These articles are intended to provide general resources for the tax and accounting needs of small businesses and individuals. Service2Client LLC is the author, but is not engaged in rendering specific legal, accounting, financial or professional advice. Service2Client LLC makes no representation that the recommendations of Service2Client LLC will achieve any result. The NSAD has not reviewed any of the Service2Client LLC content. Readers are encouraged to contact a professional regarding the topics in these articles. The images linked to these articles are protected by copyright and should not be copied for any reason.
There are many people posting their pictures online on social media. Unfortunately, once you do that your images are no longer private. This means that a face can easily be captured from the internet.
Retina scans are considered extremely reliable and accurate more than the iris scan. However, it is the least common as it’s considered to be intrusive.
Reservations
The use of biometrics is a great development toward security concerns, but it raises privacy issues. Keep in mind that biometric information can easily be harvested – from a distance and without your knowledge. The cloud also is another reason to be concerned. Although biometrics are effective in enforcing security, the data collected has to be stored somewhere. How secure are the databases that store this information? Of course, this increases the possibilities of a breach.
Some reports made public include a potential hack for the palm vein scanner and a claim by a research team at vpnMentor about a leak of millions of fingerprints from BioStar 2, an app built by Suprema. Whether this and other similar claims are true or not, it just goes to show how vulnerable biometrics data can be. It also won’t be long before marketplaces emerge on the Dark Web for actual biometrics.
Remember that unlike passwords, you can’t change your biometrics. If someone had access to a biometrics database, then they would have access to sensitive data.
Another reservation involves the right to privacy for your biometrics. It’s possible for your biometrics to be collected without your informed consent. For instance, in stores where face recognition is used to identify potential shoplifters or to survey shoppers’ behavior. Recently, the FaceApp Challenge created by a Russian company had its share of controversy. Although said to be purely for entertainment, it also means that no one has control over what the company collecting the data will do with it.
Businesses face the potential risk of getting sued by their own employees. This is because there are some locations that already have a biometric privacy act law. In the United States, the Illinois Biometric Information Privacy Act (BIPA) allows users to sue under this law to protect their privacy.
Stay Safe
Since cyber criminals are always working on hacking new security systems, it’s crucial that users of these systems remain cautious. One of the ways to stay safe when using biometrics is the use of multi-modal authentication, which requires input from more than one biometric device. This will help overcome some loopholes, such as the use of copied fingerprints or stolen voice and facial prints.
Luckily, with advances in artificial intelligence and machine learning, biometrics can be enhanced. Users can be scrutinized using their online behavior. Since people tend to be creatures of habit, a behavior-based system can develop a more complex user profile. The tracked behavior will help to tell a genuine user from a potential threat.
Since it’s difficult to know if your biometrics have been stolen, it’s best to take precautionary measures that could include:
Avoiding unnecessarily sharing personal information, such as the bank account numbers, date of birth or Social Security number
Paying close attention to your bills and financial statements
Watching out for unauthorized transactions by reviewing your credit card and bank statements.
Using other security features on your mobile device.
Avoiding using public WiFi. It is also important that you keep your sharing and firewall settings updated.
In Conclusion
The biometric authentication is not a silver bullet. Technically, biometrics are not secret and have similar cyber risks as passwords, only they are exploited differently. Whenever a new technology becomes pervasive, there are individuals who will definitely try to figure it out –especially because these technologies are used to access financial services and private data.
In the digital world, we cannot assume complete security. The best you can do is work with known credible vendors and stick with providers who comply with both federal and state data privacy regulations. Lastly, use technologies that are tried and tested.
The Rise of Biometrics Security and Why You Should Take Precaution
September 1, 2019 · Blog, What's New in Technology
⏱ 6 min read
Biometric technology has been on the rise as it promises to make the authentication process more secure and convenient. Unlike passwords and key cards, biometrics are something you will always have, can’t share and can’t forget. This makes the biometric approach convenient and at the same time it has lower password management costs.
Biometrics also are said to be difficult to steal or hack; difficult, but not impossible.
Any technology can have loopholes that can be exploited, and that’s why you need to understand it well and take precautions if you decide to use this approach.
The use of biometrics is not new, but its increased presence in the public domain such as banks makes it a topic of interest.
To help us understand the need to tread carefully, let’s first have a peek at the latest biometric security technologies.
New Trends in Biometric Security
Biometric authentication is becoming popular for digital payments, logging in to banking systems and even on smartphones. New trends in biometrics security include:
Voice recognition: the human voice is used to create voice prints to be used for user authentication in a voice ID system.
Face recognition: 3D face recognition is another new development that uses sensors to identify the shape of a person’s face. This is done by using facial characteristics such as the nose, cheeks, chin and contours of the eye sockets.
Mobile biometric technology: mobile devices also have joined the bandwagon, and manufacturers are now fitting them with biometric sensors. It is also possible to attach portable biometric-sensing equipment using a USB cable.
Biometrics on the cloud: cloud-based solutions have been developed to speed up the identification process. Since users don’t have to spend so much on necessary applications, hardware and infrastructure, this becomes cost effective.
How Secure is the Biometric Approach?
Biometric security is increasingly being used as a preference to passwords, but how safe is this approach? Fingerprints may not be as secure as they are said to be. Consider this, some researchers were actually able to generate fake fingerprints that they called DeepMasterPrints. These fingerprints were generated using a neural network technique to create artificial fingerprints that can work as a “master key.” This goes to show how a system using fingerprints for security can be vulnerable to dictionary attacks using the created MasterPrints.
There are many people posting their pictures online on social media. Unfortunately, once you do that your images are no longer private. This means that a face can easily be captured from the internet.
Retina scans are considered extremely reliable and accurate more than the iris scan. However, it is the least common as it’s considered to be intrusive.
Reservations
The use of biometrics is a great development toward security concerns, but it raises privacy issues. Keep in mind that biometric information can easily be harvested – from a distance and without your knowledge. The cloud also is another reason to be concerned. Although biometrics are effective in enforcing security, the data collected has to be stored somewhere. How secure are the databases that store this information? Of course, this increases the possibilities of a breach.
Some reports made public include a potential hack for the palm vein scanner and a claim by a research team at vpnMentor about a leak of millions of fingerprints from BioStar 2, an app built by Suprema. Whether this and other similar claims are true or not, it just goes to show how vulnerable biometrics data can be. It also won’t be long before marketplaces emerge on the Dark Web for actual biometrics.
Remember that unlike passwords, you can’t change your biometrics. If someone had access to a biometrics database, then they would have access to sensitive data.
Another reservation involves the right to privacy for your biometrics. It’s possible for your biometrics to be collected without your informed consent. For instance, in stores where face recognition is used to identify potential shoplifters or to survey shoppers’ behavior. Recently, the FaceApp Challenge created by a Russian company had its share of controversy. Although said to be purely for entertainment, it also means that no one has control over what the company collecting the data will do with it.
Businesses face the potential risk of getting sued by their own employees. This is because there are some locations that already have a biometric privacy act law. In the United States, the Illinois Biometric Information Privacy Act (BIPA) allows users to sue under this law to protect their privacy.
Stay Safe
Since cyber criminals are always working on hacking new security systems, it’s crucial that users of these systems remain cautious. One of the ways to stay safe when using biometrics is the use of multi-modal authentication, which requires input from more than one biometric device. This will help overcome some loopholes, such as the use of copied fingerprints or stolen voice and facial prints.
Luckily, with advances in artificial intelligence and machine learning, biometrics can be enhanced. Users can be scrutinized using their online behavior. Since people tend to be creatures of habit, a behavior-based system can develop a more complex user profile. The tracked behavior will help to tell a genuine user from a potential threat.
Since it’s difficult to know if your biometrics have been stolen, it’s best to take precautionary measures that could include:
Avoiding unnecessarily sharing personal information, such as the bank account numbers, date of birth or Social Security number
Paying close attention to your bills and financial statements
Watching out for unauthorized transactions by reviewing your credit card and bank statements.
Using other security features on your mobile device.
Avoiding using public WiFi. It is also important that you keep your sharing and firewall settings updated.
In Conclusion
The biometric authentication is not a silver bullet. Technically, biometrics are not secret and have similar cyber risks as passwords, only they are exploited differently. Whenever a new technology becomes pervasive, there are individuals who will definitely try to figure it out –especially because these technologies are used to access financial services and private data.
In the digital world, we cannot assume complete security. The best you can do is work with known credible vendors and stick with providers who comply with both federal and state data privacy regulations. Lastly, use technologies that are tried and tested.
Disclaimer
These articles are intended to provide general resources for the tax and accounting needs of small businesses and individuals. Service2Client LLC is the author, but is not engaged in rendering specific legal, accounting, financial or professional advice. Service2Client LLC makes no representation that the recommendations of Service2Client LLC will achieve any result. The NSAD has not reviewed any of the Service2Client LLC content. Readers are encouraged to contact a professional regarding the topics in these articles. The images linked to these articles are protected by copyright and should not be copied for any reason.
About a year ago, at an Artificial Intelligence (AI) Conference in Cambridge in the U.K., Dr. Stephen Hawking noted that, “Success in creating AI could be the biggest event in the history of our civilization … either the best or the worst thing, ever to happen to humanity. We do not yet know which.”
The question remains unanswered, even as the AI sector continues to boom. Most of the major advances in AI that we are experiencing originated from research centers and startups – many based in the U.K. It is interesting to note that major U.S. technology leaders like Microsoft, Google and Twitter have entered this arena by acquiring some of the U.K.’s brightest AI stars.
Simply stated, AI is changing many of the ways businesses engage with their customers – whether with “chatbots” providing customer service, or by automated virtual assistants, or using technology to power self-driving automobiles. The advances in this sector are transforming operations at businesses of all sizes. This burgeoning industry has made major strides in helping businesses – especially small businesses – operate more effectively with social media. It used to be that analyzing social dialogue to identify and prioritize consumer targets was a tedious and lengthy process. With an AI software interface, the job takes minutes rather than days.
The blossoming of the AI sector has produced tools that are both super-efficient and inexpensive, offering major benefits to many small businesses. Now, routine customer service, sales and human resource tasks can be automated. As AI takes off, we can expect to see it making major inroads into areas of specific expertise, such as law and medical diagnostics. Expect to see virtual lawyers offer cheaper solutions to traditional legal practitioners. These bots can search law files and resolve complex immigration or employment law questions in minutes – research tasks that would have taken a paralegal many billable hours. Likewise, medical diagnostic AI tools can make assessments faster and often with a greater degree of accuracy than medical professionals.
Cybersecurity is another area where expectations run high for AI applications. In the never-ending battle to counter and defeat complex computer hacking schemes, machine learning is expected to continue to play an important role in combating increasingly sophisticated plots and uncovering potential vulnerabilities before cybercrooks strike.
Ethical Concerns
There are many issues – both ethical and legislative – that will need to be resolved as AI continues to grow and expand throughout the global business world. Some industry observers worry that AI will make many occupations in IT obsolete; others believe that AI will create new jobs by freeing human beings from routine tasks to allow them to focus on the “higher value” cognitive skills that currently elude chatbots and virtual assistants. Some find the proliferation of profiling AI tools – programs that are used to prioritize sales prospects or job candidates based on their LinkedIn profiles – unsettling. Champions of such assessment tools believe they merely speed up the interactions that take place between people, and do so with much less error and bias.
Whether we like it or not, AI is here to stay and is likely to be a game-changer in the way we do business in the near future.
The rise in the number of data breaches reported every other day has become a major concern – even to the ordinary internet user. As a result, we have all become aware of the need to maintain privacy while online. One of the measures promising to keep you safe on the internet is the use of a virtual private network (VPN). But before rushing to install one of the many VPNs available, it’s important to understand what a VPN is, why you need it, if it is foolproof and other ways to stay safe on the internet.
