The content of this week was about Computer Security, Ethics, and Privacy. The concept I found particularly interesting this week was that about biometric devices used for identification authentication. The concept simply means that a computer system stores certain attributes of a person and translates it into a digital code. As an example imagine that a fingerprint of person A is being scanned into a computer and stored on its user database in form of a digital code. Then, in order to get access to certain information or buildings, or the like, the person presses her finger on a screen that reads her fingerprint, compares it to the digital code, then validates the identity of the person and consequently gives access to the requested things. Currently, such a method is planned to also be used for payments, travel-purposes and so on.
On June 17, 2008, supermarket giant Albert Heijn (Netherlands) introduced a payment system linked to the customers' fingerprints, debit card information, as well as their loyalty cards. However, only weeks after its initial introduction, the fingerprint system has been cracked by a security researcher, who crafted a copy of a fingerprint out of rubber, which was accepted by the authentication devices Albert Heijn used. The retailer first did not react on this detection but rather remained positive about a full rollout of the fingerprint-as-payment program. Nevertheless, after a renewed analysis of this concept, the devices, and customer feedback, Albert Heijn discovered that this program would not be worth pursuing as its customers were too concerned about the security of their data.
Recently however, the German retailer Rewe announced a pilot test of some of its stores in and around Cologne for the cash- and cardless payment method with a fingerprint as personal identification. There is a positive example of a more secure fingerprint technology used by the German retailer Edeka that already implemented and currently also uses fingerprints as payment methods in some of its stores in southern Germany. Edeka uses machines that detect blood circulation and hence, is said to be able to differ between a fake and a real fingerprint. In spite of this claim by Edeka and the collaborating biometric firm, there is a large debate about the accuracy and security of this system.
I deem biometric devices as proof of identification a highly interesting and important topic, as in our world today, more and more transactions are being made over the Internet, credit cards and so on, and hence many more opportunities have been opened up to criminals to betray, steal, and rob people. In our digitalized world, it is of utmost importance to provide the highest security as is possible to reduce the amount of fraud, robbery and protect people from identification theft and the like. So, though these systems with fingerprints as identification means might sound great at the beginning, also with this technology it is easy for criminals to conduct their evil works.
Sources:
No comments:
Post a Comment