BankID is so ass, the one we have here in Finland is a bit better, but the one we have in Estonia is the best.
The Estonian one is by far the most comfortable to use of the three, with even a working and maintained Linux version. It is also tied to the PCKS#11 certificate stored in your ID card, instead of a corporate bank account.
Back when BankID was young, in the wee 00s, it was actually just a certificate on your computer. The management software for this is still around I believe, it’s called BankID Säkerhetsprogram. The Linux support for it was dropped in 2014.
The reason it took off the way it did is because it was in early, and the banks backed it. The government has been really slow implementing their own solution. They had DIGG work on it for a while, but then transferred the assignment to Polismyndigheten.
Yes but the UX works better much of the time. Downside of course is that you can’t sign documents without an Internet connection, if that’s something you may need to do. And the fact that you need a phone
Yes, of course. Alternatives consodered, I think the Estonian eID is really well thought out and implemented in maybe the best way possible. Really pleased with it.
That solves one issue, the other being how buggy it can be to use in the browser. The file signing feature is separate software (which has an official Linux port!), but to log into your bank, etc, browsers often pre-decide for you which certificate you want to use and then complain that it’s not present. Perhaps it’s changed now, I haven’t used it much in quite a few years now because Mobiil-ID and Smart-ID have just worked 99% of time.
BankID is so ass, the one we have here in Finland is a bit better, but the one we have in Estonia is the best.
The Estonian one is by far the most comfortable to use of the three, with even a working and maintained Linux version. It is also tied to the PCKS#11 certificate stored in your ID card, instead of a corporate bank account.
Back when BankID was young, in the wee 00s, it was actually just a certificate on your computer. The management software for this is still around I believe, it’s called BankID Säkerhetsprogram. The Linux support for it was dropped in 2014.
The reason it took off the way it did is because it was in early, and the banks backed it. The government has been really slow implementing their own solution. They had DIGG work on it for a while, but then transferred the assignment to Polismyndigheten.
It’s annoying to have to have a card reader though, so everyone just uses Smart-ID or Mobiil-ID anyway. But at least we have the option not to.
Mobiil-ID and Smart-ID just register a new certificate to your ID, so it’s the same mechanism, different UX :)
Yes but the UX works better much of the time. Downside of course is that you can’t sign documents without an Internet connection, if that’s something you may need to do. And the fact that you need a phone
Yes, of course. Alternatives consodered, I think the Estonian eID is really well thought out and implemented in maybe the best way possible. Really pleased with it.
Kuradi lahe
I’m pretty sure that you can use something like a YubiKey as a PKCS#11 certificate store, if the issue is just the card reader form factor.
kagis
Yeah:
https://developers.yubico.com/yubico-piv-tool/YKCS11/
That solves one issue, the other being how buggy it can be to use in the browser. The file signing feature is separate software (which has an official Linux port!), but to log into your bank, etc, browsers often pre-decide for you which certificate you want to use and then complain that it’s not present. Perhaps it’s changed now, I haven’t used it much in quite a few years now because Mobiil-ID and Smart-ID have just worked 99% of time.