The US government plans to establish a national identity theft law enforcement centre and create a public education campaign about the dangers of ID theft, as part of a series of recommendations released by a taskforce.
The President's Identity Theft Task Force, created by George Bush in May 2006, also called for national data protection standards for private companies that collect and sell personal information, as well as a national law requiring companies to tell customers when their personal data has been compromised.
US government agencies should stop the unnecessary use of Social Security numbers, and the US government should step up its efforts to educate agencies about data security best practices and regulations in place, the task force recommended.
ID theft is a "personal invasion, done in secret, that can rob innocent men and women of their good names", US attorney general Alberto Gonzales said.
The task force recommendations target both private companies and government agencies. Recent news reports of data breaches at government agencies are "problematic", Gonzales said.
The US Congress debated several data breach notification bills but failed to pass them during its last session. Five data breach notification bills have been introduced this year.
The task force report, available at the new web site IDtheft.gov, includes 31 recommendations.
A comprehensive approach is needed to combat ID theft, said Deborah Platt Majoras, chairwoman of the US Federal Trade Commission and co-chairwoman of the ID theft task force.
"It is a blight on America's privacy and security landscape," she said. "It erodes a critical element of our economy -- trust in a person's good name and credit."
In addition to recommendations targeting government agencies and private companies, the task force report targets criminals. The report focuses on the "entire life cycle" of ID theft, Majoras said.
The report calls on the US attorney's offices to designate a prosecutor who will focus on ID theft, and it recommends tougher laws for ID theft, including those targeting spyware makers and keystroke loggers. The US should also create new sentencing guidelines that make it easier for judges to increase sentences for ID thieves who steal multiple identities, the report said.
Some of the task force recommendations have already been implemented, and others should be implemented within the next year, Gonzales said. The task force has made several interim recommendations, including the creation of nationally accepted police reports that victims could fill out online, and a change in US law that would require those convicted of such crimes to pay victims for the time used to clear up identity problems.
Find your next job with computerworld UK jobs