Welcome to ID Tech’s digest of identity industry news. Here’s what you need to know about the world of digital identity and biometrics today:
Romania Orders Mobile Fingerprint Readers for EU Border Security
The Romanian Border Police has awarded GRAPHIT Innovation Factory a 6.87 million RON framework agreement to supply mobile fingerprint readers over 24 months, funded partially by EU grants. The devices, designed to capture four fingerprints per session, aim to enhance identity verification efficiency and accuracy at Romania’s borders, aligning with EU regulations and biometric standards. GRAPHIT was the sole bidder, and met all technical and compliance criteria under EU Directive 2014/24/EU. Cost accounted for 80 percent of the evaluation, and warranty terms for 20 percent, with devices offering a minimum 24-month warranty. The project supports Romania’s bid to join the Schengen Area and improve border security, with funding split between EU grants and Romania’s national budget.
Commonwealth Bank Pilots Medicare Digital ID Verification via Australia’s Trust Exchange
The Commonwealth Bank of Australia (CBA) is piloting a program in Canberra allowing customers to share Medicare credentials digitally for identity verification, as part of the federal government’s Trust Exchange (TEx) scheme. Participants will use the myGov app to scan a QR code and share verified details, including name and Medicare enrollment status, without transmitting sensitive information such as Medicare numbers. The initiative adheres to privacy and security standards outlined in the Digital ID Act 2024 and builds on CBA’s earlier digital identity efforts. The TEx program, launched in 2024 with an initial $11.4 million investment, aims to reduce reliance on physical documents through token-based verification. Results from the trial will guide the expansion of the TEx system.
Zambia Advances Digital ID System with MOSIP Training for Healthcare Integration
Developers from SMART Zambia’s e-government division have completed training on the Modular Open-Source Identity Platform (MOSIP), focusing on integrating it with the SmartCarePro Electronic Health Record System. The integration aims to improve e-KYC processes, enhance data accuracy by removing duplicates, and provide identity verification using National Registration Card data. Supported by a $100 million World Bank grant through the Digital Zambia Acceleration Project, the open-source platform will strengthen Zambia’s digital public infrastructure while allowing customization to national requirements. The training builds local capacity to manage and maintain the system independently, aligning with Zambia’s broader digital identity strategy.
Korean Politician Proposes Stricter Biometric Data Protection Laws, Affecting Tech and Entertainment Sectors
Representative Lee Soo Jin has proposed an amendment to South Korea’s Personal Information Protection Act (PIPA) to strengthen regulations on biometric data. The proposal broadens the definition of protected biometric information to include fingerprints, facial recognition data, iris scans, and palm vein patterns. It introduces stricter rules requiring explicit consent for collecting and processing biometric data, restricting its use to pre-disclosed purposes. Industries such as entertainment, financial technology, and transportation would need to revise their practices to comply with the new standards. For example, HYBE’s Face Pass system and Korean Air’s palm vein scanning for domestic flights would need adjustments to align with the proposed regulations.
Entrust Launches PKI Hub to Streamline Enterprise Cryptographic Asset Management
Entrust has introduced PKI Hub, a virtual appliance designed to simplify Public Key Infrastructure (PKI) management across cloud and on-premises environments. The platform integrates a high-throughput Certificate Authority, automated Certificate Lifecycle Management, and Online Certificate Status Protocol for real-time validation. It also supports RFC3161-compliant timestamping and features a RESTful API for certificate lifecycle management and reporting. A centralized management console provides unified oversight, while post-quantum-ready PKI ensures compatibility with emerging cryptographic standards.
CISA Director Offers Further Details About Salt Typhoon Attacks
The Salt Typhoon cyber intrusion, attributed to a Chinese state-backed espionage group linked to China’s Ministry of State Security, was initially detected on U.S. federal networks, according to CISA Director Jen Easterly. The discovery led to broader investigations, uncovering a campaign targeting telecommunications providers in the U.S. and abroad. Nine American telecom providers and 80 others reported breaches, with the campaign believed to have lasted one to two years before detection. The hacking group exploited actor-leased virtual private servers, which law enforcement accessed to gain insights and assist affected organizations. CISA emphasized collaboration with private sector partners in uncovering the scope of the attack.
–
January 17, 2025 – by Tony Bitzionis and Alex Perala
Related News
Shanghai University Researchers Claim Success in Quantum Hack of RSA Encryption
Identity News Digest – May 6, 2024
Financial Services Needs Biometrics—and Expert Guidance, Report Suggests
AI Update: A Gentleman’s Agreement With the White House
ID Tech Digest – January 16, 2025
ID Tech Digest – November 18, 2024
Follow Us