WRITTEN ON December 16th, 2004 BY William Heath AND STORED IN Uncategorized

Kim Cameron has posted up an identity and privacy reading list from Stefan Brands. See below. How many MPs speaking in Monday’s identity systems debate won’t even know the title of a single one of these books/papers?

The other essential read before Monday is the Information Commissioner’s position. Shame on anyone who claims to understand the issues without taking this on board.
(see Kim’s page for all links)

1. For a high-level introduction, see the section titled “Authentication and Identity Disclosure” in “Privacy and Human Rights 2004″, Electronic Privacy Information Center and Privacy International, ISBN 1-893044-23-8, 775 pages.

2. A visionary paper from 1985: “Showing Credentials Without Identification: Signatures Transferred Between Unconditionally Unlinkable Pseudonyms,” David Chaum, Advances in Cryptology – EUROCRYPT ’85, Proceedings; LNCS 219; Springer Verlag, pages 241-244.

3. “Identity Management Systems (IMS): Identification and Comparison Study,” Independent Centre for Privacy Protection (ICPP), Schleswig-Holstein and Studio Notarile Genghini (SNG), 2003-09-07.

4. “Who Goes There? Authentication Through the Lens of Privacy”, National Academy Of Sciences, Stephen T. Kent and Lynette I. Millett (Editors), 165 pages, 2003.

5. “Non-Intrusive Cross-Domain Identity Management”, Stefan Brandss, keynote address at 3rd Annual PKI R&D Workshop, April 2004, Gaithersburg, MD.

6. PRIME project: See press release and general architecture considerations.

I’ll add Stefan’s own book:

7. “Rethinking Public Key Infrastructures and Digital Certificates”, Stefan Brandss, MIT Press, August 2000

And J. C. Cannon’s new book:

8. “Privacy: What Developers and IT Professionals Should Know”, J. C. Cannon, Pearson Books, October 2004