fbpx

Download free GDPR compliance checklist!

Tag Archives for " authentication "

Why your palm could be safer than fingerprints or facial recognition?

Amazon and Apple both have patents for palm scanners and Chinese startups have already started using the tech in locks and vending machines.

Palm recognition systems work by identifying vein patterns and lines and creases on the hand’s surface, ideally using cameras and infrared to avoid contact. Compared with a face, palmprint is not privacy sensitive.

Source: Why your palm could be safer than fingerprints or facial recognition – Amazon and Apple both have patents for palm scanners and Chinese startups have already started using the tech in locks and vending machines | Abacus

Carrefour’s fingerprint payments to be investigated by Belgian privacy agency

The Belgian Data Protection Authority has stated that there is “a good chance” it will investigate Carrefour’s fingerprint payment system.

The supermarket chain announced on Tuesday that it will organise a pilot project allowing clients to pay for their groceries with their fingerprints in a store in the centre of Brussels. The clients will be able to pay by scanning their finger at the cash register, after which the money will disappear from their bank account.

Source: Carrefour’s fingerprint payments to be investigated by Belgian privacy agency

W3C and FIDO Alliance Finalize Web Standard for Secure, Passwordless Logins

The World Wide Web Consortium (W3C) and the FIDO Alliance announced the Web Authentication (WebAuthn) specification is now an official web standard.

WebAuthn is a browser/platform standard for simpler and stronger authentication. It is already supported in Windows 10, Android, and Google Chrome, Mozilla Firefox, Microsoft Edge and Apple Safari (preview) Web browsers.

WebAuthn allows users to log into their internet accounts using their preferred device. Web services and apps can — and should—turn on this functionality to give their users the option to log in more easily via biometrics, mobile devices and/or FIDO security keys, and with much higher security over passwords alone.

Source: W3C and FIDO Alliance Finalize Web Standard for Secure, Passwordless Logins

Facebook’s Phone Number Policy Could Push Users to Not Trust Two-Factor Authentication

Users are angry that Facebook is letting others, including advertisers, look up users via the phone numbers they provided to enable two-factor authentication.

What’s worse, it looks like there’s no way to completely remove your phone number that Facebook has collected. This screw-up, intentional or not, could discourage adoption of two-factor authentication, leaving people at risk of getting hacked.

Source: Facebook’s Phone Number Policy Could Push Users to Not Trust Two-Factor Authentication – Motherboard

2-factor authentication may be hackable, expert says

Cybersecurity professionals have advised enabling two-factor to add an extra layer of security — but according to at least one expert, this may not be a silver-bullet. Kevin Mitnick, who was once the FBI’s most wanted hacker and now helps companies defend themselves, found that two factor authentication can be vulnerable.

Full article: 2-factor authentication may be hackable, expert says

WhatsApp working on thumbprint authentication for chats

Facebook-owned WhatsApp is reportedly working on a fingerprint authentication feature to protect its users’ chats from being seen by others.

The fingerprint authentication feature will be available within the app under a new section. Once you enable the fingerprint feature, your WhatsApp will be completely protected from others to be seen.

Full article: Privacy at your fingertips: WhatsApp working on thumbprint authentication for chats – The Economic Times

How Authentication Must Evolve in the Age of GDPR

In this age of mandatory data breach notifications across the United States, Australia and soon Europe – among other areas of the world – as well as privacy regulations such as the EU’s General Data Protection Regulation and evolving notions of data usage and consent, organizations are facing more authentication challenges than ever.

Source: How Authentication Must Evolve in the Age of GDPR

Beyond passwords: Companies use fingerprints and digital behavior to ID employees

Biometric authentication uses face, fingerprint or iris scans to quickly confirm a person’s identity. You probably already use itap by touching the home button to unlock your phone.

In the workplace, employees are increasingly using biometrics to log in to phones and computers, and to access data stored on those devices and in the cloud.

Source: Beyond passwords: Companies use fingerprints and digital behavior to ID employees – Mar. 18, 2018

Real-time Captcha technique improves biometric authentication

A new login authentication approach could improve the security of current biometric techniques that rely on video or images of users’ faces. Known as Real-Time Captcha, the technique uses a unique ‘challenge’ that’s easy for humans — but difficult for attackers who may be using machine learning and image generation software to spoof legitimate users.

Source: Real-time Captcha technique improves biometric authentication — ScienceDaily

>