentication, although we don’t see so big a problem when using biometrics for the purpose of personal identification.

Identification is to give an answer to the question of “Who are they?”, whereas authentication is to give the answer to the question of “Are they the persons who claim to be?” Authentication and identification belong to totally different domains.

We know that the password is an indispensable factor for multi-factor schemes and that the security of password managers and single-sign-on schemes needs to hinge on the reliability of the master-password. Biometrics, which relies on a backup password, can by no means be an alternative to the password,

The password as memorized secret is absolutely necessary. We must not accept any form of password-less login.

We might also need to look at the situation where we cannot rely on anything but the memorized secrets; emergencies.

What is practicable in a calm indoor environment is not necessarily practicable in the turbulent outdoor environment, although the reverse can be said. The difference would be most striking in the cases of battlefield and disaster recovery.

Can we take it for granted that the people in such panicky situations are holding the cards and tokens for their identity authentication?  

Can we be certain that the biometrics measures, whether static or behavioral, are practicable for the people who are injured or caught in panic?

It is the obligation of the democratic societies to provide the citizens with identity authentication measures that are practicable in emergencies.

Slide “Identity Assurance in Emergencies”.

Blockchain solutions for valuable information assets must come with the most reliable means of identity assurance.


"
コメント

Hitoshi Kokumai

4年前 #2

#1
Your heartening comment is very much appreciated.

Debesh Choudhury

4年前 #1

I agree - "We must not accept any form of password-less login" which is vulnerable and against our volition. The identity authentication system should also be practicable in case of emergencies .. Hitoshi Kokumai you raised important points.

Hitoshi Kokumaiの記事

ブログを見る
2年前 · 2 分の読書時間

Bad guys, who have a quantum computer at hand, would still have to break the part of user authentica ...

2年前 · 3 分の読書時間

I take up this new report today - “Researchers Defeated Advanced Facial Recognition Tech Using Makeu ...

2年前 · 2 分の読書時間

Today's topic is this report - “How blockchain technology can create secure digital identities” · h ...

関連プロフェッショナル

この職種に興味がある方はこちら

  • 特定医療法人ダイワ会 大和病院

    日勤のみの看護助手

    次の場所にあります: Whatjobs JP C2 - 2日前


    特定医療法人ダイワ会 大和病院 Osaka, 日本

    **特定医療法人ダイワ会 大和病院公式求人概要** · **特定医療法人ダイワ会 大和病院** · 週3日以上で勤務OK時給1100円以上無資格者応募OK駅より徒歩10分【吹田市・ケアミックス病院・江坂駅・看護助手・日勤パート】 · **職種** · 日勤のみの看護助手 · **所在地** · 大阪府吹田市垂水町3-22-1 · **給与** · 時給1100円以上 · ※経験・能力により異なりま ...

  • apollostation セルフ御幸ヶ原SS◆5027

    ガソリンスタンドスタッフ

    次の場所にあります: beBee S2 JP - 1日前


    apollostation セルフ御幸ヶ原SS◆5027 宇都宮市, 日本 パートタイム

    apollostation セルフ御幸ヶ原SS◆5027(エナジースタッフ東日本) · 乙4免許必須★未経験歓迎◎セルフスタンドstaff募集監視メインのお仕事 ガソリンスタンド · ====仕事内容==== · 実務経験不問未経験からのスタート応援 · 主な仕事内容は、セルフガソリンスタンドにおける、モニターでの給油監視業務及び簡単な · 清掃・接客業務を含むSS業務全般です★ · ?給油監視業 ...

  • ランスタッド株式会社

    人事総務

    次の場所にあります: Whatjobs JP C2 - 3日前


    ランスタッド株式会社 Tokyo, 日本

    **仕事内容**: · \経験浅めの方にも嬉しい /経験年数不問の【人事・採用】に関するサポート事務のご紹介ですこれからもっと採用業務に関わりたい方、人事の知識を深めたい方にオススメですよ* · 人事部全体では【30名】規模の大手企業で、新卒・中途・インターンシップなど「採用」に関わる事務をお願いします採用イベントや入社式、内定式といった採用関連のイベントの会場準備なども行うので、イベント企画や準 ...