Biometrics scares most people

Ellen Messmer (Network World)
03 October, 2011 21:32
Comments

Biometrics — the security method for identifying an individual by making a match of fingerprints, iris, face, voice, DNA and other unique physical traits — scares people, an industry leader in the field acknowledged this week. But enterprise technology managers say there's no doubt biometrics is a boon to enterprise security.

More on biometrics: Prototype "Rapid DNA" technology exhibited; could boost forensics

"There are perception issues we all face," said John Mears, director of biometrics and identity management solutions at Lockheed Martin Information Systems and Global Services Civil. In his keynote address at the Biometric Consortium Conference last week, Mears acknowledged that the public perception of biometrics tends to be rather negative because it's personal and physical.

"There's the perception that biometrics can injure you," he pointed out, telling industry attendees there's a need to educate the public that gathering of biometric samples, such as scans of the iris of the eyes, is not harmful. He said he can understand how people are nervous when the subject of DNA comes up. DNA is in very human cell, and saliva samples collected in a cotton swab in the cheek, for example, are enough to allow an analysis of each person's unique DNA profile as a unique identifier (though identical twins share the same DNA).

"They think when you've taken their DNA, you've taken their soul," he said. The biometrics industry has to do a better job of explaining the technology and its purpose to the public, he said. He also noted that there are now a lot of state efforts to kill biometrics projects, such as Texas repealing use of biometrics in its food-stamp program, while California, Alaska, and other states are also battling biometrics.

In New Hampshire, there has been a bill to restrict collection of biometric data, Mears pointed out, adding the next hit that biometrics could face is if it's perceived that social-networking sites are using facial recognition wrongly.

But the positive perception of biometrics can be heard from enterprise IT managers that find it delivers strong security and helps in meeting auditing requirements.

"We use biometrics in all our clinical areas through a fingerprint on a pad," says Jim Lowder, vice president of technology at OhioHealth, the regional group of hospitals in Ohio. Hospital workers accessing a computer to view clinical applications all use fingerprint-based verification.

The healthcare system's Imprivata OneSign authentication appliance for single-sign-on (SSO) and access management accepts this type of fingerprint biometric. Simple passwords still exist for internal purposes and as an alternative, but no one has to use them because the Imprivata SSO device is set up to accept the fingerprint identification as the primary strong authentication.

Not only does this spare staff from having to remember user ID and passwords for each application but the fingerprint biometrics security also helps in meeting requirements from the Ohio Board of Pharmacy that allow for approval of medical prescriptions without physicians having to sign a paper-based prescription.

In general, fingerprint-based identification for access to computer applications has worked very well, though in a very small number of people, their fingerprints are too faint to allow the device to work well, says Lowder. Other forms of two-factor authentication that OhioHealth uses include PhoneFactor, which once you enter a corporate PIN and password, an automated call is made to your phone and you verify your identity. If there's any downside to fingerprint biometrics, says Lowder, it's that end-users tend to forget their passwords entirely.

Read more about wide area network in Network World's Wide Area Network section.

Bookmark this page
Share this article
- facebook
- slashdot
- digg
- Reddit
- stumbleupon
- linkedin
- twitter
Got more on this story? Email CIO
Follow CIO on twitter

More about: eSign, Imprivata, LAN, Lockheed Martin

References show all

Comments

Post new comment

Share
Share this article
- google+
- facebook facebook
- slashdot slashdot
- digg digg
- Reddit Reddit
- stumbleupon stumbleupon
- linkedin linkedin
- twitter twitter
print
email
Bookmark

Related Coverage

Related Whitepapers

Latest Stories

Community Comments

"This will be a terrific blog, would you be interested in doing ..."

Apple aims iPads at High Schools
"Its enormous that you are getting ideas from this paragraph as well ..."

Face Time - Interview with John Brennan and Robert DiStefano
"I was able to find good information from your content."

Google Jumps Into Social Bookmarks Game
"Wow! Great progress! Go NBNCo! Ummm... How many of those 7300 satellite ..."

NBN build gaining momentum daily: Quigley
"Very first time commenter on Face Time - Interview with John Brennan ..."

Face Time - Interview with John Brennan and Robert DiStefano

Tags: biometrics, biometrics; security; Lockheed Martin, lockheed martin, security

Latest Blog Posts

Whitepapers

OVUM Report: Governance Risk and Compliance-- GRC usage and buying trends in the ANZ markets
The existence of an established and stable governance risk and compliance strategy is extremely important to public and private sector organisations as they strive to meet an evergrowing range of regulatory demands. Given the current constraints, it is one of the few areas where the vast majority of organisations intend to either maintain or in many cases increase spending. Read more.

Learn more »
Endpoint Buyers Guide
It takes more than antivirus to stop today’s advanced threats. Protecting corporate assets requires a complete security solution that includes anti-malware, host-based intrusion prevention (HIPS), web protection, patch assessment, application and device control, network access control, data loss prevention, firewall and other capabilities. In short, you need an endpoint protection solution. We examine the top vendors according to market share and industry analysis: Kaspersky Lab, McAfee, Sophos, Symantec and Trend Micro. Each vendor’s solutions are evaluated according to: Product features and capabilities, Effectiveness, Performance, Usability, Data protection, and Technical support.

Learn more »
Restore control, Reinforce security & Reduce Cost
Uncontrolled print environments and practices present a serious risk to the profit and security of your organisation. IT is under pressure to protect sensitive information, secure devices, and improve the way they manage the entire fleet. To gain better control, your organisation needs to implement plans that meet industry regulations while also increasing productivity, lowering costs, and providing users with more flexible imaging and printing solutions. Read more.

Learn more »

All whitepapers

Most Read
Most Commented

Get exclusive access to Invitation only events CIO, reports & analysis.

Latest Jobs

Zones

Featured Whitepapers

Look both ways - Protecting your data with content inspection

Today’s threat environment is as dynamic as the business world in which we operate. As the communications channels we use continue to proliferate and evolve, so too have the vulnerabilities. ...

Biometrics scares most people

Comments

Post new comment

Building trusted relationships

Planning your IT career

Taking the risk out of diversity

5 open source help desk apps to watch

How to create a clear project plan

5 open source billing systems to watch

NBN Co focuses on continuous delivery to meet its deadlines

10 Tips for Dealing with a Bully Boss

Face Time - Interview with John Brennan and Robert DiStefano

All Systems Down

IT service management going social

Judge throws out mass John Doe porn copyright lawsuits

10 Tips for Dealing with a Bully Boss

HP Business Efficiency - Money Payback Guarantee Resource Centre

The Australian Cloud

Look both ways - Protecting your data with content inspection

The Pathways ICT Leadership Development Program Brochure and Curriculum 2012