Quick Summary Although the EU’s approach to COVID-19 health certificates (the Digital Green Certificate) implements existing technology and supports both paper and digital credentials, offline usage, and speedy verification, it makes a number of security and privacy compromises. Our analysis found it to be inherently centralised and better suited for low assurance use cases. Background...Read More

Today, Evernym and 28 other founding member organizations launched the Trust over IP Foundation, a new project hosted by the Linux Foundation to enable the trustworthy exchange and verification of data between any two parties on the Internet.  The ToIP Foundation’s mission is to provide a robust, common standard that gives people and businesses the...Read More

Add Australia to the list of countries cracking down on tech giants in light of rising concerns over data privacy. The Australian Competition and Consumer Commission (ACCC) has released its Digital Platforms Inquiry, a 619-page report on the ACCC’s 18-month study of the problems associated with the dominance of Facebook and Google as the preeminent...Read More

“…governments should provide an electronic identity system and other digital infrastructure to support both teams across government and organisations beyond the public sector. In the internet era, governments should see software and data as an essential, enabling platform for others’ activity, with new security technologies now addressing previous concerns over identity systems.” – Foreward by...Read More

KYC (Know Your Customer) and AML (Anti-Money Laundering) regulations have existed in one form or another for the greater part of the last two decades. Launched to protect the financial system from being used to fund and conceal the profits from criminal activity, KYC/AML regulations originally came without standards specifying the types of information that...Read More