E-stonia: Antithesis of Russia

President Toomas Hendrik Ilves (pictured) says Estonia does have a national database of data on its citizens, but that individuals have to be notified if their information is accessed. 

It’s not often that a European head of state uses the “radical postmodernist philosophy” of Jacques Derrida and Jean Baudrillard to bash a hostile superpower. But then Toomas Hendrik Ilves, Estonia’s defiantly erudite president of nearly 10 years, is no ordinary head of state.

Ilves is trying to reinvent Estonia as the brightly lit antithesis of Russia, and in today’s confessional age of Edward Snowden, WikiLeaks and the Panama Papers, claims he is baking transparency and accountability into a new kind of digital civic operating system.

Ilves is known for his controversial opinions on everything from Snowden and Internet privacy to cyberwarfare and Vladimir Putin’s postmodernist state, which have apparently, transformed the 63-year-old into a “regional sex symbol”.

The problem with Putin’s Russia, Ilves insists, is that the truth has been entirely devalued. Quoting from Peter Pomerantsov’s 2015 Nothing Is True and Everything Is Possible, the Estonian president says that “all truths have become equivalent” in contemporary Russia. 

With his nearly 70,000 Twitter followers, Ilves has become a kind of global village elder

Ilves came up with this grand idea a quarter of a century ago. When Gorbachev pulled the Soviets out of Estonia in 1991, Ilves asked himself a simple question about the future of a country that had been brutally occupied by its eastern neighbor for a half-century.

 “What do we have?” Ilves asked himself about a country not much larger than Israel with a population less than half that of Silicon Valley.

His answer was equally simple. What the 1.3 million Estonians had, Ilves concluded in 1991, was technology. He recognized that the Soviets, despite their appropriation of most of Estonia’s wealth, had bequeathed a decent educational legacy, especially in mathematics. Estonia’s future, Ilves thus imagined a quarter of a century ago, was hi-tech, especially personal computers and the Internet.

Ilves – a trained psychologist with degrees from Columbia and the University of Pennsylvania – is also self-schooled in computer science. He proudly recalls learning to program as a 13-year-old schoolboy in New Jersey and being among the first geeks to own Apple’s iconic 2E personal computer. By 1993, he was already arguing that Estonia “should computerize all schools” and by 1997 had championed putting all Estonian schools online and establishing publicly funded Internet centers around the country.

Yet despite its multibillion-dollar success stories – including Skype, Playtech and more startups per person than anywhere else in the world – Estonia isn’t just “E-Stonia”, some Baltic version of Silicon Valley or Israel. The little Baltic republic – with the counterintuitive Ilves at its helm – is actually building something more ambitious than just another tightly knit ecosystem of entrepreneurs, investors and technologists.

Estonia is pioneering a model for a democratically transparent 21st-century networked society – the opposite of Putin’s opaque virtual reality show – by giving everyone a digital license plate. “Our goal is to make it impossible to do bad things,” he explains. “Six billion lanes, and nobody has a license plate except the Estonians.”

Is Estonia becoming a 21st-century panopticon?

That is Ilves’ grand – one might even say baroque – idea. Under his presidency over the past 10 years, Estonia has pioneered a series of technological reforms to not only bring everyone online but also to create a national database. The system is built around the online ID card, introduced in 2002, in which its citizens’ information – from healthcare records to tax filings to educational qualifications to real estate documents – is stored in a seamlessly integrated national database.

But what about privacy in this database of its citizens’ intentions?

“Our obsession with privacy is misguided,” Ilves – who is, of course, anything but indifferent to 20th-century Big Brother surveillance regimes – insists. The Estonian system, he explains, is based on “trust”. While the national database can be accessed by the authorities, he stresses, the citizen has to be notified when their records are observed. So if the system hasn’t been built on Blockchain technology, it nonetheless operates on Blockchain-like principles – creating a data system that can’t be altered with notifying both the authorities and citizens.

This is what Ilves calls a “Lockean contract” between digital citizen and the government. The 21st-century networked sovereign, he says, is the guarantor of what he calls “data integrity”. While the government can’t access our data without our knowledge, the citizen no longer has any anonymity in this system.

Rather than privacy from the state, the real concern, Ilves insists, is the integrity of data. Instead of worrying about somebody else knowing our blood type, we should be worried when they start “fiddling” with that data to change our blood type.

Snowden ‘harmed the EU privacy debate’

This focus on data integrity is why Ilves is much less concerned with Snowden’s NSA revelations than either last year’s Office of Personnel Management (OPM) hack in which the data of 21 million people was stolen, or with the ongoing fight between Apple and the FBI over a back door to the iPhone’s data.

Ilves believes that paranoia over the Snowden revelations “harmed the debate” about privacy in the EU. The NSA, he quipped, wasn’t “mining the deep packets of Bohemian poets sending emails to their girlfriends”. In contrast, the OPM and Apple cases are both about trust. Giving the authorities a blanket and unverifiable back door on the iPhone, for example, means that citizens can no longer trust either their government or Apple.

The Estonian model of digital development is “scalable”, Ilves says, although he acknowledges that its political side is much easier to build in a small country like Estonia. But, in light of the revelations from Snowden and other whistleblowers, can we ever really trust the system – even in a tiny country like Estonia?

Guardian

« US Spies Want A Laser Gun Bomb Detector
One Massive Hack Last Year - Nobody Noticed! »

CyberSecurity Jobsite
Check Point

Directory of Suppliers

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

Bsquare

Bsquare

Bsquare DataV software and engineering services help enterprises implement business-focused Internet of Things systems.

CSIRT Italia

CSIRT Italia

CSIRT Italia is the national Computer Security Incident Response Team for Italy.

Marcus Donald People

Marcus Donald People

Marcus Donald People is a UK IT recruitment specialist covering the following sectors: Infrastructure & Cloud, Information Security, Development, Business transformation.

Tier1Asset (T1A)

Tier1Asset (T1A)

T1A is Europe’s leading IT refurbisher. We offer certified data erasure using blancco on site and at our facilities, providing environmentally sound disposal of your used equipment.

Riddle&Code

Riddle&Code

Riddle&Code is a product-led services company specializing in onboarding industries to Web3. The team's mission is to provide a trusted connection between the digital and physical worlds.

Plug and Play Tech Center

Plug and Play Tech Center

Plug and Play is the ultimate innovation platform, bringing together the best startups and the world’s largest corporations.

ZecOps

ZecOps

ZecOps is a cybersecurity automation company offering solutions for servers, endpoints, mobile devices, and custom devices.

StartupXseed Ventures

StartupXseed Ventures

StartupXseed Ventures is a smart capital provider for Deep Tech, B2B, Early Stage Startups. We support, NextGen Tech Entrepreneurs, who have potential to deliver the outsized growth.

Tetra Tech

Tetra Tech

Tetra Tech is a cybersecurity leader with extensive experience in supporting enterprise-wide programs and systems across multiple business lines from industrial control systems to health IT.

Swedish Incubators & Science Parks (SISP)

Swedish Incubators & Science Parks (SISP)

Swedish Incubators & Science Parks (SISP) is the Swedish industry association for Swedish incubators and science parks.

SecureData

SecureData

SecureData provide professional data recovery services, digital forensics, data recovery software and FIPS 140-2 Level 3 Validated hardware encrypted drives.

Clearnetwork

Clearnetwork

Clearnetwork specializes in managed cybersecurity solutions that enable both public and private organizations improve their security posture affordably.

SecureClaw

SecureClaw

SecureClaw offers specialized cybersecurity consultation, various products, and a range of services to meet your company's business domain needs.

Evervault

Evervault

Evervault provides engineers easy solutions to complex data security and compliance problems.

SecuCenter

SecuCenter

Secucenter is a trusted partner for SOC services, offering security expertise in a cost-effective way.

rConfig

rConfig

rConfig is a platform for automated network configuration management and backup. It enables quick rollbacks to prevent outages and ensures easy auditing.