E-stonia: Antithesis of Russia

Uploaded on 2016-05-06 in NEWS-Cybersecurity News, GOVERNMENT-National, FREE TO VIEW

President Toomas Hendrik Ilves (pictured) says Estonia does have a national database of data on its citizens, but that individuals have to be notified if their information is accessed. 

It’s not often that a European head of state uses the “radical postmodernist philosophy” of Jacques Derrida and Jean Baudrillard to bash a hostile superpower. But then Toomas Hendrik Ilves, Estonia’s defiantly erudite president of nearly 10 years, is no ordinary head of state.

Ilves is trying to reinvent Estonia as the brightly lit antithesis of Russia, and in today’s confessional age of Edward Snowden, WikiLeaks and the Panama Papers, claims he is baking transparency and accountability into a new kind of digital civic operating system.

Ilves is known for his controversial opinions on everything from Snowden and Internet privacy to cyberwarfare and Vladimir Putin’s postmodernist state, which have apparently, transformed the 63-year-old into a “regional sex symbol”.

The problem with Putin’s Russia, Ilves insists, is that the truth has been entirely devalued. Quoting from Peter Pomerantsov’s 2015 Nothing Is True and Everything Is Possible, the Estonian president says that “all truths have become equivalent” in contemporary Russia. 

With his nearly 70,000 Twitter followers, Ilves has become a kind of global village elder

Ilves came up with this grand idea a quarter of a century ago. When Gorbachev pulled the Soviets out of Estonia in 1991, Ilves asked himself a simple question about the future of a country that had been brutally occupied by its eastern neighbor for a half-century.

 “What do we have?” Ilves asked himself about a country not much larger than Israel with a population less than half that of Silicon Valley.

His answer was equally simple. What the 1.3 million Estonians had, Ilves concluded in 1991, was technology. He recognized that the Soviets, despite their appropriation of most of Estonia’s wealth, had bequeathed a decent educational legacy, especially in mathematics. Estonia’s future, Ilves thus imagined a quarter of a century ago, was hi-tech, especially personal computers and the Internet.

Ilves – a trained psychologist with degrees from Columbia and the University of Pennsylvania – is also self-schooled in computer science. He proudly recalls learning to program as a 13-year-old schoolboy in New Jersey and being among the first geeks to own Apple’s iconic 2E personal computer. By 1993, he was already arguing that Estonia “should computerize all schools” and by 1997 had championed putting all Estonian schools online and establishing publicly funded Internet centers around the country.

Yet despite its multibillion-dollar success stories – including Skype, Playtech and more startups per person than anywhere else in the world – Estonia isn’t just “E-Stonia”, some Baltic version of Silicon Valley or Israel. The little Baltic republic – with the counterintuitive Ilves at its helm – is actually building something more ambitious than just another tightly knit ecosystem of entrepreneurs, investors and technologists.

Estonia is pioneering a model for a democratically transparent 21st-century networked society – the opposite of Putin’s opaque virtual reality show – by giving everyone a digital license plate. “Our goal is to make it impossible to do bad things,” he explains. “Six billion lanes, and nobody has a license plate except the Estonians.”

Is Estonia becoming a 21st-century panopticon?

That is Ilves’ grand – one might even say baroque – idea. Under his presidency over the past 10 years, Estonia has pioneered a series of technological reforms to not only bring everyone online but also to create a national database. The system is built around the online ID card, introduced in 2002, in which its citizens’ information – from healthcare records to tax filings to educational qualifications to real estate documents – is stored in a seamlessly integrated national database.

But what about privacy in this database of its citizens’ intentions?

“Our obsession with privacy is misguided,” Ilves – who is, of course, anything but indifferent to 20th-century Big Brother surveillance regimes – insists. The Estonian system, he explains, is based on “trust”. While the national database can be accessed by the authorities, he stresses, the citizen has to be notified when their records are observed. So if the system hasn’t been built on Blockchain technology, it nonetheless operates on Blockchain-like principles – creating a data system that can’t be altered with notifying both the authorities and citizens.

This is what Ilves calls a “Lockean contract” between digital citizen and the government. The 21st-century networked sovereign, he says, is the guarantor of what he calls “data integrity”. While the government can’t access our data without our knowledge, the citizen no longer has any anonymity in this system.

Rather than privacy from the state, the real concern, Ilves insists, is the integrity of data. Instead of worrying about somebody else knowing our blood type, we should be worried when they start “fiddling” with that data to change our blood type.

Snowden ‘harmed the EU privacy debate’

This focus on data integrity is why Ilves is much less concerned with Snowden’s NSA revelations than either last year’s Office of Personnel Management (OPM) hack in which the data of 21 million people was stolen, or with the ongoing fight between Apple and the FBI over a back door to the iPhone’s data.

Ilves believes that paranoia over the Snowden revelations “harmed the debate” about privacy in the EU. The NSA, he quipped, wasn’t “mining the deep packets of Bohemian poets sending emails to their girlfriends”. In contrast, the OPM and Apple cases are both about trust. Giving the authorities a blanket and unverifiable back door on the iPhone, for example, means that citizens can no longer trust either their government or Apple.

The Estonian model of digital development is “scalable”, Ilves says, although he acknowledges that its political side is much easier to build in a small country like Estonia. But, in light of the revelations from Snowden and other whistleblowers, can we ever really trust the system – even in a tiny country like Estonia?

Guardian

« US Spies Want A Laser Gun Bomb Detector
One Massive Hack Last Year - Nobody Noticed! »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

CERT.br

CERT.br

The Brazilian national Computer Emergency Response Team

BitSight Technologies

BitSight Technologies

BitSight transforms how companies manage information security risk with objective, verifiable and actionable Security Ratings.

Cloudmark

Cloudmark

Cloudmark is a trusted leader in intelligent threat protection against known and future attacks, safeguarding 12 percent of the world’s inboxes from wide-scale and targeted email threats.

Euro-Recycling

Euro-Recycling

Euro-Recycling is a leading UK provider of Secure On-Site Data Media Destruction Services.

Alpine Security

Alpine Security

Alpine Security provides penetration testing, security assessments and cybersecurity training services.

David Hayes-Export Controls

David Hayes-Export Controls

David Hayes-Export Controls provides assistance to companies affected by export controls or who are considering entering the market but are unsure of the commercial and regulatory implications.

Cybersecurity Center for Secure Evolvable Energy Delivery Systems (SEEDS)

Cybersecurity Center for Secure Evolvable Energy Delivery Systems (SEEDS)

SEEDS conducts research and develops innovative cybersecurity technologies, tools, and methodologies that advance the energy sector’s ability to survive cyber incidents.

DeNexus

DeNexus

DeNexus is the leading provider of cyber risk modeling for industrial networks. Our Mission is to build the Global Standard for Industrial Cyber Risk Quantification.

Mandiant

Mandiant

Mandiant deliver dynamic cyber defense solutions powered by industry-leading expertise, intelligence and innovative technology.

Cisco Systems

Cisco Systems

Cisco helps seize the opportunities of tomorrow by proving that amazing things can happen when you connect the unconnected.

Acronis

Acronis

At Acronis, we protect the data, applications, systems and productivity of every organization – safeguarding them against cyberattacks, hardware failures, natural disasters and human errors.

Assura

Assura

Assura provides innovative cybersecurity advisory and managed services to all industries including government, healthcare, financial, manufacturing, and transportation sectors.

Cybersecurity Elastic Laboratory (CEL)

Cybersecurity Elastic Laboratory (CEL)

CEL specialize in providing top-tier services in vulnerability diagnosis and penetration testing, offering a comprehensive suite of solutions to mitigate cyber risks.

Velstadt Cybersecurity

Velstadt Cybersecurity

Velstadt's team of experienced professionals works on identifying vulnerabilities, analyzing threats, and developing strategies to ensure the highest level of security.

SecuLore

SecuLore

An innovator in public-safety-focused cybersecurity, SecuLore is dedicated to protecting critical infrastructure from cyber attacks.

OpenZiti

OpenZiti

OpenZiti is the world’s most used and widely integrated open source secure networking platform. OpenZiti provides both zero trust security and overlay networking as pure open source software.