Contribution of electronic identity

eID is fully automatic

No person has got access to it. This means:

• User doesn’t have to handle particular eID in any way.
• Provider avoids the risk of unauthorized appliance of the user (primarily through social attack), user support to fix user’s mistakes becomes redundant etc.

eID is independent from physical identity (anonymous)

Informational linkage between eID and user information doesn’t exist at all. This means:

• When using eID, no exposure to any privacy threat is warranted to the user.
• Provider is given security for no eID compromisation caused by user’s incautious handling of private data (e. g. unprotected social networks, e-mails etc.).

eID link to information about physical identity is credible

Linkage between information about physical identity and PEIG is permanent and safe. This means:

• User can rely on the fact that his personal data are processed by the person whom they’ve been handed over. Their accuracy has to be proved just once.
• Service provider is the only one owning the information with regard to user’s physical identity (he knows whom it’s been passed on to / who it’s been obtained from). He has got full control over the process of gaining and verification of information – its link to PEIG never modifies when particular eID does.

eID is not global

It’s applicable for one single PEIG-AIM pair, that is, between one user and one service provider. This means:

• User doesn’t have to be afraid the data related to his behaviour could be exploited through connection of his various activities to different service providers (e. g. family to profession or interest).
• Service provider can operate eID features according to actual need independently of third parties (competition, providers of certification services or identity providers) without receiving negative response from clients.

eID is unique (for selected cryptographic protocols)

Cryptography ensures the existence of just one subject on the „other“ side and recognition of (prospective) invader. This means:

• User has got guarantee of communication with the „right” service provider and of exclusion of possible eID abuse by an invader. Providing that the user convinces himself about communicating with the proper provider (in case the provider won‘t make a serious mistake in usage of ALUCID^®), it’s assured that nobody ever impersonated / impersonates the user in former or future communication.
• Service provider can be certain of communication with the „right“ user and of exclusion of possible eID abuse by an invader. Assuming that the service provider convinces himself about communicating with the proper user (in case the user won’t make a serious mistake in usage of ALUCID^®), it’s assured that nobody ever impersonated / impersonates the provider in former or future communication.

ALUCID^® is a warrant for long-term stability and safety

Under working condition it enables switch-over to superior cryptographic methods with better parameters or to even more modern cryptographic protocols. This means:

• Prompt possibility for the user to innovate his PEIG in compliance with his requirements and decision, independently of innovations carried out by service providers (or other users). Previous secure links are preserved.
• Service provider is granted the option to innovate his part of the ALUCID^® technology (AIM) independently of users‘ PEIG innovations and other service providers. Previous secure links are preserved.