The CIS database holds information on 85 million citizens, and is the government’s main citizen database. It is available to 140,000 users from eight government departments, and to 445 local authorities.
But it is proving difficult for the Department of Work of Pensions to allow thousands of public workers and local authorities to access the CIS Oracle-based database, yet keep it demonstrably secure.
In the Strategic Action Plan for the National Identity Scheme, the Home Office said: “We plan to use DWP’s Customer Information System (CIS) technology, subject to the successful completion of technical feasibility work,” for National Identity Register biographical information.
It added: “DWP’s CIS technology is already used to hold records for everyone who has a National Insurance number – i.e. nearly everyone in the UK.”
The Home Office planned to separate DWP’s citizen data on the CIS information from the biometrics store being built up on the National Identity Register.
Now the government plans to avoid using CIS for the ID card scheme, if possible. A spokesman for the Home Office said using CIS is no more than an option for the future.
He said the possibility of using CIS will not be considered until the system has full security accreditation, which is due in 2010 at the earliest.
Officials had planned to use CIS for the ID card scheme to save money. It would have allowed the government to avoid building an entirely new system and security architecture.
But Computer Weekly has learned that the security of the CIS has been so discredited that officials are keen to distance the ID card scheme from it, even if this means paying for a new system from scratch.