FB pixel

Claims about biometrics accuracy raise questions but get repeated

Claims about biometrics accuracy raise questions but get repeated
 

A LinkedIn post by a security awareness professional has raised eyebrows in biometrics circles, some of them indirectly, suggesting that the technology comes with several problems.

Roger Grimes writes that biometric authentication can be good if well implemented, but still comes with concerns.

His article was picked up by Computer World Columnist Evan Schuman, who argues that biometric authentication systems, “as currently implemented, are little more than convenience.” At least one more publication has since picked up the thread.

Grimes identifies accuracy, hacking, stolen images or templates, the germs that go along with touch-based systems, privacy and surveillance, and bias as potential problems with using biometrics. He also provides advice for addressing several of these concerns.

Schuman seems to discuss authentication security largely via reference to phone-unlocking applications.

In both cases, the wording appears to be causing confusion in some quarters, if not all around.

Grimes asks “How can any system that relies on my fingerprints truly know that who is submitting them is me?” The potential of ‘liveness detection’ as an answer is not discussed. Grimes notes the usefulness of a second authentication factor

Curiously, he writes that NIST reports show the most accurate biometric solutions tested have error rates of 1.9 percent, but links to the FRVT and a test of fingerprint solutions from 2014, which appears to be where the statistic is drawn from.

Do not buy any biometric solution from 2014 if you are highly concerned about security.

Further, most biometrics experts will point out that accuracy is not properly expressed as a single number.

Acuity Market Intelligence Principal Analyst and Chief Strategist Maxine Most responded on LinkedIn with direct responses to four criticisms from Schuman. Most points out that there are ways to preserve privacy while using the cloud, and that templates can be revoked or canceled, among methods of mitigating biometric data theft.

“This POST perpetuates a series of debunked #biometric myths,” Most writes. “Like every other #security #technology, it’s not the failure of the technology but the failure of the implementation that is at issue. . Poor implementations of biometrics work poorly Good implementations of biometrics work well.”

“There are plenty of ways of deploying biometrics securely,” Schuman acknowledges.

If the core argument is that single-factor authentication without presentation attack detection is not highly secure, the day is won. If the argument is that there is an approach that organizations should be using instead of biometrics for better security, we are still waiting for the big reveal.

Article Topics

 |   |   |   | 

Latest Biometrics News

 

Biometric authentication invaluable, set to further enhance security in Africa

A webinar held during the Digital ID Hackathon for Africa organized by Upanzi Network and Microsave Consulting in partnership with…

 

Low birth registration, high cost hinder access to legal ID in Sub Saharan Africa

While the need for legal and digital ID remains ever pressing as a result of the digital transformation wind blowing…

 

Saudi Arabia’s Absher boosts digital ID delivery, financial inclusion

The Absher platform in the Kingdom of Saudi Arabia has emerged as the core pillar of the country’s efforts towards…

 

Malawi begins biometric voter registration pilot to test new system

A trial voter registration process will begin in Malawi tomorrow September 13 to put the country’s new Electoral Management Device…

 

Biometrics pilots, launches and investments foreshadow next areas for growth

Biometrics pilots, a patent, predictions and acquisitions paint a picture in the most popular news items of the week on…

 

Biometrics firms pitch privacy in age assurance ahead of US court battle

The U.S. is facing its first constitutional debate connected with age verification in 20 years: The Supreme Court will have…

Comments

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Most Read This Week

Featured Company

Biometrics Insight, Opinion

Digital ID In-Depth

Biometrics White Papers

Biometrics Events