Feeds

FBI preps $1bn biometric database

'Next Generation Identification' awaits you

Securing Web Applications Made Simple and Scalable

"If someone steals and spoofs your iris image, you can't just get a new eyeball." Paul Saffo, technology industry observer

Quality science fiction has often provided the prism through which we view, for good or ill, the effects of technological and scientific evolution on human life in all its moral and ethical disarray. No recent sci-fi movie has portrayed the inexorable expansion of the use of biometric data in public fora better than Minority Report.

To the surprise of no one who follows such things, the FBI on Friday at last revealed its plans for a major expansion of the use of biometrics in law enforcement - and perhaps most unnervingly, what appears to be a widespread expansion of its use in public spaces.

"Bigger. Faster. Better. That's the bottom line," Thomas E. Bush III, assistant director of the FBI's Criminal Justice Information Services Division, said to the Washington Post. Of course, with American law enforcement, that's always the bottom line, and this is clearly just the beginning.

The program is closely tied with technology currently being developed at the West Virginia University Center for Identification Technology Research (CITeR), located a short drive away, that will allow for biometric identification based on facial recognition technology from as far away as 200 yards, and iris scans from about fifteen feet. Although the report did not specifically address questions of public surveillance, it's difficult to imagine places other than public spaces where law enforcement needs to recognize people from 200 yards away.

The FBI's biometric database is apparently being developed according to standards - of what? - allegedly shared by Britain, Canada, Australia, the US and New Zealand, and includes criminal histories. It is connected, for purposes of cross-reference, with the Terrorist Screening Center's database, and the National Crime Information Center database, which is the FBI's master criminal database of terrorists, felons, fugitives and other undesirables.

Minority retort

Civil libertarians and privacy advocates are not amused.

They claim that the project presents nightmare scenarios of stolen biometric information being used for ever-more outlandish forms of identity theft, which would be nearly impossible to correct. Correcting an inaccurate credit report is already an insulting and hair-raising experience in America, and critics contend that the use of biometrics would make correcting inaccurate credit reports or criminal histories nearly impossible. Besides, they argue, the US government does not exactly have a sterling record when it comes to database security - what happens when, as seems inevitable, the database is hacked and this intimate and allegedly indisputable data is compromised?

The FBI already has a database of 55 million fingerprints and several million DNA samples, but the new initiative will be able to rely on iris patterns, face-shape data, scars, and even unique mannerisms such as the ways people walk and talk, to solve crimes and identify criminals, terrorists and the like.

The FBI will also be more than happy to retain - upon request by employers, though we suspect employers who prefer that the data not be retained will probably have to "opt out" - the fingerprints of employees who have undergone criminal background checks so the employers can be notified if employees have brushes with the law. The project will also share data with law enforcement agencies around the world. Information sharing is always a two way street, which makes the whole endeavor seem even less reliable, depending on where that information comes from.

Databases usually become less accurate, rather than more, the older and bigger they get, because there's very little incentive for the humans that maintain them to go back and correct old, inaccurate information rather than simply piling on new information. Data entry typically trumps data accuracy. Furthermore, the facial recognition technology in its current iteration is woefully inaccurate, with recognition rates as low as 10 per cent at night. All in all, there is ample reason for skepticism - not that it will make much of a difference.

Thanks for the memories

Biometric sharing with the government has already proven to be a sucker's deal for those who have chosen to participate. The government is never going to assume one's innocence just because that individual has agreed to make him or herself immediately identifiable to government screeners - which is why Americans who agreed to submit to routine iris scans in airports still have to wait in line to take off their shoes and have their bags x-rayed.

CITeR director Lawrence A. Hornak - a visionary of the Big Brother school of technology - awaits the day when devices will be able to "recognize us and adapt to us. The long-term goal," he said, is "ubiquitous use" of biometrics. A traveler may walk down an airport corridor and "allow" his face and iris images to be captured without ever stepping up to a kiosk and looking into a camera, he said. Sound familiar?

One of the most memorable scenes in Minority Report occurs when John Anderton, pursued by his own pre-crime division, breaks into a secure area using a stolen eyeball to bypass an iris-scan identification system. Of course, sophisticated criminals of the future will probably not have to resort to carrying stolen eyeballs around in ziplock bags - the glories of digital information technology will surely provide cleaner, more elegant criminal solutions.®

Burke Hansen, attorney at large, heads a San Francisco law office

Application security programs and practises

More from The Register

next story
ONE EMAIL costs mining company $300 MEEELION
Environmental activist walks free after hoax sent share price over a cliff
Arrr: Freetard-bothering Digital Economy Act tied up, thrown in the hold
Ministry of Fun confirms: Yes, we're busy doing nothing
Help yourself to anyone's photos FOR FREE, suggests UK.gov
Copyright law reforms will keep m'learned friends busy
Apple smacked with privacy sueball over Location Services
Class action launched on behalf of 100 million iPhone owners
US judge: YES, cops or feds so can slurp an ENTIRE Gmail account
Crooks don't have folders labelled 'drug records', opines NY beak
UK government officially adopts Open Document Format
Microsoft insurgency fails, earns snarky remark from UK digital services head
You! Pirate! Stop pirating, or we shall admonish you politely. Repeatedly, if necessary
And we shall go about telling people you smell. No, not really
prev story

Whitepapers

Top three mobile application threats
Prevent sensitive data leakage over insecure channels or stolen mobile devices.
Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Boost IT visibility and business value
How building a great service catalog relieves pressure points and demonstrates the value of IT service management.
Designing a Defense for Mobile Applications
Learn about the various considerations for defending mobile applications - from the application architecture itself to the myriad testing technologies.
Build a business case: developing custom apps
Learn how to maximize the value of custom applications by accelerating and simplifying their development.