FC: Japan's networked national ID system will go live on Aug. 8

From: Declan McCullagh (declanat_private)
Date: Tue May 07 2002 - 22:49:42 PDT

  • Next message: Declan McCullagh: "FC: Is Sen. Joe Biden's no-counterfeit-hologram bill misworded?"

    Previous Politech message:
    
    "Joichi Ito on privacy in Japan: National ID cards and legislation"
    http://www.politechbot.com/p-03426.html
    
    Why am I not surprised to see that Oracle is involved in setting up the 
    database of citizens...
    
    -Declan
    
    ---
    
    Date: Sat, 4 May 2002 08:48:33 -0700
    To: declanat_private
    From: gtat_private (Gohsuke Takama)
    Subject: on Japan's national ID: network and ID card technical details
    
    Hi, judy FYI. I thought some of Politech readers may be interested to know
    Japan's networked national ID system which will be in operation from Aug 8
    this year. I squeezed out a bit of technical details on network systems and
    ID card. I hope it's enjoyable (for finding out possible security flaws,
    etc...).
    
    gt
    
    ---------------------
    
    Jyumin Kihondaicho Network (Resident Master Registry Network)
    - networked national resident ID system.
    - set to be in operation from Aug 5, 2002.
    - based on Jyumin Kihondaicho (Resident Master Registry bill) revised in 1999.
    - gives Japan's resident 11 digit numeric code.
    - naturalized foreigners also apply.
    - numeric code recorded with: Name, Address, Gender, and Birth date.
    - numeric code may be changed by request of the holder.
    
    Network:
    - technical development lead by incorporated foundation Local Authorities
    System Development Center (LASDEC). http://www.lasdec.nippon-net.ne.jp/
    - local gov should finance own equipments, softwares, staff; additional
    financial support from state gov, possibly Soumusho (Ministry of Public
    Management, Home Affairs, Posts and Telecommunications).
    - connects Japan's 3300 local government bodies : Local Government Wide
    Area Network (LGWAN).
    - LGWAN itself is on dedicated line.
    - LGWAN consists of Bridge CA style PKI system.
    - middleware system locates between legacy resident registry system and
    LGWAN communication server at each local gov body; translates data,
    converts Japanese character code.
    - server OS: mainly WindowsNT and Windows2000; UNIX on PKI servers.
    - client OS: mainly WindowsNT, Windows2000, Windows98 and WindowsXP.
    - data base softwares: Microsoft SQL, Oracle.
    
    Client software:
    - Fujitsu: InterCommunity21, http://segroup.fujitsu.com/incom21/
    - NTT Data Advance Jyumin II, http://www.nttdata.co.jp/services/s090078.html
    - others.
    
    Involved IT companies:
    - NTT Data, http://e-public.inforium.nttdata.co.jp/solution/navi.html
    - Fujitsu, http://segroup.fujitsu.com/incom21/
    - Hitachi, http://www.hitachijoho.com/e-adworld/jyumin.html
    - IBM Japan,
    - SAP Japan, http://www.sap.co.jp/company/press/pre_01aug.asp
    - Unisys Japan,
    - NEC, http://www.sw.nec.co.jp/igovcom
    - Toshiba,
    - Mitsubishi Electric,
    - Oki Electric,
    - Nihon Denshi Keisan, http://www.jip.co.jp/PUS/index.html
    - Densan, http://www.ndensan.co.jp/products/government.html
    - Intec, http://www.service.intec.co.jp/egov/index.html
    - OEC, http://www.oec.co.jp/seihin/tops21-e/
    - several others
    
    Business perspectives:
    - Fujitsu offers packaged solution including software, hardware, stand
    alone kiosks;
    - Fujitsu already sold to half of local gov; claims JPY 600B sales in e-gov
    for next 3 years, http://pr.fujitsu.com/jp/news/2002/03/20.html
    - Nihon Denshi Keisan sees JPY 250B/year market in e-gov, estimates sales
    boost 30% than year 2000.
    - many of e-gov IT suppliers offer data center, ASP solutions and call
    centers for local gov bodies; they see outsourcing business in e-gov.
    
    
    Jyumin Kihondaicho Card (Resident Master Registry Card)
    - set to be in operation from summer 2003.
    - smartcard based ID card system.
    - resident obtaining a card is voluntary by paying.
    - estimated card price: JPY 1500
    - card will have encryption, authentication, and signature verification
    functions.
    - card is able to hold multiple applications; available memory space for
    local gov own apps.
    
    Cards:
    - default card: contactless wireless data transaction smartcard.
    - optional selection: contact + wireless combined multi I/F card.
    - based on JICSAP V1.1 smartcard standard,
    http://www.jicsap.com/sysintro/index.html
    - improved security features than JICSAP V1.1, details undisclosed yet.
    - Java card? : unspecified.
    - card's final specification by LASDEC is not set yet.
    - card manufacturer: mainly Kyodo Printing.
    - card printer manufacturer: Kyodo Printing.
    http://www.smartcard.kyodoprinting.com/j-card/j-card.html
    - chip manufacturer: Sony?
    
    *closest available product by Kyodo Printing:
    MX1600KI-J1.1 (Multi I/F type)
    - JICSAP V1.1 smartcard
    - 8 bit CPU, EEPROM 16 kB,
    - encryption: Triple DES + 512 bit RSA
    - wireless transaction: 106 Kbps 13.56 MHz carrier,
    - card/reader distance: 10 cm max (based on standardized design)
    http://www.smartcard.kyodoprinting.com/prod/hybrid2.html
    
    
    
    
    -------------------------------------------------------------------------
    POLITECH -- Declan McCullagh's politics and technology mailing list
    You may redistribute this message freely if you include this notice.
    To subscribe to Politech: http://www.politechbot.com/info/subscribe.html
    This message is archived at http://www.politechbot.com/
    Declan McCullagh's photographs are at http://www.mccullagh.org/
    -------------------------------------------------------------------------
    Sign this pro-therapeutic cloning petition: http://www.franklinsociety.org
    -------------------------------------------------------------------------
    



    This archive was generated by hypermail 2b30 : Wed May 08 2002 - 01:45:39 PDT