All Posts By

admin

Sponsor Announcement – LexisNexis Risk Solutions

By | Biometric Summit 2023 | No Comments

With three weeks to go until Goode Intelligence’s annual biometric summit – Biometric Summit 2023 – we are excited to announce that LexisNexis® Risk Solutions has joined us as a session sponsor.

LexisNexis® Risk Solutions harnesses the power of data and advanced analytics to provide insights that help businesses and governmental entities reduce risk and improve decisions to benefit people around the globe. We provide data and technology solutions for a wide range of industries including insurance, financial services, healthcare and government. By bringing clarity to information, we ultimately help make communities safer, insurance rates more accurate, commerce more transparent, business decisions easier and processes more efficient. Headquartered in metro Atlanta, Georgia, we have offices throughout the world and are part of RELX (LSE: REL/NYSE: RELX), a global provider of information-based analytics and decision tools.

There are still places available for our virtual summit on 23 March – to sign up for free please register here.

Speaker Announcement – Iain Corby – The Age Verification Providers Association

By | Biometric Summit 2023 | No Comments

Age Verification is an extremely hot topic in technology at the moment and we are delighted to announce that Iain Corby, Executive Director, The Age Verification Providers Association, is joining the session on “The Future of Age Assurance Biometrics” as a speaker and panellist at the Goode Intelligence Biometric Summit 2023.

The Age Verification Providers Association is a not-for-profit global trade body representing 25 organisations who provide age assurance solutions (both age verification and age estimation), proportionate to the risk of harm.  The AVPA was formed in 2018 and is growing rapidly as the age and identity provider industry takes off.

Iain leads the global trade body for suppliers of privacy-preserving age verification and age estimation technologies.  He was the business project manager for euCONSENT, an EU-funded pilot to deliver interoperable online age checks, and is the author of an imminent IEEE international standard for age assurance.  Previously he worked for GambleAware, the leading UK charity, ran a research team in Parliament, and was a management consultant with Deloitte.

He read Politics, Philosophy and Economics at Balliol College, Oxford and has an MBA from the Anderson School at UCLA.

Speaker Announcement – Tony Allen – Age Check Certification Scheme

By | Biometric Summit 2023 | No Comments

We are excited to announce that Tony Allen, CEO of the Age Check Certification Scheme, is leading the session on “The future of Age Assurance Biometrics” at Biometric Summit 2023 on 23rd March.

The session will provide an update on work to develop international standards for age assurance systems. It will also include an update on a project funded by ICO/OFCOM on the measurement of age assurance technologies.

Tony is a Chartered Trading Standards Practitioner and acknowledged specialist in age restricted sales law and practice. He is the Chair of the UK Government’s Expert Panel on Age Restrictions and Chief Executive of a UKAS accredited conformity assessment body specialising in age and identity assurance testing and certification. He is the Technical Editor of the current international standard for Age Assurance Systems.

Join Tony and other experts from the biometric community by registering for free to attend here.

Sponsor Announcement – Age Check Certification Scheme

By | Biometric Summit 2023 | No Comments

We are delighted to announce Age Check Certification Scheme as a sponsor for the Goode Intelligence Biometric Summit 2023.

Age Check Certification Scheme provides the UK’s largest conformity assessment body for Digital ID Systems Certification under the UK Digital ID and Attribute Trust Framework. It tests that ID and age check systems work and its team consists of specialists in the assessment, audit and analysis of ID systems, including Trust Frameworks and component testing, presentation attack detection, document authentication and liveness detection.

Join Age Check Certification Scheme at this year’s Biometric Summit held virtually on Thursday 23rd March by registering here.

 

Speaker Announcement – Mark Evenblij, Duck Duck Goose

By | Biometric Summit 2023 | No Comments

We are delighted to announce that Mark Evenblij from Duck Duck Goose AI will be speaking on the threat of Deepfakes to biometrics and how to counteract them at Biometric Summit 2023 on 23 March 2023.

With a strong background in engineering and a clear vision, Mark co-founded the startup DuckDuckGoose. At DuckDuckGoose, he is co-responsible for developing explainable AI solutions to detect synthetic media. Mark is passionate about deepfakes and has become an experienced expert in deepfake generation by making fake images and videos for experimental purposes.

This virtual event is free to register here.

Speaker Announcement – Parya Lotfi Duck Duck Goose

By | Biometric Summit 2023 | No Comments

We are excited to announce Parya Lotfi, Co-Founder at Duck Duck Goose, as a speaker on the Deepfake and Biometrics session at Biometric Summit 2023.

Parya is the co-founder of DuckDuckGoose and has a background in systems engineering and policy analysis. By combining her technical skills with her knowledge of Grand Challenges, she applies an interdisciplinary approach to identify dangers caused by deepfakes. With a demonstrated history in research related to (cyber) security and designing policies, Parya is fascinated about creating a roadmap that could mitigate security-related risks of deepfakes.

The all-day virtual summit is scheduled for Thursday 23rd March 2023 and you register for free here.

The Threat of Deepfakes to Biometrics & How to Counteract Them

By | Biometric Summit 2023 | No Comments

We are delighted to announce that Chris Burt, Managing Editor, Biometric Update, is moderating a session at Biometric Summit 2023 “The Threat of Deepfakes to Biometrics & How to Counteract Them” with experts from DuckDuckGoose AI and Ingenium Biometric Laboratories.

Hear about the latest use of AI generated Deeepfakes and how they are they are being used to spoof biometric systems. Joining Chris are co-founders of Duck Duck Goose, Parya Lotfi and Mark Evenbilj, and Ingengium Biometric’s co-founder, Dr Chris Allgrove.

The session is scheduled to run from 14:00-15:00 GMT on Thursday 23rd March and you can register here.

Digital Trust World 2022 – Multi-Factor Authentication Done Right

By | Digital Trust World 2022 | No Comments

Multi-Factor Authentication Done Right

Following on from our major autumn event, Digital Trust World 2022, held in London on Monday 21 November, we would like to share the thoughts of our Authentication & Privacy sponsor, Anonybit, as they walk us through how to get Multi-Factor Authentication right. The article was written by Frances Zelazny, Co-founder and CEO of Anonybit. This article is taken from the Digital Trust World 2022 brochure which can be viewed here.

Multi-Factor Authentication (MFA) is the latest buzzword for protecting users and assets. But the fact is, there are a lot of misconceptions about what actually constitutes an effective MFA strategy. Case in point: A recent study of 500 financial organizations worldwide found that there is broad confidence in their security departments’ approach to authentication, with 90% saying that their approach is mostly or completely secure. Yet, 80% of them were breached in the last 12 months due to weak authentication. 

To understand where most common MFA methods fall short, let’s review the common attack vectors to bypass them:

Passwords, PINs, and Knowledge-Based Questions: These knowledge-based authentication factors are not even considered multi-factor authentication. The means to gain access to them are numerous, ranging from phishing web sites, or buying troves of compromised credentials to impersonate victims.

SMS Messages and One-Time Passcodes (OTPs): SMS can be spoofed in multiple ways, for example via SIM swaps, which occur when a victim’s phone number is ported to another SIM card that the attacker has in his phone. More commonly, the codes are phished or social-engineered – just like a password.

Device Identification: Device Identification (Device ID) is a passive authentication method that binds users to specific devices and relies on device attributes to associate ownership. This problem with this approach is that device identification does not equate to identification of an account owner trying to gain access to a service. 

Device Biometrics: With device biometrics, a selfie or fingerprint is used to release a cryptographic key that authenticates the user into an app or service based on FIDO protocols. However, like device identification, device biometrics does not bind the account owner to the account itself. In addition, the fallback of device biometrics in most cases is a password or PIN code.

Getting MFA Right

Establishing correct implementation of MFA requires taking a broader look at how trust in a users’ identity is established and maintained. Today, organizations employ a stack of solutions to orchestrate a users’ journey beginning with digital onboarding, which generally involves verification of a holder’s identification credentials and selfie comparison. Once the identity has been verified, a user will typically be invited to create a username and password to access and utilize an online service.

This is the root of MFA failure. Getting MFA right requires biometrics to be collected at onboarding and leveraging the biometric as the anchor of trust for further authentications. The trick is to do this without creating privacy and data management burdens for the enterprise. 

With new technological breakthroughs and well thought out system design, these challenges are being overcome. For example, Anonybit’s MFA solution leverages multi-party computing and zero knowledge proofs to preserve biometrics privacy while connecting the different elements of the identity journey in a seamless manner. Selfies captured during the onboarding process are ingested into the Anonybit system, sharded for storage and kept in a decentralized manner for downstream authentication. Used at login, to verify transactions, enable self-service account recovery and other step up authentication actions, the platform’s APIs seamlessly communicate with different orchestration platforms. Device, phone number, and other factors are linked to the user’s biometrics for secure MFA and compliance.

Click here to learn more about Anonybit’s biometric MFA solution.

   

Digital Trust World 2022- Fraud Management Insight

By | Digital Trust World 2022 | No Comments

On Monday 21 November in London, Digital Trust World 2022 brought the digital trust community together to discuss the latest developments in digital onboarding, digital identity, authentication & privacy, and fraud management.

Leading the fraud management session, was Clare Messenger, Head of Fraud Protection Services at JT International.

Clare led a panel of fraud experts from UK Finance, Cifas, Vodafone and FICO to discuss how the industry can counteract the latest digital fraud threats. Clare shared her thoughts on this important topic in the Digital Trust World 2022 brochure and this is reproduced in this blog post. You can access the full brochure online here.

MANAGING DIGITAL FRAUD

The adoption of a digital-first approach, that has been accelerated during the pandemic, has led to consumers becoming increasingly accustomed to communicating with businesses and organisations online. While this has created more opportunities to engage with customers, provided us all with greater convenience, and ensured that life continues through times of crisis, it has also created vast opportunity for criminals.

The volume and variety of online fraud predicated by this digital-first approach continues to accelerate at an alarming rate. From identity fraud, SIM Swap/account takeover and smishing, to Authorised Push Payment fraud, pension and investment, and romance frauds, the list goes on.

As our digital footprints have become deeper and more complex, the skill and ingenuity of fraudsters has advanced. Rather than lone wolves gifted with extraordinary skills as its all too often portrayed, digital fraud has become the domain of organised crime. Well prepared teams of fraudsters can be articulate, financially knowledgeable and armed with credible resources. Organised crime groups have brought with them ever more elaborate ways to defraud their victims, including the alarming threat of insiders being recruited, and the use of bribery of vulnerable targets to aid in criminality.

All of this now means that any one of us can become a victim, no matter how technically or financially savvy we may be. This was illustrated in 2019 as fraudsters took control of former Twitter CEO Jack Dorsey’s phone number through a SIM Swap scam. Despite this well documented example of a high profile individual being duped, many people still don’t know just how prevalent SIM swap fraud has become. In the UK SIM swap fraud increased by 400% in the five years between 2015 – 2020, with losses of £10m.

Half of the world’s total population own a smartphone, and two billion of these individuals are using mobile banking. Approximately 87% of all banking customers today use mobile devices as their primary method of accessing services, providing greater opportunity for cybercriminals.

Although online fraud and scams are seen as lower risk alternatives to traditional crime by fraudsters, with the threat of a global recession looming a sharp increase in fraud is expected as more join the fraudsters’ ranks to earn some money.

The data processors and controllers of our personal information need to double down to address one of the most pressing issues of our times. We know that security and control tools are among the top features users say they want in mobile banking apps, signifying that businesses need to find a way to protect their customers against SIM abuse while still providing the best digital customer experience.