Thumbprints Used To Check Books Out of School Library

krou writes "Junior students at Higher Lane Primary in Whitefield, Greater Manchester, are in a trial of a system that uses their thumbprints to check out and return books from a library. The thumbprints are 'digitally transformed into electronic codes, which can then be recognized by a computer program.' The system was developed by Microsoft, and is being trialled elsewhere in the country. NO2ID condemned the system, saying it was appalling, and that 'It conditions children to hand over sensitive personal information.' The headmaster has defended the scheme, saying, 'We have researched this scheme thoroughly. It is a biometric recognition system and no image of a fingerprint is ever stored. It is a voluntary system. The thumbprint creates a mathematical template. All parents have been written to and we have told them what the system is all about. From the responses we have had there has been overwhelming support. We hold a lot of information about children because we are a school. This is no different.'"

Next up

[0100010001010011]

School bans gummi bears

Re:Next up

[vxice]

You get what you pay for. This just in $5 fake cameras, you know the ones with a single AA battery that runs a little LED so that the criminal thinks the camera isn't a $5 fake hooked up to nothing, fail to catch criminals %100 of the time. From the way that was written it sounds like the author just doesn't like biometrics and chose the lowest quality systems he could find. I go to a college with a biometrics program and know several people working on what is called "liveness detection" or measures in the systems to prevent fake fingers that would easily foil the fakes that this guy made. The first and simplest, while not the most accurate but simplest never is, way would be to include a temperature sensor and reject and print present with non standard human body temperature accounting for fevers and cold fingers during winter. The next method commonly used would be to apply a charge across the finger, there is a specific range of resistance expected from a human body. Other methods include detecting for perspiration, more sensitive scanners that can see the 3d structure of the fingerprint and many others. Like I said you get what you pay for and that needs to be taken into account. That article you linked to mentioned that you could fool the system with $10 worth of household goods, well what use is that if there is no way you are going to steal $10 worth of books. Who really steals books from a high school library. Security is not about being %100 secure but making it harder and more expensive to break the security than either a) its worth or b) than it is to get the other guy.

Re:Next up

[rolfwind]

My local Community College library has an even more retarded system than all this... when you check out, you write your name and student ID# on a sheet. The problem is that the first letter, last name, and last four digits of your school id# is your username and the student id# is the default password (no prompt to change it either) into the school system (blackboard, registering/dropping/withdrawing classes, looking at GPA and past grades, viewing and requesting transcipt...).

This sheet is in complete view and what's worse is the library houses the computer lab and has like 50 computers. I tried telling the librarians what they are doing is completely retarded and got the response "We always did it this way". Which is strange because most librarians I know are forward thinking and security minded. I would have demonstrated with a random name but I didn't feel like getting accusations of hacking, even with my own name so I left it alone. To this day they still do it like this.

Re:Next up

[vlm]

Who really steals books from a high school library.

Well, I don't, at least not for myself.

But, you see, I was an absolute monstrous little hell raiser in HS, back in the olden days, when "glam rock" was new, not retro. I was absolutely bored to tears, unless I was pulling off some kind of secret agent caper, or occasionally just anarchy for the sake of anarchy due to extreme boredom. I won all practical joke wars, and I was a bit of a bastard about it.

I would not be surprised to discover that certain jerks, cheating ex-girlfriends, bullies, and school personnel had, oddly enough, checked out and never returned the schools ENTIRE COLLECTION of gay/bi/curious/trans literature, suicide prevention lit, STD awareness lit (the joy of syphilis, etc) drug abuse lit... Whom would ever guess that the schools biggest jock read and kept every biography of Freddie Mercury, Liberace, etc.

Oh and I'm sure that a modern school would never electronically access "private" library records and call kids in for counseling. I pulled that maneuver off decades ago during a practical joke war with a friend, took him awhile to forgive me...

Re:Next up

[hedwards]

Yes, but why on earth would they bother to spend that kind of money on something for which they already have a solution? For certain applications, the technology you're suggesting makes sense. But for books at a school library? Wouldn't it be a lot easier to just use a scan system like they do at our public library? Basically when you put a book on reserve a librarian places it in with the ones on hold and then you go pick it up off the shelf, scan it along with your card and are out the door. Sure it's more expensive than even more simple systems, but it's a lot less problematic than conditioning kids to think that it's normal to have to pass a biometric check to check out a book.

Re:Next up

[vxice]

Did we have these people when cards were first used. Oh you are just conditioning them to produce a card to check out a book. Where is the problem there? Biometrics if done right could be cheaper, quicker and more convenient. Students don't have to remember their cards, their fingerprint is always at hand and prevents students from using other students cards. Enrolling students into a biometric system is cheap, cheaper than providing a new card to every student every year. At least over the long run. For what ever reason this school decided it would work for them.

Re:Next up

[dcollins]

"Did we have these people when cards were first used. Oh you are just conditioning them to produce a card to check out a book. Where is the problem there?"

Consider this a "Give unto Caesar those things which are Caesar's" type situation. If you want to track library books or student attendance or whatever, you have a responsibility to generate a User ID, give it to me, and expect to get it back on request. Same for IRS taxation or Social Security or whatever. If it is stolen or mis-identified then you have the capacity and responsibility to provide a new one that works.

My biometrics (skin, blood type, fingerprints, iris scans) are personal and private information, existed prior to any government institution, and should not be required to be turned over to said institutions.

Re:Next up

[anyGould]

At every school I went to students just signed out books. School libraries themselves are usually quite useless, and an expensive high-tech upgrade like this one is just a vanity project.

Generally because for some perverse reason it's easier for a library to get funding for high-tech security systems and multimedia gadgetry than it is to get funding for actual books.

Big Deal

[sensationull]

Big deal schools in the UK and NZ have been using this method for checking out books for ages. You try to get a six year old to remember a pin number or library card. Many also use public barcode lists of users instead due to the cost of fingerprint scanners and in some rare cases privacy concerns.

Re:Big Deal

[DeadPixels]

Back when I was in elementary school, all you did was tell the librarian your name and she'd look you up in the system. I don't recall if there was anything to prevent abuse of the system - they might have asked for a birthday or something. Either way, this just seems unnecessary more than it is concerning.

Re:Big Deal

[betterunixthanunix]

"You try to get a six year old to remember a pin number or library card."

Or, you could have an adult help them. Like, a teacher, or a parent, or the librarian. Why are we suddenly expecting 6 year olds to go to the library without any supervision?

Re:Big Deal

[TheRaven64]

This story is about the UK, but maybe it's been used in NZ for ages. And does a school library really need automated checkout? The library at the school I attended from ages 7-11 did not have a librarian, the class teacher wrote the book that you borrowed in a book. The school that I went to from 11-18 had a librarian and either she or one of the sixth formers doing library duty would enter your name in the computer that tracked books. This popped up your photograph, for quick verification. No library card needed.

The school that I went to from ages 3-7 didn't have a library. Reading age changes quickly when you're that young and so each class had its own reading books, which children could borrow if they asked the teacher. Again, no need to remember a PIN or library card.

Re:Big Deal

[DerekLyons]

You try to get a six year old to remember a pin number or library card.

Why the heck does a six year old need a library card or a PIN in the first place?
 
The problem here is assuming that everything must be computerized... for no good reason other than everything must be computerized. When I was six, the teacher pulling a card from the pocket in the book, having me print my name, stamping the card and the book with with the due date, and then filing the card worked just fine.
 
I'm no luddite or technophobe by any stretch, but sometimes electronic/automated systems are solutions in search of a problem.

Re:Big Deal

[teh31337one]

Exactly what I was thinking. They started using thumbprints for the library in my school back in 2001. (It was a UK school)

Re:Big Deal

[drinkypoo]

In the US, teachers literally don't have enough hours in the day to meet the requirements in many cases. Now you want them to be the librarian, too? Mind you, my school worked like your school, but I wouldn't say I received anything like education there. It was more like indoctrination. There was no personalized learning, everyone was forced into the same box even back then. I was in GATE (gifted education) and for kids my age participation was limited to using the speed-reading machine (in a group) and doing logic puzzles, doing all the same ones I might add, i.e. there was no personalized learning even there except for sixth-graders... which was the only year I didn't attend at that school, of course. The next place I went had nothing.

Re:Big Deal

[TheThiefMaster]

I was definitely trialled at my UK high school, 10? years ago.

Re:Big Deal

[gyrogeerloose]

Back when I was in elementary school, all you did was pull a card out of the pocket in the front of the book, write your name and room number on it and drop it in a box. There was no "system" because computers were hugely expensive, not to mention being the size of a pickup truck back then. The librarian knew us all by name and if a book wasn't returned on time, she'd come looking for us in class.

Now, get off my lawn--it's time for Matlock.

Re:Big Deal

[colonelquesadilla]

Back when I was in elementary school we wrote cuneiform on clay tablets. Gilgamesh was always checked out, although there was a lot of debate as to whether it was suitable for a school to have.

Re:Big Deal

[AkiraRoberts]

Adults, having the benefit of maturity, are able to be stupid in ways which would be impossible for a child.

Hidden agenda

[RobVB]

I'm fairly certain there's a hidden agenda here. They say it is a voluntary system, but what they mean is that privacy conscious students won't have access to the library. Libraries hold books. Books hold information. Information leads to knowledge. Knowledge is power.

They're taking the power away from the privacy conscious people. It's a conspiracy, I tells ya!

And no, I'm not paranoid. It's not paranoia if they really ARE out to get you.

*looks over his shoulder*

Re:Hidden agenda

[maxume]

Thumbprints are personally identifiable. That does not make them private.

Or are you wearing latex gloves right now?

Or is it that you think the library should be prevented from keeping a record of the students that they have loaned books out to?

Re:Hidden agenda

[AdmiralXyz]

Your post almost looks like it could be sarcasm*, but you never can tell on this site, so I want to point out that it's not like libraries were havens for privacy before. You could never just walk into a library and anonymously check out a book: you had to have a library card, and the record of everything you've ever checked out was associated with that card, and therefore, with you. The only difference here is that your thumbprint is being substituted for the card.

Move along, folks, nothing to see here but Slashdot sensationalism.

* And if it is, then this post is aimed at the people that modded you Insightful.

Re:Hidden agenda

[Main+Gauche]

"I'm fairly certain there's a hidden agenda here. They say it is a voluntary system, but what they mean is that privacy conscious students won't have access to the library. Libraries hold books. Books hold information. Information leads to knowledge. Knowledge is power."

I'm fairly certain that Yoda has a schizophrenic brother.

Re:Hidden agenda

[truthsearch]

Or is it that you think the library should be prevented from keeping a record of the students that they have loaned books out to?

When I was a kid we were given personal identification. It was just 2 words, easy to remember, with the second word being shared among my family and the first word being unique to my generation in the family. We would share it with the librarians so they could keep track of who borrowed each book.

I remember it working quite well. Whatever happened to that system?

Re:Hidden agenda

[pmontra]

Hidden agenda?

If they want your fucking finger print they can get it from any of the several thousand other impressions you make during the day. From the desk you were sitting at, the papers you turn in, the locker door you open, the toilet you flush.

Think about the cost of collecting fingerprints on every desk and associate them with a name compared to the convenience of people voluntarily providing you both.

Re:Hidden agenda

[maxume]

The librarians got lazy.

I really don't see what difference you see between a name and a thumbprint, they are both essentially public information that is roughly tied to a certain person. I suppose there is some raving-loony scenario where a nefarious criminal manages to pull a thumbprint out of the database and plant it at a crime scene with other corroborating evidence during a time period where the owner of the thumbprint does not have a decent alibi, but I don't find myself breaking into a sweat over it.

Re:Hidden agenda

[Zerth]

I don't know about your fascist library, but mine only keeps records of what books you currently have checked out.

Once you return them in good condition, the entry showing you checked them out gets wiped from the system.

Re:Hidden agenda

[SleazyRidr]

My mother often makes use of the fact that the library keeps a record of the books she has checked out. When she picks one up that looks kinda familiar but she isn't sure if she's read it or just a similar book, she can see if she's checked it out before, rather than reading the first couple of chapters to realize that she actually has read it.

Re:Hidden agenda

[natehoy]

But only one can be replaced with a new unique identifier. The library can make up numbers for cards, they can't make up a fingerprint. A fingerprint is yours for the rest of your life.

I understand that the library is only storing a hash, but unless the library is using a truly unique fingerprint hashing technique, a breach of the computer they are storing those hashes on could mean that validation data about you that cannot be changed could be used for other purposes. Think of "fingerprint hash" as the equivalent to "SSN". It's not something you can change easily, and for that reason it's something that can be used to identify you with a decent level of confidence. That hash could be injected into any computer that uses the same (or a similar) hashing algorithm, and even if the library discovers the breach there's little they can do about it.

That's where biometrics get interesting. They uniquely (or at least "practically uniquely") identify you, but if someone breaches the system holding it, it's hard to prove it invalid.

If the library makes up their own numbers, they aren't holding any valuable data. If they store something that can be uniquely derived from your fingerprint, they should at least be held to PCI compliance, but preferably a lot higher - you can change a credit card number.

Re:Not sensitive

[butterflysrage]

you mean your kids aren't shaved bald coated in a latex suit? Just think of all that sensitive DNA they are leaving everywhere they go!

It's worth mentioning ...

[krou]

... that it's more widespread than the article Snip:

Many schools are fingerprinting pupils without parents' permission, teachers have warned.

It is thought around 100 schools in the UK now use fingerprint identification systems for registration, borrowing library books and cashless catering.

But there is no legal requirement for schools to seek parents' consent for using biometric technologies.

Re:Not sensitive

[drinkypoo]

The risk that someone will cut off a junior schoolchild's thumb in order to check out a library book seems to lie within acceptable bounds.

Riiights...

[vvaduva]

"All pupils' details are erased when they leave school."

They promise...this time is true! For real!

Re:Riiights...

[TheCarp]

Of course, if they really meant it, then they would allow the assignment of absolutely outrageous damages to the school when this is not done. Very simple, you make the school system, superintendent, principal and vice principal jointly and separately responsible for ensuring that the data is erased and removed from any/all backups within 21 days of the student no longer being enrolled.

If the school is found to be in non-compliance, they shall be jointly and separately responsible to pay damages in the amount of $250,000 to the student or legal guardian, for every 7 day period in excess of 21 days that the information is found to still exist.

make sure that this applies not only to school controlled systems, but contracted systems in the control of 3rd parties on behalf of the school.

You put that into place and I GUARANTEE that this will not end up being an issue.

-Steve

Re:Riiights...

[noidentity]

Notice they said "details". Not "all information", just the details. As to what is a detail and what is not, the devil is in that.

Wait till swine flu appears again

[DustCollector]

I briefly worked at a company which used a hand scanner in lieu of a badge. It was unwisely put between your desk and the restroom. It's no secret not everyone washes their hands after relieving themselves, so I avoided eating lunch at my desk unless I had a bottle of hand sanitizer with me.

Now imagine 4 year olds, touching everything and sucking their thumb, and then checking out a book.

Technologically, scanners work well enough. Implementation, however, is done by the foolish.
 

Re:Wait till swine flu appears again

[dummondwhu]

Well then, we'd better hurry up and get rid of door knobs, vending machines, elevator buttons, and the myriad of other things that a lot of people touch on a daily basis. I'm sure that children aren't already touching each others toys, school supplies, desks, etc. already, though, so good catch on this one. In fact, we'd better hurry up and get them all into bubbles before the swine flu gets them!!

Or maybe the librarian could just hit the reader with a little sanitizing wipe every so often. Germ phobia is hardly a reason not to do this. Not when a thumb print reader is just one more thing among a slew of others that a lot of children might touch in a day.

Re:Wait till swine flu appears again

[dummondwhu]

Yes, that's true, but getting fingerprints from a door knob had exactly zero to do with the comment I replied to, which made the point that filthy 4 year old children and people who don't wash in the bathroom would be spreading swine flu via heavily used thumb print readers.

Re:Not sensitive

[betterunixthanunix]

Except that in this case, it is a thumbprint combined with other identifying information (like a name). They claim the information is not stored, but I am sure that buried in the contract there is a clause allowing law enforcement to arbitrarily request the thumbprints of particular students. Sure, they could always pick through the trash to get the thumbprints, but this system makes it that much easier, further tipping the balance of power away from the citizens.

Of course, there are plenty of other ways that the government manages to get this sort of information, but that does not mean it is OK to add to the problem.

"No image of a thumbprint is ever stored"

[kieran]

As far as I'm concerned, that's enough to move this project from "appalling" to "kinda awesome". I'm not sure what (the otherwise excellent) NO2ID are on about here.

Re:"No image of a thumbprint is ever stored"

[Nakor+BlueRider]

Not that I'm against this use of thumbprinting, but I wonder how effective the mathematical template is at maintaining privacy. Theoretically even if they don't have the actual thumbprint on file, could they not still check a thumbprint they find somewhere against their student database by running it through the same template and seeing if it matches the result of any of the students' prints? They may not have the students' thumbprints themselves to compare against, but they still effectively have a hash from it. This would prevent them from producing the student's thumbprint from their hash and using it elsewhere, but not from finding a thumbprint somewhere in the school and comparing it to their database if they desired.

Re:"No image of a thumbprint is ever stored"

[vxice]

actually images of fingerprints or any biometric for that matter are ever actually kept. Templates are almost always used, they are simpler to match and use less storage. Think of it as a one way hash, the image is collected and then the template is created. In the case of fingerprints minutia points are noted, details such as the delta point, which is on almost all fingerprints a delta or triangle shaped feature made up of many ridges usually on whirl type fingerprints. Other points of note are where there are divergences of the ridges or convergences called bifurcation points. Fingerprints used to be classified by their 1st degree features or features which could easily be seen by the naked eye, weather it was a left whirl, right whirl, or one of several other categories. Bifurcation points are 2nd degree features which can still be seen by the naked eye but are smaller and harder to see. Then there is a third level which is the location of the pores which requires magnification. Human recognition of fingerprints also involves the 2nd degree features. Computer matching is usually done entirely on the 2nd degree level because it is surprisingly hard to program a computer to match 1st degree features and rather pointless since it does not limit the search space much a feature which is very important when humans are sorting or matching anything. A good match would have all the minutia points listed on the template, however users don't always place their finger the 'exact' same way every time so some rotation and acceptance of missing points is to be expected. The rotation is easy to deal with, missing points as long as those points are not seen at all it can be acceptable as long as all the present points match and not too many are missing. If the scan is not good enough the user can be asked to scan again.

Fingerprint != Private

[Mabbo]

Your fingerprint, like most biometrics data, is not what I would call "Private information". You leave it lying around all of the place, all the time. Your face isn't private, in fact it's probably the most public thing about you. Your DNA is very much the same: your drop it everywhere. The only thing that makes it pseudo-private is that it's generally a bit hard to obtain- but not really.

If I were a kid at that school, I'd start signing out a lot of books under a teacher's fingerprint. I'm sure a lot of them have seen the mythbusters episode where they do that sort of thing. It's not difficult.

Re:Fingerprint != Private

[RivenAleem]

Privacy nut: "They are keeping records of all your private information, all your biometric data. We need to stop this!"

Me: "Your voice is private biometric data. So shut up."

Re:Fingerprint != Private

[betterunixthanunix]

Do you commonly tag your biometric data with your legal identity? Sure, my fingerprints are left on the counter when I buy something at the corner store, but I do not sign those fingerprints with my name. When you start using fingerprints for library records, you essentially have a convenient database for tying those fingerprints to the people who own them, without the effort that was once necessary to do so (i.e. following someone around, picking through their trash, and so forth).

The problem is it doesn't work well

[Chrisq]

I know a couple of schools that use the system, and unfortunately a large number of thumbs are "unscannable". This means they are singled out to carry cards or something else, which (like almost anything else that makes kids stand out from the crowd) embarrass them.

Re:The problem is it doesn't work well

[tompaulco]

Imagine trying to match a child's dirty fingerprint to a database.
In the real world of forensics, a print does not lead you to a single person, but brings up a list of possible matches for a human to look at and evaluate. The same is true in a biometric reader. This is why every biometric meter I have come into contact with also requires you to enter a pin number or other information in order to verify your identity. The biometric data is useless by itself, but once the PIN is entered, it is able to verify that the PIN is associated with a group of possible matches that include your fingerprint.
Now, they would either have to employ a forensics specialist to look at all the possible matches from the kids fingerprint, or they could just have the librarian ask the kid their name.
Reading the story, they are already doing the latter in addition to the scanning, so the biometric system is only there to verify if the name given really is a possible match for the fingerprint given.

LIBRARY CARD

[yaDad]

what the hell is wrong with a library CARD. hasnt this been working for years. if you cant keep up with a library card you might have problems later on in life. further than that why not just use the NAME of the student who has the book. IDIOTS!

Re:LIBRARY CARD

[yaDad]

its just that it seems a little much to me...A library card worked fine for me for many years. If you forgot your card you didnt get a book. Dont see the need to inject technology to the simplest and basic concept of the library

No opt-out

The problem with bad ideas like this is that there is no way for those kids (or their parents) who think such Orwellian shenanigans set a bad precedent to opt out. Some idiot administrator has made the final call, and now, if you want to use the library, you have to conform. This is what schools teach. In addition to mediocre math, science, art, music, and physical education; schools primarily exist to teach the value of conformity. You must agree to abide by arbitrary and often quite stupid administrative decisions, and furthermore, you must learn to accept that this is the way of the world. No-one ever distinguished themselves by being like everyone else. Is that a lesson you'll learn in public school? Not a chance.

Re:Not sensitive

[maxume]

Do you think there is a high risk of students lifting fingerprints in order to steal books?

Pervs

[halcyon1234]

It is a biometric recognition system and no image of a fingerprint is ever stored[...] The thumbprint creates a mathematical template.

How can we be sure there isn't some perv getting off to our children's mathematical templates?

My company produces similar...

[SeraphEX]

I work for a software company that produces something similar for school cafeteria use. The points of reference on the print are so minimal that we've had to work very hard just to get a decent read. The chances of someone using the code outputted by our algorithm are nil. It is completely unusable data except by our program. The bottom line is that that unless the program is retaining an image of a child's fingerprint, there is no privacy concern here. Anyone who says otherwise is wallowing in their own FUD.

They probably shouldn't be treated as Id. either

[JSBiff]

Personally, I'm less worried about the 'privacy' of my thumbprint, and more worried that, generally, it's too *easy* to get my thumbprint.

While this probably isn't much of a worry with a school library checkout system, I'm worried that with something like a thumbprint, which never changes, eventually it gets too easy for someone to get access to your thumbprint and 'forge' authentication/authorization.

It's the same problem I have with the use of Social Security No.s - you start out life, and your SS # is basically secret - your parents know it, and it's in the SS Admin.'s computers. Right there, though, because it is in government computers, potentially thousands of people have access to it. Now, your parents sign you up for school, and they enter your SS # info into the local school district database. Then you get a savings account at the bank, and they ask for your SS #. You apply for jobs, and they ask for your social security number. You sign up for a credit card, or a checking account, an IRA, or an application for an apartment, and they ask for your Social Security number. You apply to college, and each college wants your SS#.

By the time your 25 or 30, your Social Security number is in dozens of different databases and millions of employees have access to those databases, and your SS # is basically worthless as a 'secret' which identifies you - it's no longer secret.

You could have the same problem with biometric identification (although at first glance, that might seem impossible), because, fundamentally, biometric information such as a fingerprint, retina scan, or DNA sequence, is reproducible data - ultimately, no system can guarantee that the actual finger or eye or DNA was scanned - all that the 'server' can verify is that the correct 'data' corresponding to previously recorded data, was transmitted over the network to the server. So, compromise a terminal (or setup a computer which masquerades as a valid 'terminal'), then send the correct 'data' from that terminal, and the server will assume that the user's thumb or retina was scanned.

I'm really can't offer any advice on a better alternative, but mark my words - if biometric identification becomes widespread, the identity thieves will not have too much difficulty adapting - as the biometric id becomes widespread, it will get harder and harder to keep the identification 'data' secret, and fraudsters will steal that data like any other bit of data, and misuse it.

The *real* security threat is that people will start to get a stronger and stronger belief in the 'infallibility' of such biometric identification, and so people will lose the ability to repudiate false authorizations. Juries and judges, if they have too strong of an assurance on the evidence provided by biometric identification, may produce verdicts/rulings which unjustly penalize innocent people.

Re:Not sensitive

[maxume]

So how frequently do you think it would actually happen?

Re:Not sensitive

[somersault]

"My gummy bear owns the membership, but he's disabled and I'm his method of transport.".

Re:They probably shouldn't be treated as Id. eithe

[omglolbah]

Biometrics wont stop identity theft.

It just means that when you're compromized you need new eyeballs and a finger-transplant :-p

Re:Not sensitive

[fireylord]

What are your concerns?

My concerns are that this is teaching children that it is ok to hand over personally identifiable biometric data, that cannot be altered during their lifetime, to do innocuous things when they have done nothing wrong. What next? Voluntary fingerprinting while you wait at, a desk set up in your local shopping mall by policemen? It's the first step in creating an Orwellian society.

Someone will have to explain why this is bad to me

[RapmasterT]

Honestly, I don't get the almost pathological paranoia people have surrounding the concept of privacy, without regard to the reality of it. Your fingerprints are not private, you leave thousands of them unsecured around you every day without a second thought...exactly why they should NOT be used as a security key, but that's a different discussion. People should be worried about the improper use and implementation of "security" methodologies, not acting like tinfoil hat wearing nutjobs because someone wants to store the fingerprints they leave on every doorknob in the city.

Same goes for Social Security number paranoia. News flash people, your SSN is NOT private, it is not a secret, it is an identification number...nothing more. No different from the street address on your house, just more permanent. The problem comes from institutions USING it like it was secret, instead of a password or PIN. The solution is not to try to belatedly make SSN something it isn't and won't ever be, the solution is to refuse to accept companies using public information (your SSN number) as if it were secret.