←back to thread

Britain to introduce compulsory digital ID for workers

(www.reuters.com)
525 points alex77456 | 3 comments | 26 Sep 25 02:09 UTC | HN request time: 0s | source
Show context
aftergibson ◴[26 Sep 25 11:52 UTC] No.45385420[source]
A secure, optional digital ID could be useful. But not in today’s UK. Why? Because the state has already shown it can’t be trusted with our data.

- Snoopers’ Charter (Investigatory Powers Act 2016): ISPs must keep a year’s worth of records of which websites you visit. More than 40 agencies—from MI5 to the Welsh Ambulance Service—can request it. MI5 has already broken the rules and kept data it shouldn’t have.

- Encryption backdoors: Ministers can issue “Technical Capability Notices” to force tech firms to weaken or bypass end-to-end encryption.

- Online Safety Act: Expands content-scanning powers that experts warn could undermine privacy for everyone.

- Palantir deals: The government has given £1.5 billion+ in contracts to a US surveillance firm that builds predictive-policing tools and runs the NHS’s new Federated Data Platform. Many of those deals are secret.

- Wall-to-wall cameras: Millions of CCTV cameras already make the UK one of the most surveilled countries in the world.

A universal digital ID would plug straight into this ecosystem, creating an always-on, uniquely identified record of where you go and what you do. Even if paper or card options exist on paper, smartphone-based systems will dominate in practice, leaving those without phones excluded or coerced.

I’m not against digital identity in principle. But until the UK government proves it can protect basic privacy—by rolling back mass data retention, ending encryption backdoor demands, and enforcing genuine oversight—any national digital ID is a surveillance power-grab waiting to happen.

I'm certain it's worked well in other countries, but I have zero trust in the UK government to handle this responsibility.

replies(21): >>45385507 #>>45387492 #>>45389428 #>>45389950 #>>45390081 #>>45390083 #>>45390337 #>>45390348 #>>45390643 #>>45390732 #>>45391157 #>>45391185 #>>45391616 #>>45391657 #>>45392188 #>>45392686 #>>45394187 #>>45394216 #>>45397954 #>>45402490 #>>45403873 #
qazwsxedchac ◴[26 Sep 25 19:23 UTC] No.45390083[source]
The ID cards as realized in many other countries are comparatively benign, because they are a physical credential in the possession of the person concerned. The government cannot stop this credential from being used except by physically confiscating it or by waiting (years) for it to expire. Distributed storage in action.

The UK's proposal makes the "digital ID" a pointer to an entry in a centralized database. This database is the definitive record of what you are allowed to do or not do (like reside and work). Which can be changed or deleted at the stroke of a key, through human error or malice. Then what?

When (not if) the database becomes an attribute store across a wider scope, the implications are scary. The "digital ID" as set out today can't work for its ostensible purpose. Therefore its actual purpose isn't being declared. Not hard to connect the dots.

replies(9): >>45390573 #>>45390721 #>>45390806 #>>45390896 #>>45392414 #>>45392481 #>>45392635 #>>45403938 #>>45411307 #
philipallstar ◴[26 Sep 25 20:11 UTC] No.45390573[source]
I'm against the ID, but the more good faith reason for a database entry is it should eliminate fake IDs.
replies(6): >>45390600 #>>45390710 #>>45390714 #>>45390929 #>>45392112 #>>45393157 #
1. protimewaster ◴[26 Sep 25 20:15 UTC] No.45390600[source]
Doesn't a physically held digital ID also do that? Assuming the encryption is strong, verifying that the data on the ID has the proper cryptographic signature should provide assurance that the ID is real, shouldn't it?

I guess, depending on how it's implemented, maybe an ID could be cloned and still appear valid, but that seems like a possibility for the UK's approach as well (the clone would just point to the same database entry).

replies(2): >>45391278 #>>45391383 #
2. philipallstar ◴[26 Sep 25 21:38 UTC] No.45391278[source]
Yes, I think you're probably right. But it still solves other problems such as "the app is a lookalike". If the app is basically an ID delivery mechanism that allows an operator to call up your photo, it becomes a relatively foolproof way to identify you accurately.
3. grues-dinner ◴[26 Sep 25 21:52 UTC] No.45391383[source]
In a good modern implementation, it should be extremely hard to produce a physical card with an authenticated pointer to the database, because that would be also signed.

But considering that they've been retiring things like biometric residence cards in favour of web-based systems, it's possible there will be no physical component.