Opposition to Real ID escalates in the US

The most recent group to join the mounting opposition against the Real ID bill in the U.S. is the Department of Homeland Security (DHS).

The Real ID bill proposes to create a national standard for state driver’s licences and other forms of state-issued identification.

In comments submitted to the DHS earlier this week, the department’s own Data Privacy & Integrity Advisory Committee called the Real ID Act “one of the largest identity management undertakings in history” and said it raises serious privacy, security and logistical concerns.

“These include, but are not limited to, the implementation costs, the privacy consequences, the security of stored identity documents and personal information,” the committee noted. It also cited other concerns such as mission creep, redress and fairness issues.

The committee was commenting on a set of draft regulations that the DHS released in March for implementing the requirements of the Real ID Act. The deadline for submitting public comments was Tuesday.

The Real ID Act of 2005, passed as part of a wider effort to combat terrorism, sets minimum national standards that states must use when issuing drivers licences and other forms of identification. This includes a photo ID, documentation of birth date and address, proof of citizenship or immigration status and verification of Social Security numbers.

States are required to hold digital images of each identity document for between seven and 10 years. The cards themselves will include all of the standard elements found on most drivers licences today and will be machine-readable to allow for the easy capture of information from the card.

As proposed, the Real ID Act is scheduled to go into effect starting May 2008.

States are not mandated to issue Real ID cards. However individuals would need Real ID-compliant cards for air travel or for getting into federal buildings such as courthouses and nuclear facilities or for receiving federal benefits.

Under the act, all state driver’s licence databases would be linked with each other in one system with shared access.

The proposal to issue Real ID cards has provoked a firestorm of protest from several quarters. Much of the concern stems from fears that the card would become a de facto national ID system that would be hard to manage and even harder to secure.

There are also fears that the cards could eventually be used for a wide set of purposes — including surveillance by the U.S. government.

The DHS committee comments echoed those concerns. The DHS draft regulations, for instance, make no mention of a comprehensive plan for securing the stored identity data that states around the country could use. Neither is there any mention of specific steps that states need to take to prevent the unauthorized access of information from the machine-readable strips on the back of the proposed cards, the committee said.

On the privacy front, the proposed DHS rule does not make states accountable for the personal data that they will be required to collect. The rules also are silent on the issue of how states will respond to and redress inquires and complaints about the use of personal information.

Similarly, the proposed rule does not require state agencies to provide tell consumers about the data collection, the purposes for which it will be used or how it will be stored.

“Failure to provide openness and transparency undermines accountability and trust,” the DHS committee noted in its comments.

Similar concerns were expressed in comments submitted jointly on May 8 by the National Governors Association (NGA), National Conference of State Legislatures (NCSL) and the American Association of Motor Vehicle Administrators (AAMVA). Those comments did express support for Real ID’s stated goal of improving the security and integrity of state-issued driver’s licences and ID cards.

But the proposed May 11, 2008 implementation date is far too rushed and does not give states time to prepare for a proper rollout, the three entities said in their comments. The letter reiterated earlier recommendations from the group, including the need for a “workable extension” of the deadline and additional money for states to implement Real ID requirements. Without those changes, the measure is flawed, they said.

Those concerns come on top of a litany of opposition from other quarters. Just last week, a coalition of more than 40 privacy advocacy groups launched a nationwide campaign to muster public opposition to the bill. In addition, more than 30 states have expressed reservations with the Act, with several such as Montana, Maine, Idaho, Arkansas and Washington saying they will not issue Real ID cards.

Several members of Congress have also expressed their opposition. Sens. Daniel Akaka (D-Ha.) and John Sununu (R-N.H.) in February introduced a proposal called the Identification Security Enhancement Act of 2007 that would correct some of the shortcomings in the Real ID Act. The bill’s co-sponsors include Sens. Patrick Leahy (D-Vt.) and Jon Tester (D-Mont.).

Related content:

Rethinking the ID registry

Collaboration key to protecting government data

U.S. ID theft task force wants stronger laws

Would you recommend this article?

Share

Thanks for taking the time to let us know what you think of this article!
We'd love to hear your opinion about this or any other story you read in our publication.


Jim Love, Chief Content Officer, IT World Canada

Featured Download

Featured Articles

Cybersecurity in 2024: Priorities and challenges for Canadian organizations 

By Derek Manky As predictions for 2024 point to the continued expansion...

Survey shows generative AI is a top priority for Canadian corporate leaders.

Leaders are devoting significant budget to generative AI for 2024 Canadian corporate...

Related Tech News

Tech Jobs

Our experienced team of journalists and bloggers bring you engaging in-depth interviews, videos and content targeted to IT professionals and line-of-business executives.

Tech Companies Hiring Right Now