Welcome to FindBiometrics’ digest of identity industry news. Here’s what you need to know about the world of digital identity and biometrics today:
NIST Adds Passkey Considerations to Digital ID Guidelines
The National Institute of Standards and Technology (NIST) has updated its Digital Identity Guidelines (NIST SP 800-63B) to include interim guidance on “syncable authenticators” like passkeys. These authenticators, which can be cloned across devices, are now part of the guidance for Authentication Assurance Level 2 (AAL2), which demands a moderate assurance level and dual-factor authentication. The update addresses the rapid adoption and potential security challenges of these technologies by detailing measures such as secure storage and transmission, robust authentication protocols, and strict access controls.
Former Warehouse Worker Sues Amazon Under BIPA
Lisa Johnson, a former Amazon warehouse worker, has filed a class action lawsuit against Amazon.com Services LLC, alleging violations of the Illinois Biometric Information Privacy Act (BIPA). The lawsuit claims Amazon improperly collected and used her facial scans for worker identification without informed consent, failed to outline data retention and destruction policies, and shared her biometric data with third parties without her knowledge. Representing a class of Illinois residents affected over the past five years, Johnson seeks statutory damages, legal fees, and actual damages.
T-Mobile Profited from Biometric Security by Preventing Theft, Lawsuit Alleges
T-Mobile is facing a class action lawsuit for allegedly violating New York City’s biometric privacy law. The suit claims that T-Mobile used biometric data, such as facial recognition and eye scans, to enhance store security and reduce theft, thereby profiting from the practice. This use of biometric data is said to contravene the 2021 Biometric Identifier Information Law, which requires businesses to clearly inform customers of biometric data collection and prohibits profiting from this data. Plaintiff Valeriia Borzenkova seeks statutory damages and a jury trial, arguing that T-Mobile’s actions violate consumer privacy rights.
Open Technology Institute Warns Against ‘Immature’ Age Verification Tech
The Open Technology Institute (OTI) has raised concerns about the use of facial recognition and digital IDs for age verification online, according to their new report titled “Age Verification: The Complicated Effort to Protect Youth Online”. The report critiques these technologies as immature and not yet capable of balancing effective age verification with the protection of user privacy, especially on the scale used by social media platforms. OTI, a part of the New America think tank, advocates for technology that upholds public interest, emphasizing privacy and digital rights.
New Deep Learning Model Can Guess Age While Protecting Privacy
Researchers from Peking University have developed a deep learning model capable of estimating age from 3D face scans while enhancing privacy. The model uses a novel method known as coordinate-wise monotonic transformation, which alters the X, Y, and Z coordinates of each point in a face scan independently, using mathematical functions. This process effectively disguises the individual’s face, making it difficult to recognize but without significantly altering age-relevant features such as the distance between facial features or wrinkle patterns. The transformation allows the model to predict age within an accuracy of 2.5 years while preventing both human and machine recognition of the person’s identity.
Chinese Hotels Turn Away from Mandatory Face Scan Policies
Some hotels in major Chinese cities, including Shanghai and Beijing, have recently suspended the mandatory use of facial recognition systems for guest check-ins when valid government-issued identification is provided. This change aligns with new regulations in Shanghai that require hotels to demonstrate the necessity for and obtain approval before using facial verification on guests. These guidelines reflect China’s Personal Information Protection Law, which categorizes biometric data like facial scans as sensitive personal data and mandates strict conditions for its processing and use.
ROC Opens Michigan Research Center
ROC, a U.S.-based biometrics and computer vision company, has expanded into western Michigan by opening a “center of excellence” for fingerprint and object recognition. This move builds on ROC’s partnerships with Michigan State University and Grand Valley State University (GVSU). Known for serving the U.S. military and law enforcement, ROC is developing advanced biometric technologies, including a high-speed latent fingerprint recognition algorithm. The company is also collaborating with GVSU to integrate its technologies into educational projects, such as a telemedicine app and school bus safety solutions, and offers internships to local students.
–
April 24, 2024 – by Alex Perala and Tony Bitzionis
Related News
GPT-4 Goes Face-blind, TikTok Joins FIDO, and More: Identity News Digest
Bumble Doesn’t Get a BIPA Break – Identity News Digest
A Fashionable Biometric Space Suit Is Ready for Liftoff – Identity News Digest
Worldcoin, Mobile ID, Biometric Privacy, and More – Identity News Digest
House Science Committee Wants Answers from NIST on Facial Recognition Concerns
No Clear Winner in NIST Age Estimation Assessment
Follow Us