Andrew Watson wrote:
The LSE Identity Cards report devoted a whole chapter to the design of such a scheme:
Thanks Andrew, I did read this report when it came out, but didn't print a copy because of its length, and had forgotten that aspect of it. The proposal is in chapter 19, for anyone else interested.
However, such a design might still imply that everyone has a single, officially-sanctioned identity that they use in all circumstances. In real life, having multiple, distinct "facets" to one's identity which cannot be linked together by third parties is often a Good Thing.
That is a good point, but actually the LSE proposal does say that there might be a capability for multiple authenticated identities. Whether this would solve the problem I'm not sure - need to think about this more.