Question

As we examine the topic of identity verification, let's take a minute to look at biometrics. Biometrics is the use of a person's unique physical characteristics to confirm their identity. Some examples include fingerprint scanners, retinal scanners, iris scanners, DNA, face recognition, etc. What are your personal feelings on the use of biometrics for purposes of identification and authentication? If you were offered your dream job, with the knowledge that you'd be require to "hand over" biometric information such as those listed above, would you be okay with this? Would you still take the job? Please back up your opinion with one or more internet sources. For example, if you feel uncomfortable providing this information because you're afraid someone might steal it to impersonate you, find and cite an article that talks about this phenomenon.

Remember not to copy your sources word for word. No formal citation necessary. You may simply provide the URL at the bottom of your post.

Make sure your post contains: your opinion on biometrics, your response to the proposed job scenario, supporting evidence from your chosen website, and the URL to the website.

Answer 1

Biometrics refers to the identification of an individual's physical, behavioral, physiological, and psychological characteristics which are also known as biometric identifiers. Metrics here refers to measuring those physiological characteristics Digitally; implementing digital technology. As it has been proved that Biometrics Identification-Authentication inherently provides more reliability than knowledge-token, username-password, OTPs, credential-based techniques. This is because the physical characteristics are distinctively unique to each person in this world.

I prefer to use Biometric Identification systems when I am confirmed that the collection, storage, retrieval, authentication, data transfers and transmissions and likewise are performed in a very Secure manner implementing all the X509 Security mechanisms. I think that Biometric Identification systems must be robust to ensure Security. Implementation of Biometric systems in Universities, Institutions, Companies, Organizations, Enterprises for Students, Employees, Workers, Staff, etc. saves a lot of Time and also introduces Accountability in reporting and increases Productivity. As far as Retina and Fingerprints are concerned; I would readily accept the job only after I am convinced about the company's Biometric data storage policies.

The threat of Cyberattack always has been lurking over Biometric data. Kindly refer to the below-provided articles for the Proof that even Biometric data can be hacked off.

Biometric Data Breach References:

1. https://www.forbes.com/sites/zakdoffman/2019/08/14/new-data-breach-has-exposed-millions-of-fingerprint-and-facial-recognition-records-report/#4085996846c6
2. https://us.norton.com/internetsecurity-emerging-threats-biometric-data-breach-database-exposes-fingerprints-and-facial-recognition-data.html

I won't accept the so-called 'Dream Job' if I do not get to know in-depth about the Biometric Cyber Security policies of the organization which is offering me the job(even after getting to know the policies, I am Free to decide Whether or Not I will Join that Organization). The reasons for this are simple and quite clear as a crystal which as given below:

1. Any Human in this world can have any number of digital accounts online let alone they be in social media, bank accounts, etc. with numerous different kinds of combinations of credentials such as token-based or knowledge-based keys, values, OTPs, usernames, emails, passwords, etc. And all of these can be changed, modified at the request of the customer (also depending upon the Service Provider's policies).
2. Example: If my Email account is hacked and even if Email Service Provider refuses to cooperate with me or help me out; I can make a new email for myself and declare that my previous email was hacked and remove all kinds of linkages to that email from my bank accounts, cell phones, etc. So, this is about my modifiable Digital Identity.
3. Any Human in this world has only One set of Biometric Identity. No Human can ever CHANGE-MODIFY their own Biometric Identities by themselves. [Unless if you do Plastic Surgery of your Face, or change your Eyes itself and likewise. Even though you do plastic surgery of your Skin on Palms and fingers, the Fingerprints are stored in your DNA and it will be the same.] So, if your Digital Identity is hacked, it can and will be changed-modified. What if your Physical Identity is Hacked?
4. Example: A Cyber Attack on Biometric data digitally-virtually hacks the individual's Physical Identity.!!! and this is NOT a sci-fi cyberwar going on here.!!! This is not Cool anymore.! Imagine if tomorrow at my Bank, a person who does NOT have my Face, Fingers, Retina, etc yet is successful in entering the Locker Room and gains access to my Access based on the Biometric data that he/she obtained from the Biometric Data breach and somehow encodes that data inside a chip, hack the bank's authentication systems; or implants the numeric Biometric data on a false flesh skin face-mask, fingers, etc. [What is shown in the movies such as Mission Impossible is Possible.!!! and this is the Proof --> https://www.computerworld.com/article/3488105/scientists-give-biometric-security-systems-the-fake-finger.html and https://www.forbes.com/sites/daveywinder/2018/12/29/fake-news-how-a-wax-hand-ai-fingerprints-and-3d-printed-face-broke-biometric-security-in-2018/#7e8609ef3b7c]

On a very Serious-Intellectual Note: I can change my Dreams and Dream Jobs; but not my Biometrics.!

Biometrics was introduced to replace the Severely Broken Username-Password system. To increase Security, the Username-Password system was complemented by the Multi-Factor Authentication, Captcha, OTP, etc mechanisms. However, the following reasons state that Biometric Identification is receiving appreciation from the laymen crowds:

1. One never forgets to bring the face, finger, retina to any place requiring his/her digital or even physical presence. So, here Convenience is preferred over Security.!
2. Ease to Use Technology providing quick results. No need to type in Username-Password, OTP Credentials, and likewise.
3. Biometrics are Difficult to copy than usernames-passwords or OTPs. (But not Impossible; as the Biometric Data Breach exposes the Binary data directly to the Hacker/Attacker which could be used in Communications to dupe Genuine Person's Identity online.!)
4. Biometrics are difficult to be shared, passed-on, leaked.! (But Not Impossible.!)

However, concluding the answer, I would just outline the Hidden Risks of using Biometric Systems which supports my decision to Not accept that 'Dream Job' readily:

1. Biometrics are not Always Reliable and the Public has a lot of Mis-Perceptions about these kinds of technological systems and solutions.
2. Biometric Identification Systems faces three kinds of Error viz.
3. False Reject Rate[FRR] (Type 1 Error - Does not grant Valid Access when it Must)
4. False Accept Rate[FAR] (Type 2 Error - Allows Access it Must Not.!)
5. Crossover Error Rate[CER] (the point at which FRR=FAR, which means “Neutrality” in both Errors.!)
6. There is a lack of discussions on the implications and consequences of these Errors in the Real-world scenarios.!
7. Biometric data access granted to any physical characteristic of any person is not Irreversible.! One cannot revoke access once it has been granted.!
8. Biometrics can be collected, grabbed, snatched, used without our Prior Consent.!
9. Behavior Prediction is being done.! What Am I? predicts What Will I Do? [Still, Not 100% with Accuracy.!]
10. Biometric Data provisions have become Mandatory to avail of critical government, healthcare, daily utility providers' services, etc.
11. Using Biometric data for Marketing and Advertising purposes.!

Acxiom is using Biometric data for Marketing and Advertising purposes proof of which is found here at the following website URL:

https://www.acxiom.com/about-us/privacy/highlights-for-us-products-privacy-policy/