Tag: biometrics

JPMorgan To Roll Out Controversial Biometric Payments

America’s largest bank and one of the largest in the world, J.P. Morgan, is preparing to launch biometric payments next year and is currently carrying out pilot projects.

J.P. Morgan has chosen PopID – which verifies a person’s identity via facial recognition, among other methods – as the backbone for the project.

The massive financial corporation is clearly unwilling to be left behind the likes of Mastercard or Visa, who are both implementing biometrics-powered payments.

According to the bank, one of the first events where this was trialed was the Formula 1 race in Miami, and that was also the first time this happened at a Formula 1 venue.

The ultimate goal is to expand authentication based on individuals’ fingerprints, palms, and faces to anyone interested, but with a focus on stores, restaurants, and various event venues.

J.P. Morgan says this will be a faster and safer, as well as “personalized” way for customers to pay, while those with things to sell are promised higher turnover and improved customer loyalty, but also a centralized place to access transactions and marketing data, say reports.

And what’s in it for the bank, other than potentially amassing large amounts of biometric data? Merchants will have the opportunity to buy J.P. Morgan Payments tablets, though this will not be obligatory, but support and transaction processing fees will be.

In a statement, the bank revealed that it is betting on biometric payments as the industry is forecast to grow to 3 billion users and $5.8 trillion worth of transactions over the next two years. And the giant expects digital commerce to eventually cover online, mobile, and in-store checkout.

Keep reading

WEF: Biometric Digital ID Cards Could Track Vaccination Status, Dutch Queen Máxima Says at Davos

The introduction of biometric digital identity cards could be used by governments to track “who actually got a vaccination or not,” Queen Máxima of the Netherlands said at the annual World Economic Forum meeting in Davos this week.

Queen Máxima, a longtime social justice campaigner who has served as the United Nations Secretary-General’s Special Advocate for Inclusive Finance for Development (UNSGSA) since 2009, urged for the wider adoption of biometric digital ID cards globally during a WEF panel discussion titled “Comparing Notes on Financial Inclusion” on Thursday.

“When I started this job, there were actually very little countries in Africa or Latin America that had one ubiquitous type of ID, and certainly that was digital and certainly that was biometric… We’ve really worked with all our partners to actually help grow this, and the interesting part of it is that yes, it is very necessary for financial services, but not only.”

Aside from financial services, the Argentinian-born Dutch Queen went on to argue that the use of digital IDs could be used to keep track of “school enrolment” and to help people to receive welfare from the government.

In addition, Queen Máxima argued that digital IDs are “good for health” in that governments could use the system to track “who actually got a vaccination or not”.

The Dutch Queen has also been one of the leading proponents of the introduction of Central Bank Digital Currencies (CBDCs) to increase “financial inclusion”. While CBDCs function similarly to cryptocurrencies like Bitcoin, they are not based on a decentralised network but rather controlled by a central bank, which critics argue could potentially give the government the ability to track all financial transactions made by the public.

Keep reading

Achtung! US Travel To Europe Will Require Prior Approval, Biometric Scanning

Traveling to most European countries is about to get more complicated and invasive for American citizens: In spring 2025, you’ll have to first request permission.  And you’ll be saying adieu to passport stamps and ciao to facial and fingerprint scans  and having your biometric data stored in an enormous government database. 

On Friday, an agency of the European Union announced the updated timing for the European Travel Information and Authorization System (ETIAS), which has first set to roll out in 2024. It applies to travelers from more than 60 countries that are currently exempt from visa requirements. Those countries have an aggregate population of 1.4 billion. 

As is the case today, Americans won’t need a visa, but they will need to apply in advance for permission to visit any of 30 EU countries for stays lasting up to 90 days. It will cost about $8 to apply, with requests submitted via the official ETIAS website or ETIAS mobile app. With activation of the process more than a year away, neither is yet configured to collect applications. ETIAS assures the public that most applications will be processed in minutes. 

The approval will be tied to your passport, and will be valid for up to three years or until your passport expires, whichever comes earlier. Once you have it, you’ll be able to visit as much as you want, so long as it’s a “short-term stay,” which generally means up to 90 days in a 180-day period. 

ETIAS recommends applying for permission “well in advance” of your trip, but doesn’t specify what that means. The agency does caution that the approval period “could be extended by up to 14 days if you are requested to provide additional information or documentation, or up to 30 days if you are invited to an interview.” There’s no indication where such interviews would be conducted or by whom. 

Keep reading

Biometrics Look Increasingly Likely for Schools Afraid of Gun Attacks

When U.S. state of New York schools got the OK last week to use biometric systems short of facial recognition, the move gave more momentum to policies arming teachers with guns.

One of the first reactions came from the Security Industry Association, which criticized the fact that the state’s department of education continued to bar face biometrics collection of any kinds on school grounds.

The board announced that other biometrics systems can be used by schools so long as boards examine how doing so would affect privacy and civil rights, how effective the systems would be and how parents feel about the idea.

SIA members had opposed a three-year temporary complete ban on biometrics investment while campus deployment of facial recognition systems, specifically, could be studied. The ban’s lift largely followed recommendations of that report.

The group largely blames the continuing prohibition on face scans on “intense pressure” from the American Civil Liberties Union, which had filed a lawsuit to prevent a school district from putting AI behind CCTV networks.

Keep reading

Twitter can now harvest YOUR ‘biometric’ information including fingerprint, face recognition and eye tracking data – as Musk’s site quietly updates its T&Cs ‘for safety purposes’

The social media platform formerly known as Twitter can now harvest your biometric data and DNA.

A new update quietly added to the platform’s privacy policy says that X now has permission to harvest its users’ fingerprints, retinal scans, voice and face recognition and keystroke patterns.

The update would mean that anyone who uses fingerprint verification to log in to the app from their phone, posts selfies or videos to the platform or speaks their mind on X ‘spaces’ could see their unique biometric data catalogued by the company. 

The new policy, which describes its interest in users’ biometrics as ‘for safety, security, and identification purposes,’ also added the platform’s intent to scrape up data on users’ job history, educational background and ‘job search activity.’

The move follows nearly a year of turmoil for the microblogging app, which has included Musk requesting that its users pay subscription fees for premium services and verification: part of his larger plan to recover from cratering advertising revenue.

Keep reading

Microsoft Files For a Face-Tracking Patent

A patent filed in the US shows that Microsoft is working on technology that would allow it to track a person’s face in a way so comprehensive that the device powered by the tech could be referred to as a “face reader.”

And it could be used for gaming, but also for tracking remote employees. And who knows what else in between.

Microsoft says it needs the patent approved to develop mixed reality headsets that would be cheaper yet better at “understanding” expressions on human faces.

The patent filing doesn’t go into many considerations other than those of a purely technical nature, and this in a nutshell is how the under-development technology works.

Currently, converters are used that are not only bulkier to render high resolution tracking but also cost more to manufacture.

Now Microsoft wants to replace this method of tracking with elements directly embedded, circumventing the need for converters, and also what’s referred to as processing circuit area.

Keep reading

Kenya Kicks Eye-Scanning Worldcoin To The Curb — Refuses To Become ‘Data Harvesting Guinea Pigs’

The Kenyan Ministry of the Interior last week suspended the controversial tech firm WorldCoin and any similar entities from operating in the country.

Co-founded by OpenAI’s Sam Altman, WorldCoin offers free crypto tokens worth roughly $50 to people willing to have their eyeballs scanned by a device called the Orb.

Relevant security, financial services and data protection agencies have commenced inquiries and investigations to establish the authenticity and legality of the aforesaid activities, the safety and protection of the data being harvested, and how the harvesters intend to use the data,” reads a statement from the Ministry issued last week.

Kenyan Cabinet Secretary Alfred Mutua was enraged over the technology, saying in a statement: “Let us support the stoppage of Kenyans being used as guinea pigs and their data being harvested.

“You have to ask yourself why your eyes are being scanned and information gathered. What does it mean and what will it mean to you and your offspring?

Another CS, Kithure Kindiki, assured citizens that the government would undertake all measures to ensure public safety and the integrity of financial transactions involving so many citizens, according to Kenyans.co.ke.

Further, appropriate action will be taken on any natural or juristic person who furthers, aids, abets or otherwise engages in or is connected with the activities until the government deems WorldCoin is safe. 

Following the directive, police officers were deployed to disperse hundreds queuing at KICC, Nairobi for the exercise

The directive comes minutes after ICT Eliud Owalo had stated that the government was yet to kick out the international company as it had not broken any laws.

That said, WorldCoin technically hasn’t broken any Kenyan laws – which, we imagine, is one of the reasons it was rolled out there.

“There are security issues even though in relation to the current data laws, they have not breached anything. Our laws, regulations are not comprehensive,” said Owalo. “Within the existing legal framework today, there are no provisions in the law that the organisation has negated. However, there could be security and regulatory issues around it.”

In response to the ban, WorldCoin co-founder Alex Blania claimed that the company’s intentions are above board.

Keep reading

Controversial Eyeball-Scanning Worldcoin To Allow Governments To Use Its Digital ID System

OpenAI CEO Sam Altman’s Worldcoin is a good example of private companies doing their bit to push and introduce digital ID schemes to as many people as possible – although this effort is usually done by governments, and supported by various lobbies.

And now, Worldcoin has announced that it will be even more helpful to governments, by allowing them to use the system of biometric scanning it employs to sign users up. Other companies will be given the same privilege.

The intention is clearly to get as many people as possible on board, hence the “generosity” with sharing the iris scanning tech, as well as that designed to verify people’s identity.

And it’s no secret: “We are on this mission of building the biggest financial and identity community that we can,” is how Tools for Humanity (a company behind Worldcoin) executive Ricardo Macieira put it.

The mission marches on despite concerns not only from privacy focused non-profits and advocates, but also institutions in various countries that are tasked with protecting data privacy.

People – and the number mentioned in reports these days is 2.2 million so far – sign up to Worldcoin by giving up biometric data contained in their eyes, i.e., irises.

Keep reading

Worldcoin isn’t as bad as it sounds: It’s worse

Worldcoin — a new financial system connected to sensitive biometric information, mostly harvested from poor people — sure sounds like a terrible idea.

“Terrible” doesn’t do it justice.

Worldcoin will need to assemble a vast database of iris data. But not everyone is eager to gaze into an Orb. In the bootstrapping phase, at least, you had to pay people to scan their eyes. And so Worldcoin turned to the global south — home to the cheapest eyeballs — and played a dark game of ‘what will people do for money?’

Incredibly, Worldcoin was unprepared for an obvious consequence of this rollout strategy: A black market for verified credentials. You can now seemingly buy a World ID for as little as $30. Anyone, then, with more than $30 on hand can command more than one digital identity (although Worldcoin is aware of this issue and has proposed solutions to resolve it). Connecting real people to digital identities is a thorny puzzle. 

Worldcoin does not fix this. And it’s unlikely it ever can, since nothing in the design can stop professional sybil attackers farming eyeballs on the ground level through nefarious means.

This does not inspire trust in the system or its designers. And yet trust is what they demand. Worldcoin’s promotional materials are full of promises — to delete sensitive biometric information, or keep it hidden from view, or not use it in nefarious ways. One blog post (quoted here; the original appears to have been changed since initial release) put it this way: “During our field-testing phase, we are collecting and securely storing more data than we will upon its completion… We will delete all the biometric data we have collected during field testing once our algorithms are fully-trained.”

“Trust us,” in other words. “We’ll totally delete the eyeball database.”

But when it comes to sensitive information, promises aren’t enough. And the very people who insist that you trust them are the ones who should command the most suspicion. The fact that Worldcoin’s co-founder Sam Altman also heads up OpenAI — a firm currently being sued over allegations of dubious uses of large data sets — asks more questions than it answers.

Sometimes Worldcoin’s privacy promises are conjoined with dazzling technical details. Zero-knowledge proofs, we’re told, will save the day, and allow users to prove humanity without connecting any particular financial activity to a World ID or other associated transactions.

There’s a grain of truth here. Zero-knowledge proofs can generate impressive privacy guarantees. But in the case of Worldcoin marketing, they’re more theater than substance. Taking off your shoes at the airport makes it look like important precautions are being taken (but doesn’t actually make you any safer); and long blog posts about zero-knowledge proofs distract from, but don’t in fact address, the problem of Worldcoin asking for users’ trust.

Linking immutable biometric traits to money could have dystopian consequences.

Keep reading

PhD Student Uses Deepfake to Pass Popular Voice Authentication and Spoof Detection System

University of Waterloo (UW) cybersecurity PhD student Andre Kassis published his findings after being granted access to an account protected with biometrics using deepfake AI-generated audio recordings.

A hacker can create a deepfake voice with five minutes of the target’s recorded voice, which can be taken from public posts on social media, the research shows. GitHub’s open source AI software can create deepfake audio that can surpass voice authentication.

He used the deepfake to expose a weakness in the Amazon Connect voice authentication system, a UW release reveals. Four-second attacks on Connect had a 10 percent success rate, and attacks closer to 30 seconds were successful 40 percent of the time.

In response, the company added biometric anti-spoofing software that could find digital markers on a voice recording, revealing if it was made by a machine or human. This worked until Kassis used free software to remove the digital markers from his deepfakes.

His method can bypass less sophisticated voice biometric authentication systems with a 99 percent success rate after six tries, according to the announcement.

Keep reading