Slashdot Mirror
NIST Standards for New Biometric ID Card Published
rts008 writes "eWEEK is reporting that NIST has published the biometric data specs on the new Federal ID cards for employees and contractors that will be issued in October. From the article: 'Specifically, the guidelines state that two fingerprints must be stored on the card as "minutia templates," mathematical representations of fingerprint images. [...] Guidelines require that all biometric data to be embedded in the CBEFF (Common Biometric Exchange Formats Framework) structure. This ensures that all biometric data will be digitally signed and uniformly encapsulated. This format will apply not only to PIV cards, but also to any other biometric records kept by federal government agencies.'" The published standards [PDF] are also available from the NIST web site.
I will be doing everything I can to not get one of these. If I decide to give out my information, fine. If I need to make a request from a department of the gov., fine (they already can cross-ref items). I really dont see a need for this, other then to find a way to spend more money.
Great, does this mean I have to get another CAC card?
I do security
Maybe this will kill Tony Blair's "We have to have biometric ID cards first so that we can create the de facto standards" argument. Or maybe that's wishful thinking on my part.
But... fingerprints can be stolen. How does storing someone's fingerprint on these cards make them better than any other form of ID? If the image of your fingerprints is on the card, then anyone who has stolen your card can make fake fingerprints... and likely a fake card with thier photo on it and with your fingerprint data. I mean, if they stored your retina patterns and maybe even a snapshot of your brain structure, then I could believe these cards are worth the trouble, but something tells me these new cards are nothing more than a way for whomever is making them to get some government cash by way of a false sense of security. What a joke.
If i wanted to verify someone's information, i'd rather do so from a secure database rather than a card he gave me.
Or am i missing something?
Biometrics is widely used in India's richest temple at Tirupati(which is also worlds richest one). Infact, if the devotees have to get into the temple, they have to get their finger print copied to a database using biometrics and they are alloted a time to enter the temple. This is because over quarter million people daily visit the temple and crowd control is a big job for the administration.
Linux Help
for all things on Linux
I know, let's make people carry around a card with copies of their fingerprints and retinal scans on it. You know, just in case they forget to bring along their hands or eyeballs.
PocketGamer.org - For the gamer on the go!
will it be digitally signed?
Yes?!? WHOA!
That one day these will be mandatory, and that they will be placed as a chip under the skin of the hand or the forehead. If you don't have one of these chips, you won't be able to pay for anything or even buy food.
'For we walk by faith, not by sight.' II Corinthians 5:7
They don't store the actual fingerprint. They store what ammounts to a hash of your fingerprint.
I'm not so sure if it's legal to mandate that the employees give up their fingerprints like that.
... against unreasonable searches and seizures, shall not be violated,
Below is the part of the 4th Amendment in which I am referring. Aren't our fingerprints considered to be part of our property? Isn't mandating that they collect our fingerprints without being suspected of a crime an unreasonable search? (It's one thing to do a background check and ask for fingerprints. It's another thing to require your fingerprints be on a card you have to carry around.)
The right of the people to be secure in their persons,
Aren't static keys always inferior to dynamic keys?* (Isn't that why we're supposed to regularly change our passwords?)
Isn't biometric data static?
So why is anyone interested in biometric security?
Isn't it (perhaps counterintuitively) an inherently insecure means of indentification, by its very nature?
I must be missing something.
*(Maybe this is because anything can be duplicated and forged, given enough time. Changing your key a lot makes forging impractical?)
So, if I were a secure cow, would that be a roast beef or a corned beef hash?
... no wonder I'm thinking about food.
Cripes, it's way past lunchtime
The higher the technology, the sharper that two-edged sword.
If you are, how is this any different than for example the generic attire/monkey-suit your employer expects you to wear?
If you are not a federal employee and/or contractor, please have a sit and keep your mouth shut.
Thank you.
P.S. Why does everything on slashdot has to be blown out of proportions?
NIST has published the biometric data specs on the new Federal ID cards
/end_sarcasm
So much for security by obscurity! C'mon people, haven't we learned anything from Microsoft's security model???
Developers: We can use your help.
Biometrics is widely used in India's richest temple at Tirupati(which is also worlds richest one). Infact, if the devotees have to get into the temple, they have to get their finger print copied to a database using biometrics and they are alloted a time to enter the temple. This is because over quarter million people daily visit the temple and crowd control is a big job for the administration.
As opposed to, say, a simple low-tech reliable cheap solution with no privacy issues, like tickets?
What happens if someone reverse-engineers the technology to get my fingerprints out of my card? Am I going to be charged for any crimes this person then goes and commits with my prints?
Do you Gentoo?
Shoot... people are still the weakest link in any security system involving semi-intelligent primates. Even if TFA is talking about merely ID'ing someone accurately, there will always be a system to circumvent "the system."
7h3$3 4r3n'7 7h3 Ðr01Ð$ ¥0 4r3 £00|{1n9 f0r. M0v3 4£0n9. --OB1
What will happen if it is required to have these biometrics, and someone is an amputee? I'm just wondering if biometrics will absolutely be necessary in the future, i.e. to unlock encryption, or if this is just meant as a formality.
So if you break the "Do and Don't" (see the web site of teh GP) of them temple, well though luck for official if they are using ticket, they won't be able to easily kick you out next time you come or filter you out. But I guess this can be easily done with a finger print : I can imagine the next time the pelerin comes up and the system helpfully offers a pop up which says "was too long. Did speak loudly." he will be refused entrance. This is the advantage of biometric over simple ticket.
C. Sagan : A demon haunted world:
http://www.amazon.com/gp/product/0345409469/
visit randi.org
The only advantage biometric data has is that the user cannot lose it or forget it.
Other than that, if someone is watching you authenticate, it might be possible for them to see you using a fake finger or something.
It is not possible to recreate the image of a fingerprint from the template.
What is stored for biometric data is not an image of the fingerprint or anything like that. It's actually a hash of your fingerprint. Ideally, it would be a one-way hash (such as a cryptographic hash of your password stored in the .shadow file on a linux box). It should be "hard" (in the CS/math sense of the word) to find an actual fingerprint that will recreate the hash.
P.S. Why does everything on slashdot has to be blown out of proportions?
Because whether the information is right or wrong, Slashdot makes money on the page views. They're not the drug dealer. They're not the cop. They're the informant that makes money from both sides.
-- I'm old enough to have lived through six different meanings of the word "hacker."
Move to New Hampshire, if this passes: http://generalcourt.org/bills/2006/HB1582
And if you're up for it, join the Free State Project.
I'm so glad I live here... and so glad that that bill is on the table, and has a lot of support.
For those seeking to follow the actual PIV program for federal employees/contractors, check out their home page.
I've been using CASH... you need to verify nothing. You and your draconian pigs are demanding too much of me. I will give you cash, and you will give me what I'm PURCHASING from you. I don't need to finance a fucking eggroll! You don't need to know why I'm buying 10 fucking pizzas!! If I'm diabetic and buying sugar, that is MY problem. Maybe I want to die. Who are you to push your draconian and religious bullshit on me?? As long as I don't dump oil into the oceans like your fine christian values oil tycoons (whitehouse.gov) then perhaps you can fuck off and let me live a free life!
Debit cards only for minor things like food and other less "traceable" things I always make sure to buy PORK on a CC so that they know I'm not a muslim... and therefore I cannot be falsely accused of terrorism... we all know how easy it would be to remove a dissenting voice on grounds of "conspiring with enemy because they disagree with fanatical christian pigs" type thing)...
All in all, I buy mostly in cash, especially books. No membership clubs or any such shit. (And the times I've used one, I use a fake phone number... go figure eh?)
I Hate traceability because it does EXACTLY what government control mongers want. Reduce responsability by users, it reduces accountability, and overall increases nothing but convenience for the money printing gods of our world.
I would prefer to never see another consumerist pig tell me how they want to identify me... fuck you... and I'll bring my own cup, just gimme my fucking coffee thank you. (Actually speaking of which, I'd like to see more shops offering larger discounts for being responsible and bringing your own damn cup...)
~D
" What luck for rulers that men do not think" - Adolf Hitler
It really doesn't matter how secure the card system is. Why would I try to crack the card when I could just offer a small sum of money to the nice lady working the security desk, and making the cards?
Or if she's got too much integrity for that, I suppose I could just kidnap her son/daughter? I'm quite confident she'd make me a card then. And I didn't need any technical skills either.
Maybe I just catch all the security guards while they are at lunch and bribe them to go ahead and let me in without a card? I'm quite confident for the right sum of money they would help me out.
The point i'm making is that all these technological means are only to stop the unmotivated criminal, which is why the level of security on them is only marginally important. For anyone that is sufficiently motivated, the card is irrelevant.
Kinda like having locks on all the doors of your house when there are glass windows all the way around. The lock keeps the neighbor kid from wandering into your home, but anyone who actually wanted to go inside could do so with a rock, probably more quickly than you could unlock your door with a key.
Big ones, small ones, some as big as yer 'ead!
Give 'em a twist, a flick o' the wrist...
Just the fact that such a standard even exists is rather scary.
Who wants to take odds on how long before these ID cards are made manadatory for all US citizens? "for our safety".
---- Booth was a patriot ----
If you read the story more closely its only for Federal employees and contractors, for now.
That will of course be expanded in the future, but for now just avoid being employeed at the federal level and you are set.
---- Booth was a patriot ----
Lessons From The Brandon Mayfield Case
What stops me from making a fake ID card, that says I'm somebody else, but with MY fingerprints encoded in the card. So, when I go to use the card, they look at the fingerprint data on the card, compare to my actual fingerprints, and suddenly I've "proved" I'm the right guy.
Here, for perhaps the first and only time, you may be lucky that your country is run by fundamentalist Christians. The same logic that drives them to kill abortionists and ban good science also tells them about the Mark of the Beast. Whatever the mark was supposed to be, its aim was exactly the same as the aim of a mandatory ID card: centralisation of control.
You're an immobile computer, remember?
Think how much prices will go down when retail theft is eliminated.
The world needs more people with your understanding and convicition. I too will not be getting another passport (when my current one runs out) or any biometrically - linked ID card if the current trends continue. I will chose not to drive to avoid this.
This is yet another example of where technology advances will support inflexibilty in rule enforcement. (other examples include red-light camera, DRM, etc.) In each example, human judgement is being taken out of the loop in the enforcement of a particular rule. Next it will be a machine that decides if you are who you say you are, not a person looking at you, knowing you, or judging the picture on a badge. This is yet another hook in someone that brings us a step closer to the possibility of tyranny.
As long as all the rules are fair, equally enforced, and democratically supported -- then there is no problem with machines enforcing the rules. The problem is that more often than not, none of these factors apply and rarely do any of them apply. Rules are often created arbitrarily by property owners / corporations (like EULAs), supported by small fractions of the people they affect (speeding laws), or simply conflict with other accepted rules (copyright/DRM and fair use).
as it so happens in a few cases even a random string of letters/numbers could be very identifiable take my case if you look robertltux is used as a login name on quite a few different sites (its the one i always try to grab) now if "robertltux" says xyz chances are very good that I am the one that said it now an AC is one of thousands (or it could be said one of six billion) but how many of me are there?
Any person using FTFY or editing my postings agrees to a US$50.00 charge
At least those are state based, and not used to track your day to day movements.
Yes i know there is talk of going to a federally based ID instead, with realtime tracking of citizens. But we arent there, yet.
---- Booth was a patriot ----
Is the federal government, my federal government, having a policy it plans to implement? Is this a policy of my government? Is this political? Is this something I see as wrong and would like to stop my government from doing? Then, yes, I will stand up and speak, you dumb fuck. You can sit down and STFU. There, there, be a good little sheep. Maybe later tonight you'll be picked for pleasuring the herder. That's what you're waiting for, right? Some good oh-so-consensual loving from your master? Do be good and obey. You'll like it.
I swear, if someone acts outraged, they get modded down.
If someone blows up 100 thousand innocent lives in Iraq and Afghanistan as part of a mismanaged campaign to spread religious "democracy" to countries antithetically opposed to "real" freedom, then they almost make it to Time's man of the century.
I am noticing a bit of "lets be pussies and maybe the christian fanatics in Washington DC will notice us" (before their jackbooted ubersoldat's cave our faces in)
BACK TO TOPIC... READ THE POST ABOVE, READ THE ARTICLE AND MOD THE PARENT APPROPRIATELY!!! It is neither OT, but a bit FB maybe. Overall, if nobody gets angry, nothing ever gets done. You all would know that if you lived up to the Founding Fathers' rebellious attitudes. We need some muck rakers since the news organizations SUCK!
~D
" What luck for rulers that men do not think" - Adolf Hitler
And taking it even further...
If you were a secure cow in Amsterdam, would that then be a roast beef or a corned beef hashish?
This space unintentionally left blank.
Illuminating response.
Data integrity is only part of the picture. These are access cards so readers do need to be networked -- because that's the only way to universally revoke a card's ability to grant an individual access -- remember these are supposed to become the universal government building/room/computer access cards and you do NOT want a delay in revoking the access of a fired California-office CIA agent's access to Washington-area headquarters just because you're gambling they are not motivated to take a cross-country plane to use their card before their status change catches up with the East-coast card readers.
This is because over quarter million people daily visit the temple and crowd control is a big job for the administration.
I rather doubt that it works very well. The American Association of Motor Vehicle, in a 2004 policy document, noted that the best fingerprint scanning equipment (used to just take one fingerprint and compare it to a fingerprint already in the database) can, at their best, work at a ratio of 1 to 10,000. (Meaning that once you get over 10,000 fingerprints, you incur the wrath of Type I and Type II errors, depending on how you've configured things.)
In case any one is interested, AAMVA is interested in biometrics only when they are reliable at 1 to 300 million.
Yes, I am a US government employee, and this does bother me. I can honestly say that I was not aware of this change to ID requirements before reading this thread, and will distribute this thread to my colleagues at work, whom I believe would also be bothered by it.
Name: Mr. Anon E Mouse; SSN: 555-55-5555
I think biggest problem with having biometrics "on-card" is that it is impossible to guarantee authenticity of the data. We are comparing person finger with finger stored on the card. Without communicating with some sort of centralized facility, we only can confirm that these two fingers match. One may argue that data can be signed with some really long certificate/key (as they are in NIST standard). But then you will need to verify certificate, which in turn will require "... communicating with some sort of centralized facility...". If we assume that we are going to have private part of certificate available "locally", than we will have two more problems. First one is physical security. Device which contains this certificate can be stolen and certificate extracted. Second one is inability to implement "aging" of certificates. No mater how long it is, if certificate stays valid "forever", it will be cracked.
So basically the only way to go is to assume that we can not trust any information on card. And verify fact that finger (and other biometrics) scanned at entry point match with finger (and other biometrics) stored in centralized data base for the person to whom this card was issued to. The only information we are using is some sort of ID. And this ID by itself does not provide any authentication. It just used to get proper biometrics records so we can do "match" instead of "search"
Reading through some other posts, I learned that fingerprints on the NIST card will be protected by certificate AND pin. Here we have another problem. One of the most important features of biometrics (at least for private sector) is that people will not need to remember passwords (and IT departments will not need to spend endless hours/$$$$ to reset these passwords). Once you introduce PIN, you will re-introduce problem of people forgetting such pin.
It's nice to see our government working to make this vision a reality.
a) Fingerprints are easy to steal...much easier than, say, a wallet and you can't tell they've been stolen.
r +jello+putty
b) The state of the art in fingerprint scanners are still fooled by lumps of silly putty with fingerprint pictures on them.
http://www.google.com/search?q=fingerprint+scanne
Do you think we should tell people? Or should we just cough up the tax dollara for yet another useless "security" scheme, like we always do?
No sig today...
Parent is right. This is the first step towards a national ID system. Another is the PASS card required for travel to Mexico or Canda.
I live in a country with a national ID system, but I'm American and still really worried about this. I think we're talking about two different cultures here. In a European country, ID's have strongly agreed upon usage and there is a culture of checks and balances, your personal information might be known by the government, but strong rules based on tradition control the use of that information. No such thing in the States, where these systems are basically being implemented to increase control over the populace.
I call this one an example of "Fachism Creep".
Some say he is made with ascii, others that he is eyeballed daily by millions. All we know is, he is known as the Sig
They can put my two middle fingers on the card.
As I am a federal employee I will be getting one (I work for the USPS)
Minority Report actually featured iris scans, not retinal scans (which are scans of the retina, not retena). But by all means, feel free continue to lecture the "sheep".
If other reasons we do lack, we swear no one will die when we attack
There's a difference between wearing the mandated uniform and having the uniform identify you.