Gemalto to replace representative in Estonia

Communication between Estonian ID-card manufacturer Gemalto and the state will no longer be coordinated by Andreas Lehmann from December. Lehmann attracted a lot of attention last week when he claimed he had informed the Estonian authorities of the ID-card security vulnerability much earlier.

Press representative of the Police and Border Guard Board (PPA) told ERR that Gemalto has notified the agency in writing that it will have a new contact person from December 2 - writes

Gemalto’s recent representative, executive manager of Estonian subsidiary TRÜB Baltics AB Andreas Lehmann took to the media on November 22, claiming he informed Estonian state agencies of the ID-card security risk on June 15, much earlier than the latter have claimed.

Authorities resolutely refuted Lehmann’s claims and said they received the information from Czech researchers late on August 30 that caused them to contact Gemalto.

PPA Director Elmar Vaher said in an interview to the Geenius news portal that Lehmann did not lie to the public, and that technical matters pertaining to the ID-card were discussed in June, but added they were not connected to the vulnerability in question.

Asked whether these technical matters overlapped with the discovery by the Czech researchers, Vaher said: “No, definitely not.”

However, the director answered “absolutely” when asked whether a potential security risk was discussed in June.

Vaher could not say whether the June meeting took place in person or was conducted over Skype, nor whether it was recorded.

Information available to Postimees suggests Gemalto learned of the vulnerability from chip manufacturer Infineon on May 24.

Learning of risks in time is important as it gives participants time to address the problem before the likelihood of the risk manifesting reaches a critical level and problematic cards have to be closed.

The State Information System’s Authority (RIA) said it only received vague hints from Gemalto’s representative in June, while meetings were not recorded, explanations by RIA’s eID department chief Margus Arm and the PPA suggest.

RIA Director General Taimar Peterkop said last week that RIA received no information from Lehmann concerning ID-card security risks – neither verbally or in writing.

Estonia decided to close 760,000 problematic ID-cards in early November before most of them could be updated. Online updates took time as interaction between information systems progressed slowly. ID-card certificates were closed following a proposal by the PPA.

Software to address potential vulnerabilities was paid for by the Estonian government, not card manufacture Gemalto. Postimees’ information suggests Estonia has filed a €20 million claim against the company.

Representatives of the government have consistently referred to the incident as a “realistic theoretical security vulnerability” – something that is impossible to universally understand.

Read also more news of Tallinn on our site.

If you notice an error, highlight the text you want and press Ctrl + Enter to report it to the editor
No rates yet
I recommend
No recommendations yet


Post your comment to communicate and discuss this article.

Chairman of the Estonian Chamber of Commerce and Industry and one of the owners of construction group Nordecon, Toomas Luman, finds that a prime ministerial candidate should first and foremost be able to answer the question of what will become of the demographic crisis in Estonia. The businessman sees controlled introduction of foreign labor as the solution. A digital construction cluster was created in Estonia a few years back to bring innovation to the s...
Last year saw 27,125 registered offenses, up 0.5 percent from the year before. Violent crime was up by 12 percent to 8,249 offenses. PHOTO: Dominic Lipinski / PA Wire / Press Association Images / Scanpix Growth was biggest for domestic violence – the police launched criminal proceedings in 3,607 cases that constitutes an increase of more than one-third – annual growth of 37 percent from 2,632 cases in 2017. At the same time, reports of domestic violence we...
TALLINN - Ahead of the withdrawal of the United Kingdom from the European Union, tens of thousands of British citizens have chosen the citizenship of some other country, but only one Brit has recently chosen an Estonian citizenship. Spokespeople for the Ministry of the Interior told BNS that only one British citizen submitted an application for Estonian citizenship last year and the applicant was also granted the citizenship. Before that, no Brits had soug...
TALLINN - Experts from Finland, Denmark, Norway and the Netherlands highlighted the importance of decentralization and granting local governments greater decision-making powers at a conference titled "Strong local government -- strong state?" in Tallinn on Wednesday.  All Nordic countries have chosen a model granting local governments significant decision-making powers, thus the central government does not prescribe how local governments are to fulfill the...
The language learning application Drops by game developer Planb Labs, established in Estonia by Hungarian founders, was named Google Play's best app of 2018. With the number of downloads surpassing 10 million, Drops was named Google's app of the year as the revenue of Planb Labs, a company registered in Estonia, increased fivefold, CNBC said. The developer's revenue grew from €335,000 in 2017 to €1.7 million in 2018. The company's shareholders include Hung...
TALLINN - The Estonian Health Board has banned the distribution of chlorine dioxide, also marketed as the Miracle Mineral Supplement (MMS), the A-component of an unused product, meaning the sodium chlorite solution, must be taken to a hazardous waste collection facility. Ester Opik, head of the Health Board's North regional department, said that the banning of the distribution of the product was caused by the fact that MMS, distributed as a cosmetics produ...
Nature cannot abide a vacancy, as the saying goes. If just one year ago, Estonia was battling the sale of MMS and the practice of giving it to children, a new “miracle cure” called Advanced TRS has appeared on the market now. Even though the make-up of the substance is different, the promise to cure autism and cleanse the body of heavy metals, which kind of extreme detox is accompanied by severe side-effects, sounds all too familiar. TRS is recommended to...
Allied NATO battalions will soon mark two years serving in the Baltics. They have worked better than expected but would need prepositioned heavy weaponry and a functional contingency plan in case of a crisis, a report by the International Center for Defense and Security (ICDS) finds. “We do not know how Russia would have acted had we not welcomed allies in Estonia, Latvia, Lithuania and Poland in 2017. I’m afraid they would have tested our resolve,” one of...
The time of filing income tax returns is nearly upon us. The new income tax system, in effect since last year, will obligate many women who went on maternity leave toward the end of the year to make additional income tax payments, while those who give birth in the middle or at the beginning of the year have no such obligation. What this means is that some women will owe the state simply for giving birth “at the wrong time”. Laura Roop, who went on maternit...