a conversation on biometric privacy
play

A Conversation on Biometric Privacy MCCA Global TEC Forum Paresh - PowerPoint PPT Presentation

Jun 12, 2023 •160 likes •862 views

A Conversation on Biometric Privacy MCCA Global TEC Forum Paresh Trivedi Wai L. Choy June 20, 2017 What Is Biometric Information? 2 2 Biometrics? Biometry : the measurement and analysis of unique physical or behavioral characteristics

  1. A Conversation on Biometric Privacy MCCA Global TEC Forum Paresh Trivedi Wai L. Choy June 20, 2017

  2. What Is Biometric Information? 2 2

  3. “Biometrics”? Biometry : the measurement and analysis of unique physical or behavioral characteristics (as fingerprint or voice patterns) especially as a means of verifying personal identity. 3

  4. Types of Biometric Information • Physiological - Fingerprints - Iris scans - Retinal scans - Facial recognition - Palm veins/palm prints - DNA 4

  5. Types of Biometric Information • Behavioral - Voice recognition - Gait analysis - Keystroke dynamics - Signature recognition 5

  6. Biometrics in the Movies 2001: A Space Odyssey (1968) Blade Runner (1982) Star Trek II: The Wrath of Khan (1982) Voice recognition Biometric scan for empathy Iris recognition Judge Dredd (1995) Gattaca (1997) Enemy of the State (1998) Biometric-authenticated weapon DNA typing Facial recognition; mass surveillance 6 6 Bourne Identity (2002) Minority Report (2002) X-Men: Days of Future Past (2014) Palm reader Eye replacement for iris recognition Fingerprint scan spoofed

  7. 7 7

  8. Fingerprint Scanning 8 8

  9. Facial Recognition Is Not a “New” Technology 9 9

  10. How is biometric information collected and used? 10 10

  11. 11 Title of Presentation | FileSite Number June 23, 2017

  12. 12

  13. 13 1 3

  14. https://www.recode.net/2017/5/31/1570812 4/nest-iq-camera-indoor-facial-recognition- technology-google-photos 14 1 4

  15. Facial Recognition • Facial recognition technologies have been adopted in a variety of contexts, ranging from online social networks and mobile apps to retailer’s analytics. - Potential non-security uses include: - Determining an individual’s age range and gender to deliver targeted advertising - Assessing viewers’ emotions to monitor engagement in video game or movie or interest in a retail store display - Matching faces and identifying anonymous individuals in images - Photo tagging 15 1 5

  16. Facial Recognition – Social Media 16 1 6

  17. 17

  18. 18

  19. 19 Title of Presentation | FileSite Number June 23, 2017

  20. 20 2 0

  21. 21

  22. 22

  23. 23

  24. Wide, Wide Range of Biometrics 24

  25. Deploying Biometrics 25 25

  27. 27 2 7

  28. 28 2 8

  29. 29

  30. Biometrics Risks & Concerns 30 30

  31. 31

  32. Title of Presentation | FileSite Number June 23, 2017

  33. Potential for Hacking and Spoofing 33

  34. Additional Legal Issues to Consider • Should you obtain prior affirmative consent before collecting data? - How do you do that? Terms of Use/Privacy Policy? Other mechanism? • What level of control should individuals have over data collection, storage and use? • Compliance with Emerging Laws • How should your policy regarding biometrics address third parties who may not have agreed to specific terms and conditions with you? • How should you address retention periods for biometric data? • What should happen to the biometrics from someone who unsubscribes from a service? • Should you take any extra precautions with respect to the use of biometrics by children? • What types of security precautions (e.g., encryption, access restrictions, etc.) are appropriate for your storage of biometric information? 34

  35. 35

  36. Biometric Legislation & Regulation 36 36

  37. Biometrics – Federal Response • Oct. 2012: FTC report, “Facing Facts: Best Practices for Common Uses of Facial Recognition Technologies.” - Synthesized the discussions and comments from FTC’s December 2011 “Face Facts Forum.” - Among other things, the FTC report recommended that social networks using facial recognition features should provide consumers with clear notice about how the feature works, what data it collects, and how that data will be used, and should provide consumers with an easy opt-out option and the ability to turn the feature off at any time and have the biometric data previously collected from their photos permanently deleted. - Report also noted that even if a company does not itself intend to implement facial recognition technologies, it should consider putting protections in place that would prevent unauthorized scraping of publicly available images it stores in its online database. 37

  38. NTIA Initiative • Major self-regulatory initiative intended to address privacy concerns associated with facial recognition technology. - Advocates and industry groups were attempting to develop a voluntary, enforceable code of conduct for the use of facial recognition technology and generally define the contours of transparency and informed consent. • Stumbling block: nine consumer advocacy groups withdrew due to a lack of consensus on a minimum standard of consent re: commercial use of facial recognition technology. • Self-regulatory guidelines were issued, but 38 without any significant privacy requirements.

  39. Facial Recognition – GAO Report July 2015: GAO report, “Facial Recognition Technology: Commercial Uses, Privacy Issues, and Applicable Federal Law” • Legal landscape specifically addressing facial recognition is spare. • Federal law does not expressly address when commercial entities can use facial recognition technology to identify or track individuals, when prior consent should be required for the technology’s use, or how personal data gleaned from the technology may be used or shared. 39

  40. Facial Recognition – GAO Report GAO report noted the key issues that have been raised regarding facial recognition technology: • Consumer control over personal information : Concerns about faceprints being sold or shared, especially since marketers might be interested in the fact that faceprints can link a person’s online and offline presence. • Data Security : Heightened concerns when biometric data is subject to a data breach. • Misidentification : Technology does generate errors and captured image wrongly identified could propagate throughout different commercial systems without the individual’s knowledge. • Disparate Treatment : Concern about disparate treatment based upon information derived from facial recognition – denial of access to products/services if consumer denies consent; potential for “marketing surveillance” and price discrimination. 40

  41. Facial Recognition – Federal Laws? • Wiretap Laws: Intended to address surreptitious eavesdropping of communications, but not a square fit for biometrics. • HIPAA : Rules implementing the Act list full-face images and biometric identifiers among the personal identifiers that must be removed before protected health information is no longer considered individually identifiable health information. • GLB : GLB could potentially restrict the ability of financial institutions to share data collected with facial recognition technology if such data fell within the laws’ definitions of protected information. • COPPA : 2013 COPPA amendments classified a photograph of a child under 13 as “personal information” • Driver’s Privacy Protection Act : The Act addresses the use and disclosure of personal information contained in state DMV records (driver’s license photos are defined as personal information). • FERPA : Department of Education’s regulations implementing FERPA include biometric records (and facial characteristics) within the definition of “personally identifiable information.” • Video Voyeurism Prevention Act of 2004 : Prohibits capture of images of an individual’s “private area” without consent, or to knowingly do so under circumstances in which that individual has a reasonable expectation of privacy. However, “Private area” does not include faces. 41

  42. Children’s Online Privacy Protection Act (COPPA) • The COPPA Rule defines “personal information” to include individually identifiable information that is collected online, and expressly includes “a photograph, video or audio file that contains a child's image or voice.” (16 C.F.R. §312.2(8)) • Applies to operators of commercial website or online services with actual knowledge of the collection of information from children under 13, or if website or online service is targeted to children under 13 • The COPPA Rule broadly defines website or online service to include any service that connects to the internet or any other wide-area network (e.g., websites, mobile apps, network-connected games, voice over IP services, location based services, social networking services). • Clearly applies to social media apps, sites and services. • Could COPPA apply to network connected security cameras that capture children entering a stadium, where photographs and faceprints are stored in the cloud? 42

  43. Biometric Privacy –State Legislative Activity • Some examples of related state laws: - Three states have passed specific biometric privacy laws - Several states deem biometric information as “personal information” in breach notification laws - Some states regulate school use of biometrics • There are also a number of pending state bills that touch on biometric privacy for commercial uses (including drones), governmental collection and use of biometric data, and the collection and use of biometric data of students. 43

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Lost in Translation: Privacy in Commercial Use of Biometric Data Niva Elkin-Koren January 2016

Lost in Translation: Privacy in Commercial Use of Biometric Data Niva Elkin-Koren January 2016

Lost in Translation: Privacy in Commercial Use of Biometric Data Niva Elkin-Koren January 2016 Outline The Law and Technology Paradigm Information Privacy Privacy in commercial use of biometric data The Law and Technology Paradigm

626 views • 44 slides
Wearable Computers For Biometric Data Why Biometric Data? People want to win ! Why Biometric

Wearable Computers For Biometric Data Why Biometric Data? People want to win ! Why Biometric

Wearable Computers For Biometric Data Why Biometric Data? People want to win ! Why Biometric Data? Athletes need real-time feedback to improve ! You only improve what you measure What is Biometric Data? Cycle Monitors 20M 10M 1980 1990

458 views • 20 slides
Efficient Privacy-Preserving Biometric Identification Yan Huang Lior Malka David Evans Jonathan

Efficient Privacy-Preserving Biometric Identification Yan Huang Lior Malka David Evans Jonathan

Efficient Privacy-Preserving Biometric Identification Yan Huang Lior Malka David Evans Jonathan Katz http://www.mightbeevil.org/secure-biometrics/ Feb 9, 2011 Motivating Scenario: Private No-Fly Checking Threat Models Semi-honest adversary

1.4k views • 40 slides
Biometric Authentication Concepts Karoly Nyisztor SOFTWARE ENGINEER @knyisztor www.leakka.com

Biometric Authentication Concepts Karoly Nyisztor SOFTWARE ENGINEER @knyisztor www.leakka.com

Biometric Authentication Concepts Karoly Nyisztor SOFTWARE ENGINEER @knyisztor www.leakka.com Facial Recognition Biometric Data Privacy The LocalAuthentication Framework Up Next: Securing an App using Biometrics

97 views • 5 slides
Finding Yourself Is The Key University of Haifa Biometric Key Derivation that Joint work

Finding Yourself Is The Key University of Haifa Biometric Key Derivation that Joint work

Orr Dunkelman, Finding Yourself Is The Key University of Haifa Biometric Key Derivation that Joint work with Mahmood Sharif and Margarita Keeps Your Privacy Osadchy Overview Motivation Background : The Fuzziness Problem

810 views • 53 slides
BIAS BIAS Biometric Identity Assurance Services 6 March 2009 Catherine Tilton W3C Workshop on

BIAS BIAS Biometric Identity Assurance Services 6 March 2009 Catherine Tilton W3C Workshop on

BIAS BIAS Biometric Identity Assurance Services 6 March 2009 Catherine Tilton W3C Workshop on SIV Biometric services Whats missing? Biometric Applications Biometric Resources ? ANSI/NIST-ITL 1-2000/6 ? BioAPI/BIP ? Other ?

257 views • 13 slides
1 Biometric Encryption Aims www.ipc.on.ca Aims Protect the biometric data and

1 Biometric Encryption Aims www.ipc.on.ca Aims Protect the biometric data and

Content Motivation Biometric Encryption in 3D Face Biometric encryption in 3D Face Outlook Michiel van der Veen 3D Face end-user meeting March 22, Darmstadt, Germany 2 3D Face end-user meeting (March 22, 2007,

585 views • 5 slides
Biometric Security Roles & Resources Part 2 BIAS Cathy Tilton Chair, BIAS

Biometric Security Roles & Resources Part 2 BIAS Cathy Tilton Chair, BIAS

Biometric Security Roles & Resources Part 2 BIAS Cathy Tilton Chair, BIAS Integration TC VP, Standards & Emerging Tech, Daon www.oasis-open.org Biometric Identity Assurance Services (BIAS) Biometric Applications

723 views • 34 slides
Privacy A y Act of ct of 1 1974 Bio iometric ic Research Dat atab abases an and the Pr

Privacy A y Act of ct of 1 1974 Bio iometric ic Research Dat atab abases an and the Pr

Privacy A y Act of ct of 1 1974 Bio iometric ic Research Dat atab abases an and the Pr Privac acy Act of 1974 Professor Dorothy Glancy Santa Clara University School of Law Improving Biometric and Forensic Technology: The Future of

656 views • 10 slides
1 ! Knowing The Right Conversation What would the right conversation look and sound like

1 ! Knowing The Right Conversation What would the right conversation look and sound like

1 ! Knowing The Right Conversation What would the right conversation look and sound like when you initially engage others? If you listened to your colleagues conversation when she or he was dealing with someone what would it reveal?

1.05k views • 70 slides
Biometrics Outline Biometrics What is a Biometric Signature? What is an Authentication

Biometrics Outline Biometrics What is a Biometric Signature? What is an Authentication

Biometrics Outline Biometrics What is a Biometric Signature? What is an Authentication System? How does a Biometric System work? Biometric Comparisons Types of Biometrics Fingerprint-Scan Iris-Scan 2 BIOMETRICS

568 views • 36 slides
Biometric Analytics Cost Estimating Joseph Sarage and Sean McKenna Biometric Analytics Cost

Biometric Analytics Cost Estimating Joseph Sarage and Sean McKenna Biometric Analytics Cost

J u n e 1 1 , 2 0 1 5 Biometric Analytics Cost Estimating Joseph Sarage and Sean McKenna Biometric Analytics Cost Estimating Background + Approach + Case Study + Final Words + Q & A + 1 Booz Allen Internal Background:

679 views • 22 slides
How to Evaluate Transformation Based Cancelable Biometric Systems? R. Belguechi, E. Cherrier and

How to Evaluate Transformation Based Cancelable Biometric Systems? R. Belguechi, E. Cherrier and

How to Evaluate Transformation Based Cancelable Biometric Systems? R. Belguechi, E. Cherrier and C. Rosenberger GREYC Research Lab, ENSICAEN - CNRS University of Caen, FRANCE NIST International Biometric Performance Testing Conference 2012

682 views • 31 slides
CBEFF CBEFF Common Biometric Exchange Formats Framework Common Biometric Exchange Formats

CBEFF CBEFF Common Biometric Exchange Formats Framework Common Biometric Exchange Formats

CBEFF CBEFF Common Biometric Exchange Formats Framework Common Biometric Exchange Formats Framework 6 March 2009 Catherine Tilton W3C Workshop on SIV What is a CBEFF? CBEFF describes a structure and set of metadata elements necessary to

173 views • 13 slides
On the Resilience of Biometric Authentication Systems against Random Inputs Benjamin Zhao ,

On the Resilience of Biometric Authentication Systems against Random Inputs Benjamin Zhao ,

On the Resilience of Biometric Authentication Systems against Random Inputs Benjamin Zhao , Hassan Asghar, Dali Kaafar Biometric Authentication: Overview Metrics Face Feature Extraction FRR, Engineered FPR, Embeddings EER,

547 views • 25 slides
Observing Biometric Voter Registration What to look for? Workshop on BVR, Zimbabwe, August

Observing Biometric Voter Registration What to look for? Workshop on BVR, Zimbabwe, August

20170830 Observing Biometric Voter Registration What to look for? Workshop on BVR, Zimbabwe, August 2017 What to Observe? Analysis of the Framework Observation of the VR Operation Observation of the biometric component

224 views • 9 slides
Economic Analysis of Manitobans with Intellectual Disabilities Developed by MBA students Yusuf

Economic Analysis of Manitobans with Intellectual Disabilities Developed by MBA students Yusuf

Economic Analysis of Manitobans with Intellectual Disabilities Developed by MBA students Yusuf Kaamak & Annette Kroeker Agenda 1. Problem Definition 2. Observations 3. Recommendations 4. Method 5. Overview of Findings 6. Key Findings

224 views • 19 slides
HFS Update for HFMA MN November 7, 2019 Luke DiSabato & Becky Dolin About HFS Small

HFS Update for HFMA MN November 7, 2019 Luke DiSabato & Becky Dolin About HFS Small

HFS Update for HFMA MN November 7, 2019 Luke DiSabato & Becky Dolin About HFS Small Company in Elk Grove, CA. 35 years experience making MCR software. HFS makes Medicare Cost Reporting software for Hospitals, Skilled Nursing

1.29k views • 74 slides
WP1 Nuclear Industry Performance Prediction Contest Adrian Bek Problem Statement Integrated

WP1 Nuclear Industry Performance Prediction Contest Adrian Bek Problem Statement Integrated

IRIS Integrated European Industrial Risk Reduction System CP-IP 213968-2 WP1 Nuclear Industry Performance Prediction Contest Adrian Bek Problem Statement Integrated European Industrial Risk Reduction System CP-IP 213968-2 WP1 TESSH

335 views • 19 slides
Episodic Tremor and Slip: The Case of the Mystery Earthquakes Created in collaboration with

Episodic Tremor and Slip: The Case of the Mystery Earthquakes Created in collaboration with

Episodic Tremor and Slip: The Case of the Mystery Earthquakes Created in collaboration with Roger Groom (Mt. Tabor Middle School), Shelley Olds (UNAVCO), Herb Dragert (Geological Survey of Canada), Bob Butler (U. Portland), and Jenda Johnson

473 views • 46 slides
EPIQ SYSTEMS APRIL 2016 DISCLAIMER The views expressed in this presentation represent the

EPIQ SYSTEMS APRIL 2016 DISCLAIMER The views expressed in this presentation represent the

EPIQ SYSTEMS APRIL 2016 DISCLAIMER The views expressed in this presentation represent the opinions of Marcato Capital Management LP and/or certain affiliates (Marcato) and the investment funds it manages that hold shares in Epiq Systems,

166 views • 13 slides
Multi Modal Biometrics for O One Billion People Billi P l Raj Mashruwala, UIDAI and Salil

Multi Modal Biometrics for O One Billion People Billi P l Raj Mashruwala, UIDAI and Salil

Multi Modal Biometrics for O One Billion People Billi P l Raj Mashruwala, UIDAI and Salil Prabhakar, The World Bank Agenda Agenda g Need Mandate UID 101 UID 101 Strategy Biometric Architecture PoC Thesis

1.07k views • 43 slides
Catherine Morlet catherine.morlet@esa.int Erling Kristiansen erling.kristiansen@esa.int

Catherine Morlet catherine.morlet@esa.int Erling Kristiansen erling.kristiansen@esa.int

Catherine Morlet catherine.morlet@esa.int Erling Kristiansen erling.kristiansen@esa.int Technical Directorate ESA/ESTEC ICAO WG-I meeting, 25-29 August 2008 Iris Architecture options : use cases Iris Architecture options : use cases

679 views • 43 slides
Pan/Tilt Head with 4K UHD support, IP control, full-carbon body and high loading capability

Pan/Tilt Head with 4K UHD support, IP control, full-carbon body and high loading capability

Pan/Tilt Head with 4K UHD support, IP control, full-carbon body and high loading capability Featuring a state of the art carbon fiber design, rich connectivity with SDI, Fiber and Ethernet and of course the quality and smoothness necessary for

752 views • 11 slides

More recommend