upvote

points

by askonomm11 hours ago |
comments
upvoteby edoceo9 hours ago|
[-]
Can the PIN change? How to issue new key if needed? How does it integrate with the voting?
reply
upvoteby askonomm6 hours ago|
parent|
next
[-]
Voting, much like all other things in Estonia such as getting married/divorced, doing taxes, signing documents, starting/closing companies, notary dealings, bank dealings, selling/buying vehicles, and many more things I can't even think of right now are entirely done via the digital ID that every citizen has. This means that you authorize/sign actions with it, including voting, because only you have your private keys (either in your personal ID card, in your phone's sim card, etc) that you yourself know the PIN for, which then authenticates you as being you. I think we're now at a point where there isn't a single government or business dealing you can not do entirely online (https://e-estonia.com/solutions/).
reply
upvoteby monksy2 hours ago|
parent|
[-]
> in your phone's sim card,

Phones and sim cards a lot more temporary than ID cards. I don't know of a lot of theves that target ID cards for their authorization uses. Phones... people will steal those.

reply
upvoteby askonomm1 hours ago|
parent|
[-]
You can close your Mobile-ID when your phone gets stolen so the security keys on it will be useless, and even if you don't close it, nobody can use your security keys without your PIN, which is in your head.
reply
upvoteby notpushkin8 hours ago|
parent|
prev|
[-]
> Can the PIN change?

You can change it in the app, yes.

> How to issue new key if needed?

I think you’ll have to reissue your ID.

There’s also digi-ID (similar e-signature certificate on a card, but without any ID features), Mobiil-ID (e-signature on a SIM-card, no idea how it works), Smart-ID (in app, tied to secure storage in Android/iOS, cross-signed by the server which is supposed to check the device somehow) and probably something else I don’t remember. All of these are independent options, so you can, for example, revoke your Mobiil-ID if you lose your phone, and still use the your main ID card to sign things.

reply
upvoteby JCattheATM7 hours ago|
parent|
next
[-]
> You can change it in the app, yes.

Is the app tied to Google or Apple?

reply
upvoteby notpushkin7 hours ago|
parent|
[-]
Nope, there’s a desktop version, too. And it’s all free/open source: https://github.com/open-eid

(Though Smart-ID is its own thing and is a fair bit more locked down, but I’ve managed to get it running on a phone without Google services IIRC.)

reply
upvoteby NewsaHackO3 hours ago|
parent|
next
[-]
Wow, that is definitely more sophisticated than we have in the states. It seems like you can use it for things that one would otherwise need a notary for, that is such a timesaver.
reply
upvoteby JCattheATM7 hours ago|
parent|
prev|
[-]
Wow, that is nice!
reply
upvoteby GoblinSlayer6 hours ago|
parent|
prev|
[-]
How much the certificate costs and lasts?
reply
upvoteby askonomm6 hours ago|
parent|
[-]
It costs as much as your ID card costs by the government, and lasts as long as well. They are one and the same. Applying for a new ID card / national ID document in Estonia costs 35€ and the document is valid for 5 years. If you forget your PIN code, you can reset it with your PUK codes, but if you also lose your PUK codes you need to apply for a new ID card. The process for getting a new ID card from the moment you applied for it takes no more than 30 days. You can also have it fast tracked for 250€ and get it in 2 days.

But, like the parent said, you have many other options other than the physical ID-card as well. Most people these days use Mobiil-ID or SmartID, which works on your phone and even smart watch. SmartID is completely free and Mobiil-ID is tied to your phones carrier, so the cost varies, but it's a one-time set-up fee of around 5€. Mobiil-ID certificate also lasts 5 years.

reply