Report - Guardian

More documents

Recommendations

Info

170 The LSE Identity Project <strong>Report</strong>: June 2005and iris scans to establish one's identity or, at least, one's uniqueness. The theory behindthis approach is that a biometric is less likely to be spoofed or forged than might asimple photo identity card.In the UK identity proposals, biometrics would be taken upon application for a card andfor entry on the National Identification Register, and would be used thereafter for major‘events’ such as obtaining a driving license, passport, bank account, benefits oremployment. The eye and fingers of the applicant would be scanned, and then comparedboth with the biometric on the identity card (which contains the biometrics in electronicform), and against a national database (which also contains the biometrics).It is a faith in biometrics that is driving the Identity Card Bill. In October 2004, PrimeMinister Tony Blair announced that ID cards would be in the Queen’s speech. On thetopic of technological progress, he stated that“Overall, progress is very encouraging and I'm confident we cansuccessfully develop a secure ID card for the whole country. (…)Computers and technology are so advanced now that forgery ofpassports and identity documents are easier than it's ever been. (…) Asecure modern solution will give us much more protection than wehave at the moment.” 423The Government has repeatedly claimed that the use of biometrics will prevent anyfraudulent use of the system. Often it is said that biometrics is the key enabler of theGovernment’s bill, particularly since the very existence of the National Identity Registerhinges on the verification of biometrics. A central register on a scale of 50 millionrecords would need to contain very accurate biometrics, and the verification processwould have to involve high-integrity devices. To operate at a national scale, asenvisioned by the Government, the technology would have to be close to perfect.Failure of the biometrics and the register can not be an option.However, any claim of infallibility is incorrect. All biometrics have successfully beenspoofed or attacked by researchers. Substantial work has been undertaken to establishthe technique of forging or counterfeiting fingerprints 424 while researchers in Germanyhave established 425 that iris recognition is vulnerable to simple forgery. 426A 2002 report of the United States General Accounting Office “Using biometrics forborder security” states:Biometric technologies are maturing but are still not widespread orpervasive because of performance issues, including accuracy, the lack423 ‘PM Press Conference’, Number 10 Downing Street, October 25, 2004.424 Tsutomu Matsumoto, Hiroyuki Matsumoto, Koji Yamada, Satoshi Hoshino, Impact of Artificial "Gummy"Fingers on Fingerprint Systems, May 15, 2002, http://www.cryptome.org/gummy.htm425 ‘Body Check’, Lisa Thalheim, Jan Krissler, Peter-Michael Ziegler, CT Magazine, November 2002,http://www.heise.de/ct/english/02/11/114/.426 Liveness Detection in Biometric Systems, http://www.biometricsinfo.org/whitepaper1.htm.
The LSE Identity Project <strong>Report</strong>: June 2005 171of application-dependent evaluations, their potential susceptibility todeception, the lack of standards, and questions of users’ acceptance. 427It also warns against making assumptions about the ability of the technology to performacross large populations:“The performance of facial, fingerprint, and iris recognition isunknown for systems as large as a biometric visa system…”There are two distinct problems that can result from failure to adequately register with abiometric device. The first is described as the Failure to Enrol Rate (FTER). Thisoccurs when a person’s biometric is either unrecognisable, or when it is not of asufficiently high standard for the machine to make a judgment. The second crucialindicator is the False Non-Match Rate (FNMR) that occurs when a subsequent readingdoes not properly match the properly enrolled biometric relating to that individual.The first problem would result in a person not being enrolled in an identity system. Thesecond can result in denial of access to services. While iris recognition appears toperform better than other biometrics in both these figures, there are still substantialproblems, and these are likely to disproportionately affect, for example, visuallydisabled people.The Government has been previously warned of all these problems. According toWritten Evidence submitted to the Home Affairs Committee from BT, these biometricsrequire further testing.“Fingerprint recognition is in use in a number of applications and is arelative success. Issues with fingerprint recognition include the highrate of false non-match results and social inclusion given that in thecurrent UK population approximately one in a thousand people areunable to provide the required four suitable fingerprints. Anotherpotential problem area is the public perception of the process of takingfingerprints and its link with the criminal justice process.Iris recognition is as yet unproven in large-scale biometricapplications. Issues include the physical size of the each individualdatum and for a population in excess of 50 million, the need for animage of both irises to ensure uniqueness. Around one in ten thousandpeople do not have a suitable iris for recognition.Facial recognition is not currently sufficiently reliable for theidentification of each member of the population and recent trials haveshown relatively poor identification performance.” 428427 U.S. General Accounting Office, Using Biometrics for Border Security, Washington D.C., November 2002http://www.gao.gov/new.items/d03174.pdf.428 ‘Memorandum submitted by British Telecommunications plc’, submitted to the Select Committee on HomeAffairs, January 2004, available athttp://www.publications.parliament.uk/pa/cm200304/cmselect/cmhaff/130/130we04.htm.
Page 1:
The Identity Projectan assessment o
Page 5 and 6:
The LSE Identity Project Report: Ju
Page 7:
Page 11 and 12:
Page 13 and 14:
Page 15:
Page 19:
Page 23 and 24:
Page 25 and 26:
Page 27 and 28:
Page 29 and 30:
Page 31 and 32:
Page 33:
Page 36 and 37:
22 The LSE Identity Project Report:
Page 38 and 39:
Page 40 and 41:
Page 42 and 43:
Page 44 and 45:
Page 46 and 47:
Page 48 and 49:
Page 50 and 51:
Page 52 and 53:
Page 54 and 55:
Page 56 and 57:
Page 58 and 59:
Page 60 and 61:
Page 62 and 63:
Page 64 and 65:
Page 66 and 67:
Page 68 and 69:
Page 70 and 71:
Page 72 and 73:
Page 74 and 75:
Page 76 and 77:
Page 78 and 79:
Page 80 and 81:
Page 82 and 83:
Page 84 and 85:
Page 86 and 87:
Page 88 and 89:
Page 90 and 91:
Page 92 and 93:
Page 94 and 95:
Page 96 and 97:
Page 98 and 99:
Page 100 and 101:
Page 102 and 103:
Page 104 and 105:
Page 106 and 107:
Page 108 and 109:
Page 110 and 111:
Page 112 and 113:
Page 114 and 115:
100 The LSE Identity Project Report
Page 116 and 117:
Page 118 and 119:
Page 120 and 121:
Page 122 and 123:
Page 124 and 125:
Page 127 and 128:
Page 129 and 130:
Page 131 and 132:
Page 133 and 134: The LSE Identity Project Report: Ju
Page 157: The LSE Identity Project Report: Ju
Page 160 and 161: 146 The LSE Identity Project Report
Page 235 and 236:
Page 237 and 238:
Page 239 and 240:
Page 241 and 242:
Page 243 and 244:
Page 245 and 246:
Page 247 and 248:
Page 249 and 250:
Page 251 and 252:
Page 253 and 254:
Page 255 and 256:
Page 257 and 258:
Page 259:
Page 262 and 263:
Page 264 and 265:
Page 266 and 267:
Page 268 and 269:
Page 270 and 271:
Page 272 and 273:
Page 274 and 275:
Page 276 and 277:
Page 278 and 279:
Page 280 and 281:
Page 282 and 283:
Page 284 and 285:
Page 286 and 287:
Page 288 and 289:
Page 290 and 291:
Page 292 and 293:
Page 294 and 295:
Page 296 and 297:
Page 299 and 300:
Page 301 and 302:
Page 303 and 304:
Page 305 and 306:
Page 307 and 308:
Page 309 and 310:
Page 311 and 312:
Page 313 and 314:
Page 315 and 316:
Page 317:
show all

Report - Guardian

Create successful ePaper yourself

Delete template?

Save as template?