Difference between revisions of "Biometric Identifier"

From MgmtWiki
Jump to: navigation, search
(Created page with "==Full Title or Meme== Biometric Attributes of the biologic phenotype of a User may be used to Identify that user. ==Context== *Biometric Attributes are taken to...")
 
Line 9: Line 9:
  
 
==Problems==
 
==Problems==
*False positives typically come from either relaxed testing, environmental noise or obsolete technology.
 
*False negatives infuriate [[User]]s which is why false positives are tolerated.
 
*Attacks against the sensor capabilities. Various movie and television plots have shown the attacks like taking someone's eyeball, or using a thin-film replica of a finger print to complete an [[Authentication]] which [[Authorization|Authorizes]] access.
 
*Attacks against the template store. Access to the [[Authentication]] data store can often be the simplest attack as it is based on known techniques.
 
 
*[[Biometric Attribute]]s attached to official documents may inadvertently become [[Biometric Identifier]]s which invade the user's privacy. See the wiki page [[Biometric Identifier]] for user cases where that has damaged a user's life.
 
*[[Biometric Attribute]]s attached to official documents may inadvertently become [[Biometric Identifier]]s which invade the user's privacy. See the wiki page [[Biometric Identifier]] for user cases where that has damaged a user's life.
 
+
*In a case described in the New York Times Magazine<ref>Seth Freed Wessler, Denaturalized. (2018-12-30) New York Times Magazine p. 36ff</ref>
 
==Solutions==
 
==Solutions==
 
* ISO 30107-3:2017 describes testing of [[Biometric Attribute]] presentations.
 
* ISO 30107-3:2017 describes testing of [[Biometric Attribute]] presentations.
Line 22: Line 18:
  
 
[[Category:Glossary]]
 
[[Category:Glossary]]
 +
[[Category:IDentifier]]

Revision as of 11:53, 30 December 2018

Full Title or Meme

Biometric Attributes of the biologic phenotype of a User may be used to Identify that user.

Context

  • Biometric Attributes are taken to be exclusively the measure of human characteristics like fingerprint, facial and behavior patterns.
  • The human characteristics are another factor that can be a part of Multi-factor Authentication.
  • So the human characteristics can be considered to be a Credential.
  • The measurements of the characteristic are compared against a template of the characteristics using some Assurance level to produce a Validated claim.

Problems

  • Biometric Attributes attached to official documents may inadvertently become Biometric Identifiers which invade the user's privacy. See the wiki page Biometric Identifier for user cases where that has damaged a user's life.
  • In a case described in the New York Times Magazine[1]

Solutions

  • ISO 30107-3:2017 describes testing of Biometric Attribute presentations.
  • The first Level 1 rating in the NIST/NVLAP-certified iBeta Presentation Attack Detection (PAD) Certification test was granted on (2018-09-23) to facetec[2]

References

  1. Seth Freed Wessler, Denaturalized. (2018-12-30) New York Times Magazine p. 36ff
  2. Planet Biometrics, FaceTec notes achievement in anti-spoofing test. (2018-09-23) http://www.planetbiometrics.com/article-details/i/7463/desc/facetec-notes-achievement-in-anti-spoofing-test/