Here are six minutes of the best moments from “Hacking Biometrics: An hour of critical thinking about using ourselves as a means to enhance the identity journey and our security posture”.
Participating in this discussion were:
- Jason Cramer, head of engineering, Daon
- Sridhar Kotamraju, head of product strategy – digital identity, fraud/payments, PNC
Watch the full video here.
Thanks to our sponsor Daon
Got feedback? Join the conversation here.
Winner Best Bad Idea Award
We had a healthy 32 bad ideas for last week’s discussion. Wil Tulaba of Cognex Corporation took home the prize for Best Bad Idea, but there were a few honorable mentions that are unfortunately a tad disgusting.
“Use the five bodily fluids as a biometrics identifier but make it random each time on which one.” – Eli Migdal, CEO, Boardish
“Use tongue prints as your biometric. It’s proof of life and the side benefit is you will only log in when you really need to log in.” – Dutch Schwartz, strategic lead, AWS Global Security Services Team, AWS
“When a fingerprint database gets compromised all users have their fingers cauterized (equivalent to changing passwords).” – Shawn Bowen, CISO, Restaurant Brands International
Best comments from the chat room
“The core issue with biometrics is always around the inability to expire and reuse the biometric once compromised.” – Ben Carr, CISO, Qualys
“Eyes are (iirc) the only part of the human body that do not change from birth. Your iris always stays the same… soooo… cloning seems like a hot APT industry.” – Chase Pettet, security architect, Wikimedia Foundation
“I have seen voice recognition being used for call centers to find common fraudsters who are trying to reroute orders.” – Wil Tuluba, senior security administrator, Cognex Corporation