Slashdot Mirror
Iris Scanners in Canadian Airports
Ian_Bailey writes "The Toronto Star is reporting that the first biometrics (Iris-scanning specifically) devices in airport will be in place in Toronto and Vancouver starting in March. These devices are meant to speed-up the check-in process for frequent travellers, without compromising security. It is stressed that privacy advocates have nothing to worry about, because they are completely voluntary and cannot be used to scan without a person's knowledge, but there is a brief note about using it in the future for staff."
As far as I know, schiphol airport has had irisscans for a while now. See for example this article
If I take them out, they'll Xray those too, and I never had to look for a lost contact on an Xray belt before, the floor is bad enough.
"We've used the latest in biometric technology to confirm that the passenger manifest is accurate. You are cleared for takeoff."
I spent a year in Iraq looking for WMD and all I found was this lousy sig.
As long as Security measures have to take second place to privacy concerns, the terrorists will win.
Go ahead and flame me, I'm wearing a +2,+2 asbestos suit.
they are completely voluntary
yes, until more and more people have gotten used to do it. When the majority is doing it, I'll bet it will be mandatory for every passenger.
Its called the boiled frog syndrome.
Personally I've no experience with this scanner. Can anyone who tried share thie experience? BTW, could they be beaten by wearing some hacked contact lens (as in cheap action movies)?
This is the funniest signature I could ever think of.
Biometrical systems are hard to fool, but it is not impossible.
I hope that they have a proper system with personal digital (hard to hack) ID cards and such to make sure that it is foolproof.
My friend contracted an eye-disease when he used a telescope, one of those peek-a-minute-for-a-quarter machine. We suspected that his eye-lash came in contact with the bacteria left by the previous patient.
His red-eye recovered in a week after medication.
So long as it's a voluntary system, that's a great system and I applaud it.
One potential problem becomes what's "voluntary" soon becomes mandatory. We might as well learn from history. Two specific examples from US history:
(1) The Social Security Number was ~never~ supposed to be used as any kind of central identification number. Now, no one knows who I am without it. I would gladly dump my social security "promises of benefits" to not have a social security number.
(2) [More recent] To get a driver's license in the state I moved to, I had to give a thumbprint. I've never had fingerprints taken before in my life.
Are we safer as a result? All I know is that now my identity can be more easily tracked by central governmental organizations and those with sufficent access privileges, despite my wishes.
Technology is a tool, not a solution. Just like a hammer, it can be used for much good, but it's easy for those in power to convert it into something pretty sinister.
My concern with all of these schemes is that if someone gets hold of your biometric data it may be passible to spoof the device in some way. At least with a password you can change your password if someone gets hold of it, but with these schemes, if someone gets hold of your data there is nothing you can do about it. Probably not an issue for this application, but I see it suggested for things like ATM machines or access to building (where swipe cards are used now) where they are used unattended. I expect that if these devices become widespread then someone will build a device to spoof them. and once someone has got hold of your data there is nothing you can do about it
Sig is taking a break!
Apparently, people could fool face-scanning systems (yes, I know they're different) with photos or video images. It doesn't actually say how to fool iris-scanners - but suggests that the trial wasn't convinced of their greatness.
Still, at least they're not going to use fingerprint scanners at the airport as they think they're too easily fooled - the BBC article reckons you can fool those by breathing on them.
I'm not sure whether this kind of security is best placed in an airport - fine for lower-risk security such as getting into your office block, or maybe even for your home burglar alarm - but at an airport with (potentially) massive numbers of subscribers to the system - sounds like a poor idea.
Everyone who has seen the "Demolition Man" knows how to bypass these things...
-- Reality checks don't bounce.
... Well we've only got an SGI Indigo2 in our office. If I needed to take it on a trip to and from Canada, would it be compatible with their Iris scanners? ;-)
Sure we are using the irisscan program on schiphol airport to bypass customs.
There is however an security risk with this system that can not be solved by placing the scan equipment next to a security officer.
The scan of the iris is kept on personal digital medium and not on a central server due to privacy laws in holland. When a visitor arives he presents the machine with his card, look into the camera and the machine verifys that the presented iris is the same as stored on the card.
The problem with this is obvious. Hack the card, upload youre own scan and you can get access while using the name of someone else.
Sure privacy issues arise when you store the irir scans on a central server and only present the machine with youre identity. But untill you do it that way youll never get a really secure system.
Greetz,
Bas
Real programmers don't document.
It was hard to write so it should be hard to understand.
I wonder why they think that same principles as with system security for example don't apply to airport security. If Iris scan, or anything targeted for only a single group, prooves less secure than the strongest practise in use, then the ones who want to break the security will go trough the weakest policy. Or?
I can hardly believe this... Presumably the machine uses some private key, but once that is hacked, people could create their own cards... it would be as secure as a black&white passport on plain paper: everyone could print their own on their laserprinter at home.
If construction was anything like programming, an incorrectly fitted lock would bring down the entire building...
How is scanning an ugly plant going to make things more secure?
Geez. What will they think of next?
Hrm.. wait.. maybe I shouldn't ask that. They might just go straight for the anal probe.
According to what I have read you can get around an 80% success rate with taking a picture of the eye you want to fool the system with then cutting out the pupils and placing the picture over your eye.
The picture gets the blood viens which are check, and when the pupil test is done your eye passes that.
These things can be spoofed pretty easily because they generally do not verify very well what they ought to verify: that they are looking at a live iris, not a contact lens. Worse, such contact lenses can be manufactured from photographs taken without a person's knowledge.
And "being completely voluntary" doesn't mean something doesn't invade someone's privacy. If you are being tracked, your privacy is being invaded--the only question is whether the invasion has other bad consequences, now or in the future. A lot of these mechanisms are well-intentioned when they start out, but future politicians figure out how to abuse them.
Furthermore, putting unreliable biometrics somewhere greatly increases my risk that my identity is being stolen (see above), and I certainly consider that an invasion of my privacy. I'd much rather have a hard-to-duplicate physical token--if I lose that, I know it, and I only have myself to blame.
Linus Torvalds is once quoted as saying, 'Iris scanners in airports are a really bad idea because people's privacy will be invaded and that is not good.'
I, for one, agree. I don't think iris scanners are a good idea in airports because the invasion of the right to privacy of people in the airport is not good.
One of the major problems with iris scanners is light refraction. The way iris scanners work is that they send out dense beams of infrared, and when they reflect back a pattern that can be recognized as an 'iris', this pattern is then stored and can be compared against a database of iris patterns.
Few quiche eating Pascal programmers and Mac users would realize just how inaccurate this is. Everyone's eye has a different surface, and if the IR ray enters from different angles, different distorted iris patterns can be reported. This is why scanning the material that controls the entry of light to the eye would be more accurate, since this is not affected by these scientific properties.
mogorific carpentry experiments
What if someone doesn't want to use the retina scanner, wouldn't that look suspicious in itself? And they already know which flights I take and can register that to their hearts content. So why would I want to refuse to use the easier way of a scan?
I can't help it, but it gives me the fealing that only those who are dishonest for one reason or another would fear a system like that. I hardly think that it would make us pawns or something like that. Then go worry over the goverment instead.
[quote]People who sign up are expected to obey the law, as they have in the past," said National Revenue Minister Elinor Caplan, after unveiling one of the kiosks at Pearson's Terminal 3[/quote] What about people that have no intention whatsoever of obeying the law? What about the crafty people with the $5 biometric lens that lets them get around such fancy systems?
Now the terrorists can just become frequent fliers first. That way the eye-scanner approves them they can breeze through security when they DO carry a bomb on board.
-
- - You can't take something off the Internet! That's like trying to take pee out of a swimming pool.
There are 2 things about this that worry me:
1. As someone already posted, these devices are very unaccurate. And I am not worried about people who are wrongly detected to be terrorists - I am worried about the opposite case. And from the current research it appears that there are a high percentage of false positives. In the range of tens of percents.
2. The other thing that worries me is that it's a dangerous trend. Using biometric data is much worse than passwords because
a) you can change passwords freely, but you can't change you face, iris or fingerprints. If someone spoofes or achieves these (mask-copy of face, holographic copy of iris, silicon stamp of your fingerprint) you're fucked for life.
b) The people who would want access to your biometric data are likely to be unscrupulous and highly motivated, and a very simple way of accessing your biometric data is by - killing you! Or crippling you significanlty, at least: cut finger(s), gouge eye(s), severe head off to make mask copy of face later on. I definitely don't want to become a person who has access to important things AND uses biometric access systems!
Sigged!
I knew you were going to say that.
and once someone has got hold of your data there is nothing you can do about it
Well they can poke you in the eye with a stick...
I imagine that if your retinal scan becomes comprimised, you would just spend alot of time at the airport having extra checks done. Seems like smart cards might be a better way to go.
I am not a number! I am a man! And don't you
And this is a bad thing because...? Verification that airport staff aren't impostors, and making sure there's no outsiders there seems like a good thing to me. How is this an invasion of privacy or such?
Love many, trust a few, do harm to none.
Now, to prove you are who you say you are you swipe the card. You private key is compaired to your public key and verified.
Every six months, your key pair becomes invalid and you generate a new pair.
UNIX/Linux Consulting
Doesn't work if you're thinking of a general-purpose hash. The problem is that no two scans of the same part of your body will come out exactly the same. Biometric template matching is never exact, it's just "close enough". How close is "close enough" depends on the application. How close is achievable depends on the biometric technology.
Note to ACs: I usually delete AC replies without reading them. If you want to talk to me, log in.
Ben Gurion airport (TLV*) has biometric passport control for Israeli citizens, but it scans fingerprints instead of the iris.
(* It's called TLV, but actually it's 30 minutes drive from Tel Aviv)
Slashdot community, please notice: I am looking for a girlfriend.
Nave H. Weiss
As long as you act like terrorists will strike at any time, the terrorists have won. Once burned, twice shy.
The simple thing is to not let terrorism get you down. Don't let people hijack planes, and be aware of what's going on. If people act suspicios, treat them with suspicion. But don't compromise the basic rights. People who sacrifice liberty for safety deserve neither.
--
Internet Explorer (n): Another bug -- that is, a feature that can't be turned off -- in Windows.
An iris scanner (or most any other biometric check) is flawed in a major way I think: It can only prove that the same person is at the scanner as was there to initially be recorded.
If I were to walk up to a ticket counter with forged documents (passport, driver's license, etc) and then be allowed to use the iris scanner, the scanner would associate me with the claimed identity. In the future, as I became a frequent traveller it would be even faster and less risky for me to board a plane with my false credentials, as they would no longer be needed. If I have to show my fordged documents to a person each time, there is a chance that nervousness, or some problem with the documents may be caught and I could be questioned. Iris scanning s
Will a 'frequent traveller' be put through a more elaborate background check before being allowed to board via the scnners?
Article X: The powers not delegated... by the Constitution...are reserved...to the people
It's rare that you're presented with a knob whose only two positions are Make History and Flee Your Glorious Destiny.
If it did involve America somehow, "stopping people at the border" would involving shooting down Canadian planes entering American airspace. Based on your post, I'm not so sure that's a bad idea.
(Note: I am neither American nor Canadian. I am, however, against stupidity.)
From the person to whom I was replying:
Maybe now Canada will secure its fucking borders and keep terrorists away from American soil. Stupid frostbacks. Oh... and Chretien is a socialist pussy.
My post had absoloutly nothing to do with the iris scanners in the airports. The top poster said something stupid, so I pointed out his stupidity. Should we ask people "Welcome to Canada. Do you plan on committing atrocities in America? No? Good. Business or Pleasure?"
(Note: I am neither American nor Canadian. I am, however, against stupidity.)
I am Canadian, and I'm against people taking a post out of context. I'm just going to give you the benefit of the doubt and assume that you're reading at a threshold above -1 or 0, and didn't see the parent of my reply.
God save our Queen, and Heaven bless The Maple Leaf Forever!
Oh, no. Don't do that. The border is a good thing, but Canadians should protect Canada, and Americans should protect America. That was a reply to some flaimbait.
I simply don't think that Canada should (have to) protect America from people entering their country from Canada. I also don't think that Americans should (have to) protect Canada from people entering our country from America.
God save our Queen, and Heaven bless The Maple Leaf Forever!
We all know that the 9/11 terrorists did not show thier ID or used fake ID information to board those planes, right? Right? Oh wait, that's right, they used thier real names. What a great way to make airports safer, solving problems you don't have.
"Your superior intellect is no match for our puny weapons!"
Well, if you don't want to buy that 320GB harddisk to store the templates, you could also encrypt the template and store it (w/o the key) on the smart card and have a key for each user in the database
The issue isn't having storage space, the issue is making the data available to the authentication points. Not a problem if the system is *only* used in an airport, where it's probably reasonable to get network access from any location, but if you wanted a more flexible system that could be used elsewhere, maintaining a database, whether of keys or of templates or both, is problematic. Much simpler to put all of the authentication data on the card, digitally-signed for security, and only have to manage maintenance and distribution of a blacklist.
Also, rather than storing keys in a database, you can use a single master key and generate card-unique derived keys from it.
Might be a problem though because this gives the user the encrypted template as well as something rather close to the plaintext (his eye), which could be used for some half-known-plaintext attack.
Why? Would you be using your own cipher? Use a good cipher and don't sweat that stuff. Realistic attacks are always against key management processes, not ciphers.
Note to ACs: I usually delete AC replies without reading them. If you want to talk to me, log in.
Actually I'm Swedish, and not a native English speeker.
But point taken.
May we live long and die out