As the UK prepares to trial “COVID-status certification” in some domestic settings, cyber-security experts warned that a certificate could be hard to authenticate, and could leave people vulnerable to scammers. In a review published on April 5, the UK government said it would begin to trial COVID-status certification in certain settings, including at large events. The certification could be demonstrated by three means: an up-to-date vaccine status, a negative lateral flow or PCR test, or proof of natural immunity. Eerke Boiten, professor of cyber security at the De Montfort University, said that there could be exploitable loopholes. Identification Mechanism Too Costly Taking proof of a negative test as an example, the certification “will need to be closely tied to the people that actually have taken the test,” Boiten told NTD on Wednesday. This means identification needs to be checked both when the test is done, and when the result is presented to …