This totally reminds me of SSN use, when initially they were just a number (not secret) to identify a person, and then suddenly people started to use them as a key for authorisation, because someone had a bright idea how to implement things fast/simple/cheap (cheap part comes at expense of others)

▲

lpribis 6 hours ago | parent | next [-]

Rather than being about fast/simple/cheap, I think using SSN as a key was more about the fact that SSN is the only common identifier that almost all US citizens have.

	▲	Dylan16807 5 hours ago \| parent \| next [-]
		I think you're using the word "key" differently than OP. You're talking about identifiers, and they're talking about security. SSNs were a good potential identifier, until the people that needed security cheaped out and started using SSNs as a bad implementation of security. Now they're bad at both purposes!
	▲	breakingcups 5 hours ago \| parent \| prev [-]
		Yes, designing and implementing a new common identifier almost all US citizens have would have been less cheap and fast.

▲

bob1029 3 hours ago | parent | prev [-]

Tax ids were never meant to be used as a form of global identification. If you go look in a real bank core, you'll find this field does not have any uniqueness constraints.

	▲	abustamam 36 minutes ago \| parent [-]
		Why not? Two people with the same tax ID seems like a problem waiting to happen.