Tag Archive for Facial recognition

| November 14, 2022
Comments Off on 6 Things to Never Save on Your Mobile Phone

6 Things to Never Save on Your Mobile Phone

6 Things to Never Save on Your Mobile PhoneTwo out of every three people are addicted to their mobile phone. The average user touches their smart phone 2,617 times a day. It is no wonder that most people view their cell phone as detailed summary of their personal life. This convenience comes at a price. A recent from report from Kensington found that 70 million smartphones are lost each year, with only 7 percent recovered.

dangerous to your privacy and your walletThere are things you should never store in your cell phone. Readers Digest says that keeping valuable info on your mobile is dangerous to your privacy and your wallet. You open yourself up to an invasion of privacy, identity theft and straight-up theft. Here are some things you should not keep on your phone.

Your passwords

If you keep your passwords on your mobile, you are putting you privacy at risk. Even if you keep them in a note, a document or even in auto-fill on your mobile, you’re putting your data at risk. The article says if you lose your phone, someone might easily see your “cheat sheet.”  Because everyone snoops through mobile phones. Even if you store your passwords on your mobile phone they can end up stored in the cloud, still putting your accounts at risk. Instead consider a password manager such as Keeper, or LastPass. That way all of your passwords can be accessed by you using one strong master password.

Your face and fingerprints

don’t use biometrics to open your phoneIf you really want to keep your cell phone secure, don’t use biometrics to open your phone (or any of its apps or accounts). There are many reasons why biometrics like fingerprints don’t make you more secure. Facial recognition apps are more dangerous that using a password. The author says the simple fact is that a phone that requires a password to unlock it requires more steps to unlock. That makes the mobile phone more secure.

Your private photos and videos

You may have cleaned up your Facebook account, but what about your phone? What photos and videos do you store on your phone? If you have photos you wouldn’t want your spouse, children, or boss to see, then you shouldn’t store those photos on your smartphone according to the article. Media stored on your phone is saved in the cloud outside of your control.

Your naughty photos are one problem. Another is any photos containing private information. While photos of credit cards and ID can help you keep track of “what’s in your wallet,” they can also leave your information vulnerable to hacking. Again the photos are stored on the cloud. As with your naughty photos, Readers Digest suggests you store your pictures ID on a PC that only you have access to in a password-protected album.

Anything on your work phone

Do not save anything personal on an employer-provided mobileDo not save anything personal on an employer-provided mobile. There’s no such thing as a free lunch. The phone you were issued by your employer comes at a steep price: your privacy. You should have no expectation of privacy for anything you do on that phone. For your personal life the article recommends using a separate phone and phone number. One budget-minded option is a burner phone.

Your online bank account

Digital banking in the US is expected to grow from 197 million users in March 2021 to 217 million by 2025. But the convenience online banking affords—the ability to bank anywhere, anytime— comes at a cost: your privacy. Carrying your bank account with you on your phone means that you’re risking losing control of it in the event you lose your phone…or even lose track of an old phone that you no longer use they warn.

To manage the risk, you might consider avoiding doing your online banking on your phone. Instead, do it on a computer that never leaves your home. If you find that you simply must take your online banking with you wherever you go, just be sure to use a strong, unique password to unlock your banking app.

Your home address

Storing your home address in navigation app like Waze or Google Maps makes getting home from anywhere super-easy. But it can also leave you vulnerable. If a thief ends up with your phone, they can simply click on “home,” or “work,” and see what you’ve stored, and pay you a visit.

If you lose your mobile phone that are some steps you need to take according to Consumer Reports. As soon as you get your new mobile phone.

Use strong password protection on your mobile phone

Use strong password protectionThis is your first and strongest line of defense. You need a strong password, because one that’s easy to guess could unlock your phone and allow someone to override the biometric safeguards.

Skip the simple 4-digit PIN and instead create a strong password that contains a string of at least eight characters that include some combination of letters, numbers, and special characters that don’t form recognizable words or phrases, especially those that could be associated with you.

Password protection comes with another safeguard according to Consumer Reports. After several unsuccessful tries to enter a passcode, some phones will lock your device for a short period of time. This slows down attempts to access your phone. There’s also a setting on the latest Android phones that automatically erases all of your personal data after 10 unsuccessful log in attempts. Here’s how to activate it. Go to:

  • Settings | Lock Screen | Secure Lock Settings | and toggle the Auto Factory Reset option to switch it on. (The labels may vary slightly on other Android models.)

Enable location tracking

You must turn on the global positioning settings (GPS) in order to find a missing phone on a map. To enable this setting on an Android phone go to:

  • Settings | Security | Find My Device and toggle Find My Device.

Back up your photos and videos

Consider using a carrier-neutral service to back up your mobileConsider using a carrier-neutral service to back up your mobile. Apple’s iCloud or Android’s Google Drive may make it easier to retrieve your memories should your next phone be from a different carrier. Phone carriers, phone makers, and operating systems also offer free over-the-air backup for photos, settings, and more. These options can limit you if you select a new carrier for your next mobile phone.

Write down your phone’s unique ID number

Smartphones have a unique serial number known as an IMEI (International Mobile Equipment Identity) or MEID (Mobile Equipment Identifier). Unlike other information stored on the phone’s removable SIM card, these numbers are etched into its circuits and are difficult to alter. Your carrier already has this number and can use it to put the phone on a missing phone list. Some police departments ask for either of these numbers when you report a stolen phone. With the numbers they’ll be able to return a phone to you if it’s recovered. To find your phone’s unique IMEI or MEID number, use any of the following steps:

  • Dial *#06# from your phone. The number may pop up on your screen.
  • On an Android phone go to: Settings | About Phone. The number should be on that screen.

After the phone is gone, the sooner you act, the better your chances of retrieving your phone and securing your data. Here are key actions to take according to CR.

Seek and (possibly) destroy your mobile phone

erase the data on yourphoneIt is important that the minute you learn your phone is missing, you send it commands you think are appropriate. Time is of the essence because these next steps requires your phone to be on and have some battery life left.

As soon as possible, call or text your phone from another device. That might be all it takes if your phone is just misplaced nearby.

Then log on to your Find My Phone service from a secure device. For an Android phone, go to Google’s Find My Device in a browser. Use the service to make your phone play a sound. You can also lock the screen and display a message for someone who finds your phone. An honest person may come across your device and notify you via the contact info on the screen. If you think the bad guys have your phone, you can erase the data on it using Find My Device.

Report the Loss to Your Service Provider

Inform your mobile carrier that your phone has been lost or stolen. It can suspend service to prevent anyone from using the device on its network. They may also mark the phone as unusable even on a new carrier or with a different SIM card. Note that your device will still be usable over WiFi. You can notify your provider by going to one of its stores, calling, or logging on to its website.

  • AT&T: Call 800-331-0500 or go to AT&T’s Suspend page.
  • T-Mobile: Call 800-937-8997 or go to My T-Mobile, and in the My Line section click on your device name to find the Report Lost or Stolen option.
  • Verizon: Call 800-922-0204 or go to the Suspend or Reconnect Service page in My Verizon and follow the prompts.

Change Your Important Passwords

Once you realize your phone is in danger, go to a secure PC,  log in to every account you had on your phone (banking, shopping, email, etc.) and change your passwords. Start with your email account. Then change the financial and shopping accounts that have your credit card on file, such as Amazon or your bank. Next move on to social networks. If you’ve set up a password manager, this task will be easy.

Report the Loss to the Police and File an Insurance Claim

Notify the police. This not only launches an official recovery attempt but also helps speed up the process of making an insurance claim (if your covered). You might also need a police report to dispute fraudulent credit card charges, and some credit card issuers will reimburse you for a stolen phone.

Wipe your mobile phone anyway

malicious app or spywareIf you recover your phone You never know what malicious app or spyware someone may have installed while the phone was out of your hands. To be on the safe side, reset the phone to factory settings. If you see an option to erase everything, make sure you select it. Before you nuke the phone, check your backups to make sure that you have copies of all the photos and videos that were on your phone.  On an Android phone, go to:

  • Settings | System | Advanced | Reset Options | Erase All Data (factory reset).

 

How you can help Ukraine!

Related article

 

Ralph Bach has been in IT long enough to know better and has blogged from his Bach Seat about IT, careers, and anything else that catches his attention since 2005. You can follow him on LinkedInFacebook, and Twitter. Email the Bach Seat here.

 

Category: Uncategorized | Tags: , , , , , , , , , , , , , , ,
| October 26, 2020
Comments Off on Work From Anywhere Movement

Work From Anywhere Movement

Work From Anywhere MovementChanges in the workforce are beginning to emerge as we suffer through 6 months of the COVID-19 pandemic. Matt Mullenweg, CEO of Automattic, the parent company of WordPress and Tumblr blogged, “This might be a chance for a great reset in terms of how we work.Slack co-founder and CEO Stewart Butterfield told the BBCWe all know that work will never be the same, even if we don’t yet know all the ways in which it will be different.” Recent reports from Owl Labs and staffing firm Robert Half put numbers to what many have sensed – the nature of work has changed to work from anywhere.

Work from anywhere benefits

The Owl Labs State of Remote Work report and Robert Half 2021 Salary Guide (PDF) looked at work from anywhere. The reports found unexpected benefits and challenges. Employee expectations have shifted as 69% of full-time workers in the U.S. are working from home during the COVID-19 pandemic. The change in the nature of work has benefits for employees and employers.

Employees are seeing economic and personal benefits from the change in the nature of work. Owl Labs reports that workers are saving almost $479.20 per month on additional expenses related to work. That is nearly $6,000.00 a year savings. U.S. Federal Highway Administration reports that U.S. road traffic fell by more than 25% during the lockdowns. Traffic levels dell to the lowest level since 1995. As a result, Owl Labs found that the average WFM employee saving 40 minutes per day on the daily commute. That totals to over three workdays per month which can be dedicated to personal objectives.

Work-life balance

Remote work has mental health and work-life balance benefits, too.

  • work-life balance77% of respondents told Owl Labs that having the option to work from home would make them happier.
  • 77% report that working remotely would make them better able to manage work-life balance.
  • 72% of all survey respondents agreed that the ability to work remotely would make them less stressed

In 2013 old-school Yahoo CEO Marissa Mayer, claimed, “Speed and quality are often sacrificed when we work from home.” She was wrong. Employers are also gaining benefits from the new work from anywhere. 20% of employees told Owl Labs they worked more hours per week during the pandemic – for the same pay.

working more hours per week during the pandemicDuring COVID, the average work from anywhere employees worked an extra 26 hours each month. Which is nearly an extra day every week. Despite claims to the contrary from old-school managers, worker productivity has improved. 75% of people working from home report they are the same or more productive during COVID-19. In 2020, people are using video meetings 50% more than pre-COVID-19.

Being able to work remotely some of the time also makes the employers more attractive to staff. Respondents told the researchers that with remote work:  

  • 80% would feel like their employer cares,
  • 74% would be less likely to leave their employer,
  • 59% would be more likely to choose one employer over another in their next job if they offered remote work.

look for another role that allowed remote workIf working from anywhere was no longer an option after COVID-19, almost 70% of respondents would be less happy. Almost half would look for another role that allowed remote work. Robert Half found that 60% of workers want to work for an organization that values its staff during unpredictable times.

80% of full-time workers told Owl Labs they expect to work from anywhere at least three times per week after the lockdown. Robert Half also found that 74% of employees want to work remotely more frequently following the pandemic.

Increase surveillance

Of course, this is not all puppy dogs and rainbows. Employers may increase surveillance of WFH staff. Firms uncomfortable with the work from anywhere movement can turn to software track employees. Productivity monitoring is available from Aware, ActivTrakTime Doctor, or TeramindPwC has developed a facial recognition tool that logs when employees are away from their computer screens while working from home.

increased surveillance of WFH staffThe Guardian reports that interest in Teramind’s product has tripled during the pandemic. When Teramind’s “agent” is downloaded to employees’ computers, they can measure employee time spent on different windows. It can playback or live-stream a view of an employee’s screen and record their every keystroke. It can also raise a flag if certain predetermined words are typed. Eli Sutton, the firm’s head of operations told the paper that 70% of Teramind’s clients are concerned about productivity. He said, “Teramind is an extra set of eyes to make sure distractions aren’t causing issues.

Forty-three percent of survey respondents told Owl Labs that if their employer started monitoring their WFH activity as a way to track productivity they would be unhappy or leave.

rb-

Having an expanded remote workforce alters the dynamics of work. Employees will no longer be bound by geography to find the best opportunity. Employers can expand their pool of candidates. The work from anywhere movement will also raise tensions between old-school managers who are about control and their remote employee’s privacy.

Stay safe out there!

Related article

 

Ralph Bach has been in IT long enough to know better and has blogged from his Bach Seat about IT, careers, and anything else that catches his attention since 2005. You can follow him on LinkedInFacebook, and Twitter. Email the Bach Seat here.

Category: Uncategorized | Tags: , , , , , , , , , ,
| July 7, 2020
Comments Off on Facial Recognition False Arrest

Facial Recognition False Arrest

Facial Recognition False ArrestBack in January 2020, the Detroit Police Department arrested Robert Williams in his driveway in Farmington Hills according to The New York Times. He had his mug shot, fingerprints and DNA taken and was held overnight. Based on facial recognition software DPD decided that in October 2018 decided he had shoplifted 5 watches worth $3,800, from Shinola. Shinola is an upscale boutique that sells watches, bicycles, and leather goods in the trendy Midtown neighborhood of Detroit.

Detroit Police Department

Mr. Williams knew that he had not committed the crime in question. What he could not have known, as he sat under arrest, is that his case may be the first known account of an American being wrongfully arrested based on a flawed match from a facial recognition algorithm, according to experts on technology and the law. This is part of the systemic racial bias in law enforcement that millions are protesting. They are protesting not just the actions of individual officers, but bias in the systems used to monitor communities and identify people for prosecution.

Facial recognition systems have been used by police forces for more than two decades. Recent studies by MIT. and NIST (PDF), have found that while facial recognition technology works relatively well on white men, the results are less accurate for other demographics, in part because of a lack of diversity in the images used to develop the underlying databases.

Michigan State Police

As part of this debate, IBM, Amazon, and Microsoft paused new sales of facial recognition systems to  law enforcement. The gestures were largely symbolic, given that the companies are not big players in the industry. The technology police departments use, according to the NYT, is supplied by companies that aren’t household names, such as Vigilant Solutions, Cognitec, NEC, Rank One Computing, and Clearview AI.

Clare Garvie, a lawyer at Georgetown University’s Center on Privacy and Technology, has written about problems with the government’s use of facial recognition told the NYT she suspects Mr. Williams’ case is not the first case to misidentify someone to arrest them for a crime they didn’t commit. “This is just the first time we know about it.

facial recognitionMr. Williams’ case combines flawed technology with poor police work, illustrating how facial recognition can go awry according to the New York Times. The original still unsolved Shinola shoplifting case occurred in October 2018. Katherine Johnston, a loss prevention contractor for Shinola reviewed the store’s surveillance video and sent a copy to the Detroit police, according to the DPD report. Where it sat until the Michigan State Police got involved – in a shoplifting case.

In March 2019, Jennifer Coulson, a digital image examiner for the Michigan State Police, uploaded a “probe image” — a still from the Shinola video, showing a man in a red Cardinals cap — to the state’s facial recognition database. The DataWorks Plus system mapped the man’s face and searched for similar ones in a collection of 49 million photos.

Facail recognition is less accurate with people of color

Since 2005 Michigan’s facial recognition technology has been supplied by a South Carolina company called DataWorks Plus under a contract worth $5.5 million. The NYT says DataWorks Plus does not formally measure the systems’ accuracy or bias. Todd Pastorini, a DataWorks Plus general manager told the NYT, We’ve become a pseudo-expert in the technology.

In Michigan, the DataWorks facial recognition software used by the state police incorporates components developed by the Japanese tech giant NEC and by Rank One Computing, based in Colorado, according to Mr. Pastorini and a state police spokeswoman. In 2019, algorithms from both companies were included in a federal study of over 100 facial recognition systems that found they were biased, falsely identifying African-American and Asian faces 10 times to 100 times more than Caucasian faces.

I guess the computer got it wrong

After MSP’s Coulson, ran her search of the probe image, the system would have provided a row of results generated by NEC and a row from Rank One, along with confidence scores. Mr. Williams’s driver’s license photo was among the matches. Ms. Coulson sent it to the Detroit police as an “Investigative Lead Report.” 

Investigative Lead Report

This is what technology providers and law enforcement always emphasize when defending facial recognition, says the article:  It is only supposed to be a clue in the case, not a smoking gun. DPD Chief James Craig describes himself as a “strong believer”  in facial recognition software.

Collect evidenceBefore arresting Mr. Williams, investigators could have sought other evidence that he committed the theft, such as eyewitness testimony, location data from his phone, or proof that he owned the clothing that the suspect was wearing. In this case, however, according to the Detroit police report, investigators simply included Mr. Williams’s picture in a “6-pack photo lineup” they created and showed it to Shinola’s loss-prevention contractor, and she identified him. Shinola’s contractor. Johnston declined to comment.

Rank One’s chief executive, Brendan Klare, found fault with Ms. Johnston’s role in the process. “I am not sure if this qualifies them as an eyewitness, or gives their experience any more weight than other persons who may have viewed that same video after the fact.”  John Wise, a spokesman for NEC, told the author: A match using facial recognition alone is not a means for positive identification.

In Mr. Williams’s recollection, after he held the surveillance video still next to his face, the two detectives leaned back in their chairs and looked at one another. One detective, seeming chagrined, said to his partner: “I guess the computer got it wrong.” They turned over a third piece of paper, which was another photo of the man from the Shinola store next to Mr. Williams’s driver’s license. Mr. Williams again pointed out that they were not the same person.

Mr. Williams asked if he was free to go. “Unfortunately not,” one detective said. Mr. Williams was kept in custody for 30 hours, and released on a $1,000 personal bond. The Williams family contacted defense attorneys, most of whom, they said, assumed Mr. Williams was guilty of the crime and quoted prices of around $7,000 to represent him. They, also tweeted at the American Civil Liberties Union of Michigan, which took an immediate interest. said Phil Mayor, an attorney with the organization told the NYT:

American Civil Liberties Union of Michigan

We’ve been active in trying to sound the alarm bells around facial recognition, both as a threat to privacy when it works and a racist threat to everyone when it doesn’t,”  “We know these stories are out there, but they’re hard to hear about because people don’t usually realize they’ve been the victim of a bad facial recognition search.

Two weeks later, Mr. Williams appeared in a Wayne County court for an arraignment. When the case was called, the prosecutor moved to dismiss, but “without prejudice,” meaning Mr. Williams could later be charged again. Maria Miller, a spokeswoman for the prosecutor, said a second witness had been at the store in 2018 when the shoplifting occurred but had not been asked to look at a photo lineup. If the individual makes an identification in the future, she said, the office will decide whether to issue charges.

dismiss, but “without prejudice,” meaning he could later be charged againA DPD spokeswoman, Nicole Kirkwood, said that for now, the department “accepted the prosecutor’s decision to dismiss the case.” In a second statement to the NYT DPD doubled down saying it, “does not make arrests based solely on facial recognition. The investigator reviewed the video, interviewed witnesses, conducted a photo lineup.

The ACLU of Michigan filed a complaint with the city (PDF),  asking for an absolute dismissal of the case, an apology, and the removal of Mr. Williams’s information from Detroit’s criminal databases.

Mr. Williams’s lawyer, Victoria Burton-Harris, said that her client is “lucky,” despite what he went through. Ms. Burton-Harris said to the NYT

He is alive … He is a very large man. My experience has been, as a defense attorney, when officers interact with very large men, very large black men, they immediately act out of fear. They don’t know how to de-escalate a situation.

Mr. Williams had an alibi, had the Detroit police checked for one.

rb-

MSP database has over 6 picture per adult in MichiganJust to celebrate Independence day – the Georgetown Law’s Center on Privacy and Technology says, at least a quarter of the nation’s law enforcement agencies have access to face recognition tools. The MSP database has almost 50 million pictures in it for about 8 million adults in Michigan. That is over 6 pictures per adult Michigander – many come from the Secretary of State when you get a driver’s license but undoubtedly many are scrapped from social media sites. Michigan is one of at least 16 states that allow the FBI to search its database of driver’s license photos.

While the MSP didn’t start using facial recognition technology until 2001, the Secretary of State’s Office has been giving State Police all its digital photos — without notice to motorists — since 1998.

DataWorks provides facial recognition systems to DPDDataWorks provides facial recognition systems to both DPD and MSP. The DPD two-year $1 million contract for the DataWorks Plus software is set to expire in July 2020. Detroit City Council President Brenda Jones told the Detroit News that the police department agreed to pull back its most recent request for a contract extension and conduct community outreach before seeking approval to extend the contract through Sept. 30, 2022.

Dan Korobkin, deputy legal director for the ACLU of Michigan points out that Civil rights icon Martin Luther King Jr. “was the target of massive FBI surveillance, under what was then the latest state-of-the-art technology.” In response, Robert Stevenson, executive director of the Michigan Association of Chiefs of Police and retired chief of the Livonia Police Department, told GovTech he believes most Michiganders trust the police, “We’ve evolved in the last 50 years, as a country, and as police agencies.” Well just ask George Floyd.

Stay safe out there!

Related article

 

Ralph Bach has been in IT long enough to know better and has blogged from his Bach Seat about IT, careers, and anything else that catches his attention since 2005. You can follow him on LinkedInFacebook, and Twitter. Email the Bach Seat here.

Category: Artificial ntelligence | Tags: , , , , , ,
| June 11, 2020
Comments Off on No More Facial Recognition From IBM

No More Facial Recognition From IBM

Updated 06/19/2020 – Redmond is reporting that the ACLU has uncovered evidence (PDF) that Microsoft was pursuing sales of its facial recognition technology after its vow to stop selling the software. The ACLU says Microsoft continued to pursue sales to the U.S. Drug Enforcement Administration (DEA) six days after the announcement. Microsoft president Brad Smith claimed the firm would stop selling facial recognition tech to U.S. police agencies until there is a national law in place that’s “grounded in human rights.”

The article calls MSFT’s Smith’s “stand” last week “as a bit hollow or misleadingly narrow” and “opaque transparency.”

Updated 06/12/2020 – CNN is reporting that Microsoft has fallen in line with IBM and Amazon. It has announced it will not sell facial recognition technology to police departments in the United States, at least until there is a federal law to regulate the technology.

Following IBM’s stand, Amazon has announced it will stop providing its facial recognition technology to police forces for one year.  TechCrunch makes the point that the Amazon announcement did not say if the moratorium would apply to the federal government. Amazon also did not say in the statement what action it would take after the yearlong moratorium expires.

Both firms are calling for national regulation of the tech. As I predicted below.

No More Facial Recognition From IBMIBM has made a step in the right direction in the fight against structural racism. IBM CEO Arvind Krishna sent a letter to the U.S. Congress citing concerns that artificial intelligence (AI) facial recognition software could be used for mass surveillance and racial profiling. As a result, IBM will no longer sell general-purpose facial recognition or analysis software.

IBM facial recognition changes

The company is not abandoning facial recognition. Reuters cites an IBM source that says, IBM will “no longer market, sell or update the products but will support clients as needed.” As Engadget points out, the move comes in the midst of protests over police brutality and discrimination capped by the apparent murder of George Floyd by Minneapolis police officers.

The use of AI and facial recognition has a history of privacy and bias problems. In 2019, Pew Research reported that  50% of U.S. adults said they did not trust tech companies to use facial recognition responsibly. 27% of the same group did not trust law enforcement agencies to use facial recognition responsibly. There are good reasons for the distrust of facial recognition. Many reports have found that facial recognition systems can be biased. They have systemic bias’ against non-whites and women. This is particularly true if the training data includes relatively few people from those groups. 

The Verge documents some of the defacto bias’ in facial recognition. In 2018, AI researchers Joy Buolamwini and Timnit Gebru, Gender Shades project was the first to reveal the extent to which many commercial facial recognition systems (including IBM’s) were biased. This work led to mainstream criticism of these algorithms and ongoing attempts to address bias.

Clearview AI Inc., facial recognition software identifies people by comparing their faces with 3 billion images many scraped from social media sites. Clearview took the images from Facebook, YouTube, and Venmo without notifying the people. The facial recognition tool is widely used by private sector companies and law enforcement agencies. Clearview has since been issued numerous cease and desist orders and is at the center of a number of privacy lawsuitsFacebook was also ordered in January 2020 to pay $550 million to settle a 2015 class-action lawsuit over its unlawful use of facial recognition technology.

The Verge points out that IBM is not without a share of the blame. IBM was found to be sharing a training data set of nearly one million photos in January 2019 taken from Flickr without the consent of the subjects. IBM told The Verge in a statement at the time that the data set would only be accessed by verified researchers and only included images that were publicly available. The company also said that individuals can opt out of the data set.

A December 2019 NIST study found:

empirical evidence for the existence of a wide range of accuracy across demographic differences in the majority of the current face recognition algorithms that were evaluated.

 

Amazon’s facial recognition software 

Notably, NIST’s study did not include Amazon’s facial recognition software Rekognition. Rekognition, has also been criticized for its accuracy. In 2018, the ACLU found that Rekognition incorrectly matched 28 members of Congress to faces picked from 25,000 mugshots.

Despite Amazon’s system providing what the ACLU called a disproportionate number of false matches of congress embers of color, Amazon posted a statement expressing concern over the “inequitable and brutal treatment of Black people in our country.” But the richest man in the world Jeff Bezos and his company are part of the problem. Amazon is profiting off racial profiling of Black people by police.

Amazon has built a nationwide surveillance network. The surveillance network of our homes and communities uses Amazon Ring cameras and its Neighbors app. The company collects the images and then handed its data over to the police. 

What Amazon does with the data:

rb-

Mr. Krishna should be applauded for his public stand. But call me cynical – this is also about business. Morgan Stanley predicts that AI and automation will be a one trillion dollar industry by 2050. Change is coming and big tech – IBM, MSFT, GOOG, FB are trying to get in front of it. The titans are pushing for reform – not abolition for two reasons.

First, they want to use new regulations as a barrier to entry into this market. They want to upstarts like Clearview AI and 45+ other small to multi-national firms who may have new ideas out of the $1T market.

Second – Big tech knows they can buy the politicians in DC cheaper than having to fight off regulations in 50 different states. Big business has done this time and again. they will sit in front of a congressional hearing – say mea culpa and maybe Congress will pass some lame regulation that the lobbyist wrote. Nothing will change because there is too much money on the table to do the right thing to stop the structural racism that led to George Floyd’s death.

Stay safe out there!

Related article

 

Ralph Bach has been in IT long enough to know better and has blogged from his Bach Seat about IT, careers, and anything else that catches his attention since 2005. You can follow him on LinkedInFacebook, and Twitter. Email the Bach Seat here.

Category: Uncategorized | Tags: , , , , , , , , , , , , , , , ,
| October 25, 2017
Comments Off on Biometrics Hype

Biometrics Hype

Biometrics HypeFollowers of the Bach Seat know biometrics have a limited value in replacing passwords. Despite the technical flaws another round of biometric hype is rolling across the Intertubes. The latest round of biometric hype is coming from Samsung (005930). In the hope to revive their brand, Samsung has released the Galaxy S8. The Samsung Galaxy S8 includes the ability to use facial recognition software to unlock your brand new phone. CNet says that this idea “sounds awesome.”

However, this awesome idea appears to lower the bar for your security. CNet reports that the video blogger MarcianoTech demonstrated a pre-release version of the Galaxy S8 being unlocked using just a photo (at the 1:09 mark). To their credit, Samsung has acknowledged that the Face Unlock feature is more for convenience than for security. The biometric feature cannot be used for mobile payments. While weak facial recognition software may be a convenience for the user, it could also be very convent for others, too.

The troubles with Face Unlock date back to 2011.  In 2011 SlashGear reported that Google (GOOG) admitted the security system could be fooled by a picture of you and not the real thing. CNet reports that the technology was developed by PittPatt, a startup originating from Carnegie Mellon University, which was later acquired by Google.

FBI’s facial recognition database

Next Generation Identification databaseThe Guardian reports during testimony before congress the FBI admitted that about half of adult Americans’ photographs are stored in facial recognition databases that can be accessed by the FBI. About 80% of photos in the FBI’s network are non-criminal entries, including pictures from driver’s licenses and passports from 18 states including Michigan.

The FBI first launched its advanced biometric database, Next Generation Identification (NGI), in 2010. NGI augmented the old fingerprint database with further capabilities including facial recognition. The bureau did not tell the public about its newfound capabilities nor did it publish a privacy impact assessment, required by law, for five years.

Unlike with the gathering of fingerprints and DNA, which is done following an arrest, photos of innocent civilians are being collected proactively. The FBI made arrangements with 18 different states to gain access to their databases of driver’s license photos.

 

“I’m frankly appalled,” said Paul Mitchell, a congressman for Michigan. “I wasn’t informed when my driver’s license was renewed my photograph was going to be in a repository that could be searched by law enforcement across the country.

rb-

So anyone with a photo of you, or maybe even just access to your Facebook (FB) photos, could potentially access your phone. There are two important reasons why biometrics won’t work, and why the old-fashioned password is still a better option: a person’s biometrics can’t be kept secret and they can’t be revoked.

 

no real way to hide biometric data from the worldPeople expose their biometrics everywhere – they leave fingerprints behind at bars and restaurants, their faces and eyes are captured in photos and film, etc. There’s no real way to hide this data from the world. As far back as 2002, research led by Japanese cryptographer Tsutomu Matsumoto. Matsumoto and his team gummy bears to make artificial fingers that they then used to fool fingerprint scanners. The gelatin-based finger was successful in fooling all 11 devices tested. I wrote about spoofing fingerprints in 2016.

However, it’s the second problem with biometrics that is the really big one: once a person’s biometrics have been compromised, they will always be compromised. Since a person can’t change their fingerprint or whatever biometric is being relied upon, it’s ‘once owned, forever owned.’ That is biometrics’ major failing and the one that will be hardest to overcome.

Part of the reason is that it’s silly to only have 10 possible passwords your whole life (20, if you count toes) but unlike a password, once a biometric is compromised, it is permanent. Today, if your Twitter account gets hacked, you just change the password – but if you are using a biometric, you will be stuck with that hacked password for the rest of your life.

With the release of Windows 10, Microsoft stepped up its biometrics game. CNet reports that with the recent improvements in Windows 10 biometric security includes facial recognition software. Besides facial recognition, Windows Hello also supports other biometric factors to secure your PC. Some of the factors are fingerprints and iris recognition. For facial recognition though, Microsoft (MSFT) has partnered with chipmaker Intel (INTC) for its RealSense 3D camera tech to get the job done. RealSense uses depth-sensing infrared cameras to track the location and positions of objects. Microsoft uses RealSense to scan a person’s face or iris before unlocking the device in question.

To further push the biometrics agenda, more than 200 companies including Microsoft, Lenovo, Alibaba, and MasterCard have already come together to form a partnership known as the FIDO (Fast Identity Online) Alliance. FIDO was founded in 2013 to address issues such as a worldwide adoption of standards for authentication processes over the Web to help reduce reliance on passwords.

Related article

 

Ralph Bach has been in IT long enough to know better and has blogged from his Bach Seat about IT, careers, and anything else that catches his attention since 2005. You can follow him on LinkedInFacebook, and Twitter. Email the Bach Seat here.

Category: Uncategorized | Tags: , , , , , , , , , , , , , , ,
« Older Entries