Report: Biometric Technologies ‘Inherently Fallible,’ Better Science Base Needed

Biometric systems -- designed to automatically recognize individuals based on biological and behavioral traits such as fingerprints, palm prints, or voice or face recognition -- are "inherently fallible," says a new report by the National Research Council, and no single trait has been identified that is stable and distinctive across all groups.  To strengthen the science and improve system effectiveness, additional research is needed at virtually all levels of design and operation.
 
"For nearly 50 years, the promise of biometrics has outpaced the application of the technology," said Joseph N. Pato, chair of the committee that wrote the report and distinguished technologist at Hewlett-Packard's HP Laboratories, Palo Alto, Calif.  "While some biometric systems can be effective for specific tasks, they are not nearly as infallible as their depiction in popular culture might suggest.  Bolstering the science is essential to gain a complete understanding of the strengths and limitations of these systems."
 
Biometric systems are increasingly used to regulate access to facilities, information, and other rights or benefits, but questions persist about their effectiveness as security or surveillance mechanisms.

 The systems provide "probabilistic results," meaning that confidence in results must be tempered by an understanding of the inherent uncertainty in any given system, the report says.  It notes that when the likelihood of an imposter is rare, even systems with very accurate sensors and matching capabilities can have a high false-alarm rate.  This could become costly or even dangerous in systems designed to provide heightened security; for example, operators could become lax about dealing with potential threats.
 
The report identifies numerous sources of uncertainty in the systems that need to be considered in system design and operation.  For example, biometric characteristics may vary over an individual's lifetime due to age, stress, disease, or other factors.  Technical issues regarding calibration of sensors, degradation of data, and security breaches also contribute to variability in these systems.
 
Biometric systems need to be designed and evaluated relative to their specific intended purposes and the contexts in which they are being used, the report says.  Systems-level considerations are critical to the successful deployment of biometric technologies.  Effectiveness depends as much on factors such as the competence of human operators as it does on the underlying technology, engineering, and testing regimes.  Well-articulated processes for managing and correcting problems should be in place. 
 
The report notes that careful consideration is needed when using biometric recognition as a component of an overall security system.  The merits and risks of biometric recognition relative to other identification and authentication technologies should be considered.  Any biometric system selected for security purposes should undergo thorough threat assessments to determine its vulnerabilities to deliberate attacks.  Trustworthiness of the biometric recognition process cannot rely on secrecy of data, since an individual's biometric traits can be publicly known or accessed.  In addition, secondary screening procedures that are used in the event of a system failure should be just as well-designed as primary systems, the report says.
 
The report identifies several features that a biometric system should contain.   Systems should be designed to anticipate and plan for errors, even if they are expected to be infrequent.  Additional research is needed in all aspects of design and operation, from studying the distribution of biometric traits in given populations to understanding how people interact with the technologies.  In addition, social, legal, and cultural factors can affect whether these systems are effective and accepted, the report says. 
 
The study was funded by the Defense Advanced Research Projects Agency, the Central Intelligence Agency, and the U.S. Department of Homeland Security, with assistance from the National Science Foundation.  The National Academy of Sciences, National Academy of Engineering, Institute of Medicine, and National Research Council make up the National Academies.  They are private, nonprofit institutions that provide science, technology, and health policy advice under a congressional charter.

Featured

  • 12 Commercial Crime Sites to Do Your Research

    12 Commercial Crime Sites to Do Your Research

    Understanding crime statistics in your industry and area is crucial for making important decisions about your security budget. With so much information out there, how can you know which statistics to trust? Read Now

  • Boosting Safety and Efficiency

    Boosting Safety and Efficiency

    In alignment with the state of Mississippi’s mission of “Empowering Mississippi citizens to stay connected and engaged with their government,” Salient's CompleteView VMS is being installed throughout more than 150 state boards, commissions and agencies in order to ensure safety for thousands of constituents who access state services daily. Read Now

  • Live From GSX: Post-Show Review

    Live From GSX: Post-Show Review

    This year’s Live From GSX program was a rousing success! Again, we’d like to thank our partners, and IPVideo, for working with us and letting us broadcast their solutions to the industry. You can follow our Live From GSX 2023 page to keep up with post-show developments and announcements. And if you’re interested in working with us in 2024, please don’t hesitate to ask about our Live From programs for ISC West in March or next year’s GSX. Read Now

    • Industry Events
    • GSX
  • People Say the Funniest Things

    People Say the Funniest Things

    By all accounts, GSX version 2023 was completely successful. Apparently, there were plenty of mix-ups with the airlines and getting aircraft from the East Coast into Big D. I am all ears when I am in a gathering of people. You never know when a nugget of information might flip out. Read Now

    • Industry Events
    • GSX

Featured Cybersecurity

Webinars

New Products

  • AC Nio

    AC Nio

    Aiphone, a leading international manufacturer of intercom, access control, and emergency communication products, has introduced the AC Nio, its access control management software, an important addition to its new line of access control solutions. 3

  • PE80 Series

    PE80 Series by SARGENT / ED4000/PED5000 Series by Corbin Russwin

    ASSA ABLOY, a global leader in access solutions, has announced the launch of two next generation exit devices from long-standing leaders in the premium exit device market: the PE80 Series by SARGENT and the PED4000/PED5000 Series by Corbin Russwin. These new exit devices boast industry-first features that are specifically designed to provide enhanced safety, security and convenience, setting new standards for exit solutions. The SARGENT PE80 and Corbin Russwin PED4000/PED5000 Series exit devices are engineered to meet the ever-evolving needs of modern buildings. Featuring the high strength, security and durability that ASSA ABLOY is known for, the new exit devices deliver several innovative, industry-first features in addition to elegant design finishes for every opening. 3

  • QCS7230 System-on-Chip (SoC)

    QCS7230 System-on-Chip (SoC)

    The latest Qualcomm® Vision Intelligence Platform offers next-generation smart camera IoT solutions to improve safety and security across enterprises, cities and spaces. The Vision Intelligence Platform was expanded in March 2022 with the introduction of the QCS7230 System-on-Chip (SoC), which delivers superior artificial intelligence (AI) inferencing at the edge. 3