Builders of London Olympics Site - Biometricaly Authenticated

March 5th, 2008 by Alina (0) DLP, In the News, biometrics, security breach

All workers involved in building the London Olympic site for the 2010 games will go through a thorough biometric authentication process. The biometric screening will consist of a two-tier process, reports the Times, palm-print reading and face recognition. A total of 100,000 workers will have to comply with this security requirement until the completion of the Olympic site. If the system works, it might also be used for stadium ticket holders.

The biometric screening project is on the other hand already rising serious questions about the level of protection it can provide for private data:

The use of biometrics is part of a £354 million strategy to secure the 500-acre Olympic Park during its construction, which starts in June. But it has raised concerns about data protection among unions and civil liberty groups.

Alan Ritchie, general secretary of Ucatt, the main construction union, said: “We do not foresee a problem, providing the ODA [Olympic Delivery Authority] guarantee that the biometric data will not be passed on to any third parties and will be wiped once the project is complete.”

The methods employed to prevent data losses, theft or security breaches aren’t clear for now. I’d recommend a thorough analysis of what endpoint security and DLP solution will be chosen to make sure biometric data is not lost or stolen before its final deletion at the end of the project.

Is Biometric Authentication a Must for USB Sticks?

February 19th, 2008 by Alina (0) DLP, Data Leakage, endpoint security

Starting as cool give-aways, easily brandable and not taking too much space, USB sticks have developed into quite efficient means of carrying data to and from PCs. As numbers of mobile employees and freelancers numbers increase, fast and easy means of carrying information around gains more attention. And with that attention the threats of having proprietary information and private details lost and stolen increases.

As endpoint security evolves, so do protection forms, varying more and embedding the latest technology. So why would a USB stick need biometrics, if passwords and data encryption are already available? To answer that question, we first need to better define biometrics. The term covers the study of methods for uniquely recognizing humans based upon one or more intrinsic physical or behavioral traits. According to Wikipedia, there are two major categories used to divide biometric traits:

  • physiological - related to the shape of the body. The oldest traits, that have been used for over 100 years, are fingerprints. Other examples are face recognition, hand geometry and iris recognition.
  • behavioral - related to the behavior of a person. The first characteristic to be used and still very popular today is the signature. More modern approaches are the study of keystroke dynamics and of voice.

So, what is so special about biometrics-based authentication? It is believed to be impossible to reproduce or forge. Besides, you don’t have to worry about misplacing the encryption key or forgetting the 8 character password you cleverly invented.

That is of course an amazing idea to keep your data safe if you are not part of the group that believes stories in spy movies are true. We’ve all seen passwords of 6 alphanumeric characters broken in less than a minute, haven’t we? Or eyes being remade and fingerprints “printed” within seconds.

© Endpoint Security Info 2008. Wordpress Theme by Arcsin

blogarama - the blog directory Technology Blogs - BlogCatalog Blog Directory Blog Directory Find Blogs in the Blog Directory
valid CSS valid XHTML