Blog Viewer

New Authentication or Pure Hollywood Sci-Fi?

By Rayleen Pirnie posted 06-15-2013 11:58

  

I think you all know just how paranoid I am – Online, I have more personalities than Sybil. If I'm forced into "challenge questions" as a method of authentication, I never give the same answer twice. If anyone harvested my data, they'd think my father has 7 different middle names and my high school had a whole host of wild mascots (all of which I believe are completely made up...unless there is a school out there cheering on the “Flying Fighting Tweety Birds”?)

But the "average user" doesn't operate that way, making challenge questions and passwords poor security. Capture the challenge question answers and password to one site and you've probably compromised an average user’s entire online existence. (Inner monologue: I've been told by a number of you that my disdain for these forms of so-called security is apparent, so why try to hide it?

The possibility of stealing someone’s entire Online existence (identity, money, lifestyle, good name, etc.) in one swipe is one of the things that keep Security people awake at night. So, researchers are trying to isolate stronger authentication security that doesn't require a lot of work on the part of users – let’s face it, no one wants to try to remember what false answer you gave to a challenge question, right? (Inner monologue again: I've locked myself out of a couple of sites because I couldn't remember if I claimed the answer was Henry or Jack - happens to us all!)

I'm always interested in newer, stronger forms of authentication, ones that don't give you a migraine - one day I too would like to consolidate my multiple online personalities and be a whole person. I found an interesting article where researchers are proposing everything from a bio-stamp (flexible electronic circuits attached to your skin) to a pill that you swallow that emits identifying signals from your stomach to authenticate you during an online session. I had to stop midway through and think “Strong security or just plain weird?”

I discussed this with participants of EPCOR’s Quarterly Fraud Review session last week. No one seemed too keen on a pill that emits signals from your stomach. No comments on the bio-stamp - maybe they thought I was kidding.

So, I pose to you – new, cool authentication or Sci-Fi Horror? You decide: Biostamps - Freedom From Password Tyranny or Hollywood Science?
1 comment
64 views

Permalink

https://community.epcor.org/blogs/rayleen-pirnie/2013/06/15/new-authentication-or-pure-hollywood-sci-fi

Comments

Jeffrey Williams
06-18-2013 13:53

Considering that they put an electronic ID chip in my son's skin when he joined the army TWELVE years ago with all kinds of information about him, the concept of a bio-stamp ostensibly to prevent ID theft is not at all far-fetched. Setting aside a consideration of the civil rights implications, a bio-stamp is really an excellent solution to the ever growing need for us all to remember countless user id's, password, challenge questions/answers, PINs, etc. etc. etc. The chip will happen. Not if, just when.