JNCTN’s Post

JNCTN reposted this

View profile for The Hon. Victor Dominello, graphic

Co-Founder @ ServiceGen | Service Transformation Expert | Keynote Public Speaker 🎤

data ➡️ attestation Address ➡️ is a NSW resident Payroll slip ➡️ is employed Passport no ➡️ is an Australian citizen Date of birth ➡️ is above 18 Bank statement ➡️ has Australian bank account Driver Licence no ➡️ is authorised to drive You can see from above - how sending copies of our drivers licence, passport, bank statement etc would enable bad actors to quickly build a detailed profile about us 🟰 a significant cyber risk 😞 🔹 A bouncer doesn’t need our full date of birth - unless an astrology read is also on offer 🧐 they just need to make sure you are above 18 years 🔹same rationale applies with so many other instances when we are asked to provide a copy of our licence, passport etc With digital ID and verifiable credentials - we can move into a far more secure world. In essence - this is what the Trust Exchange (TEx) that Min Bill Shorten recently announced is aimed to do … replacing sensitive data - with an attestation ✅ Will provide a further update soon on some of the pilots underway at Services Australia

  • No alternative text description for this image
Dejan Simovic

Director/Principal at DESIM PTY LTD Architect, Passive House Certified Designer,, Circular Economy Advisor

1mo

When government doesn't trust its citizens there is a bureaucracy and lawyers to bring the order. Why is 18 years so critical? Would Australians not provide help to those who don't have certification of citizenship? Do we all need to drive? Why do I need to have regular income? And why do I need to have it in bank? Am I not entitled to existence and happiness if I am not employed?

Denis Fuelling

Executive Leader/ Problem Solver / Thought Partner/ Change Agent / Keynote Speaker

1mo

This is a great step forward. You could also add : 1. Completed tertiary studies at bachelors level 2. Completed tertiary studies at masters level etc This would deal with employers who request copies of degree qualifications.

Laurel SilkCharm Papworth

AI Course Facilitator (AIM) | ChatGPT Keynote Speaker & AI Training | Metaverse | Sydney, Kuala Lumpur & Singapore Workshops | University Lecturer

1mo

DiD needs to be on chain (blockchain) with no click wrapper (forced to rush thru default settings) and clear datasheets (purpose & fit for use) for datasets (and downstream 3rd party usage). Don’t bring in DiD before regulations. Look to Europe?

Sean Borg

Managing Director - Oceania at Corsight AI

1mo

All these documents are available on the dark Web, why don't we simply use face id with liveness, now we remove id hacking. Faces with liveness underscored to iso 42001 and GDPR compliance will be the new force for good. Happy to discuss further if anyone is keen to better understand or challenge me on privacy and ethics.

Derek Bell

As a Marketing Automation Specialist, I help Modern Marketers get more from Oracle & Salesforce marketing automation.

1mo

We’ve done this in the past for clients regarding email marketing and segment marketing.The marketing automation system is integrated to the CRM and possibly ERP etc. Marketers don’t need to know a person earns $120k, they just need to know the person is in a band of income between $100k - $150k. The detailed, personal data remains in the CRM with the integration surfacing people who meet a set criteria. We usually assign ratings or personas to represent groups of data for segment builds.

Adrian Bennett

Data Governance | Director | GAICD | AGIA

1mo

This is excellent. Will it be incorporated into legislation that is in review at the moment, e.g. the revised anti-money laundering legislation, or proof of working rights which is required every time someone changes their employer? Too many things require handing this documentation over. Data minimisation should be a guiding principle.

Jake MacMullin

Managing Director, Stripy Sock

1mo

It’s so great to hear that there are plans to support verifiable credentials to allow relying parties to verify claims I make about myself (that I’m over 18 or permitted to drive) without needing my personal information. When done well such a system would also allow me to choose to present my credentials to a relying party such that they could be verified as authentic without the issuer being involved in each verification. This is a subtle but important distinction. People will be more likely to use verifiable credentials if they were confident that there wasn’t a central (government) system involved each time the credential was used. See for example Apple’s Verify with Wallet APIs: “neither the state issuing authority nor Apple can see when and where a user shares their license or ID” https://developer.apple.com/wallet/get-started-with-verify-with-wallet/

See more comments

To view or add a comment, sign in

Explore topics