Skip to main content

Misinformation about Biometric Technology Continues to Fuel Functionality Misconceptions

Today, we came across the following blog post from Guy Huntington at Infosec Island:
“What Happened to My Biometric?”
In the post, the author discusses the inherent dangers of opting into a biometric identification system by providing your fingerprint and the possible negative privacy and identity theft consequences if a user does not make sure that their biometric template is deleted from the system if they leave or opt-out.
Our take: While we are always pleased to see biometric technology pop up in the news or through blog postings, we often cringe when we see these types of articles that essentially do not accurately depict biometric technology, and leave readers with ill-conceived perceptions about how the technology actually works.
Anyone who works in the biometric industry can attest to the fact that there is never an image of a user’s fingerprint stored. The truth of the matter is that biometric enrollment templates stored on a server are not actually an image of the fingerprint at all. They are a mathematical representation of the data points that a biometric algorithm extracts from the scanned fingerprint. The algorithm then uses the template to positively identify a user during subsequent fingerprint scans. No image of the fingerprint is ever stored or transmitted across a network. In addition, the algorithm is “one way” which means that the template that is extracted is nearly impossible to be used to recreate the original fingerprint image. In other words, it is nearly impossible to reverse engineer the data that is sent to positively identify a user and successfully “steal” their biometric identity.
After understanding the truth behind the technology, this leaves us with the question, “Where is the fear of identity theft?  Privacy issues?”  Furthermore, we can’t seem to make a connection with the logic in this blog post about what exactly a criminal would do with a fingerprint image (if they could ever possibly re-create it which is nearly impossible) if they were to obtain it?  9.9 times out of 10 biometric systems do not associate names with a biometric template so how would the criminal/hacker know whose biometric information it actually is?
We continue working tirelessly to vociferate with the technology media and pundits to please make sure that you understand the science behind biometric technology before writing these types of articles.  The only objective that a posting like this achieves is fueling misconceptions and falsehoods about biometrics and how the technology works.  In addition, we stand behind our software as being secure and protecting an individual’s privacy and the potential for identity theft.  We hope that our words and actions will have an impact on spreading the truth about biometric technology and its benefits.
Labels:

Comments

Post a Comment

Popular posts from this blog

Iris Recognition vs. Retina Scanning – What are the Differences?

In biometrics, iris and retinal scanning are known as “ocular-based” identification technologies, meaning they rely on unique physiological characteristics of the eye to identify an individual. Even though they both share part of the eye for identification purposes, these biometric modalities are quite different in how they work. Let’s take a closer look at both and then explain the similarities and differences in detail: Retinal Scanning:  The human retina is a thin tissue composed of neural cells that are located in the posterior portion of the eye. Because of the complex structure of the capillaries that supply the retina with blood, each person’s retina is unique. The network of blood vessels in the retina is so complex that even identical twins do not share a similar pattern. Although retinal patterns may be altered in cases of diabetes, glaucoma or retinal degenerative disorders, the retina typically remains unchanged from birth until death. (Source: Wikipedia) ...
1 comment
Read more

Finger Vein Biometrics Identification for Membership Management Software

An article published today in the University of Vermont’s campus newspaper The Vermont Cynic reported that the campus recreation center has adopted M2SYS finger vein technology for student member identification. Tim Lewis, associate director for campus recreation made the decision to use finger vein biometrics for member identification after brainstorming ideas on how to eliminate students carrying ID cards. Happy to see our finger vein biometric identification system used at the University of Vermont through a partnership we have with Vermont Systems, a recreation and parks software provider based in Essex Junction, VT. Modern-day membership management software is designed to help create efficiencies that antiquated methods simply can’t provide. In an effort to eliminate ID cards, prevent identity fraud, and create a more convenient user experience, many membership management facilities are evaluating vascular biometrics (finger vein) for identification because of the distinct ...
Post a Comment
Read more