Florida Ruling Highlights Continued Urgency to Educate Public on Biometric Technology

Spread the love
biometric identification management technology helps school lunch lines move faster
A student scans their fingerprint in a school lunch line for payment.

You may have heard that the State of Florida recently voted to ban the collection of biometric data from school students. The legislation was a direct response to several Florida school districts capturing student biometric data and using it for various purposes including purchasing lunch in school cafeterias and tracking students on school buses. Ongoing concerns over the protection of student biometric data as well as who has access to it sparked discussion on the use of the technology in schools and prompted legislators to stop it.

One major concern is the storage of biometric information and how secure the system of encryption and verification is. Most, if not all systems work under the principle that it’s not student biometrics that are actually stored, but it is instead a numerical sequence used for verification. The worry is that criminals will find a way to steal a student’s biometric template, reverse engineer it, and then use it to access the current system or another one that relies on the same biometric credential. A legitimate concern since biometrics are quite different from and ID card or token which when lost or comprised, can be replaced. Biometrics on the other hand, are said to be an “irrevocable” attribute since they are based on human physiological characteristics and can’t be “replaced.”

In response to the FL State Legislator’s decision to ban biometrics in schools, Janice Kephart from the Security Identity and Biometrics Association (SIBA) made the following statement:

“I’m concerned this precedent could spill over to other states due to mostly a lack of education on what these systems do or don’t do,” Janice Kephart, the founder of the Secure Identity & Biometrics Association (SIBA) and an outspoken advocate for the use of new authentication technologies said in a recent interview with BiometricUpdate.com. “It’s really concerning.”

After a thorough review of the legislation, Ms. Kephart went on to say that the logic used as the body of the bill was based on “misunderstood science” and essentially penalizes the entire State for the actions of 2 districts who failed to properly notify parents and secure their permission for students to “opt-in” to having their biometric credentials captured. If you read statements from FL lawmakers on the issue, it’s clear that the genesis of their actions seem to be tied more into constituent fear of “Big Brother” and privacy/civil liberty violations then arguments based on fact about how the technology actually works. The use of palm vein biometrics in Pinellas County school lunch lines for example is a clear illustration of how the technology can be misunderstood.

If one were to extrapolate the argument that student biometric data from a palm vein reader could easily be stolen and used by a criminal, the argument seems flawed when you look at the facts about the science. Fujitsu, the company who manufacturers the palm vein device has clearly stated that they use multiple layers of encryption to secure biometric information and don’t even capture an image of the palm vein but instead convert it into a template with a private encryption key. Furthermore, Fujitsu relies on the unique hemoglobin through the bloodstream as a “liveness detection” security measure which again makes the technology virtually impossible to spoof and use another person’s credentials to access a system. Ultimately, is it possible to “steal” someone’s biometric credentials and reverse engineer them to create an image whether it’s fingerprint, palm vein, iris, or another biometric modality. The answer is that anything is possible in this day and age, but the chances of it actually happening are extremely remote. One read at some of the logic behind the FL State legislation and you would think that it’s a piece of cake to recreate a student’s biometric credentials.

Unfortunately, the biometrics industry often falls victim to misperceptions about how the technology actually works and these can be magnified by people who are intent on stopping the inevitable advancement of this technology as a more modern identification platform. As most know, in life perception tends to be 9/10 of reality and this has never been more evident than in biometrics. People who do not completely understand the technology but perceive government as rapidly encroaching on our personal lives and the slow disappearance of personal privacy in our digital world jump on biometrics as just another tool to control our lives. In reality, biometrics is used all over the world and has drastically improved security, saved a countless amount of money, resources, and time for business and governments, and continues to be used in new and creative ways to establish accountability and protect individual privacy.

It’s crystal clear that the biometrics industry has a lot of work left to do when it comes to public education on how the technology works. We hope that biometric vendors take this call to action seriously and embark or continue their push to educate and inform so more rational decisions can be made about the use of this technology in the general public. We need to be taking steps forward in biometrics, not steps back.

After all: Truth is universal. Perception of truth is not.

In what ways do you feel the biometrics industry can better educate the public about the technology?


How useful was this post?

Click on stars to rate the post!

Average rating 0 / 5. Vote count: 0

No votes so far! Be the first to rate this post.

John Trader

John Trader is the Public Relations and Marketing Manager with M2SYS Technology, a recognized industry leader in biometric identity management technology. Headquartered in Atlanta, GA M2SYS Technology's mission is to pioneer the high-tech industry by delivering long-term value to customers, employees and partners through continued innovation and excellence in all aspects of our business. M2SYS continues to innovate, build and bring to market leading-edge biometrics solutions that revolutionize the industry and expand the applicability of biometrics technology in our marketplace. You can view their Web site at www.m2sys.com or contact them via e-mail at info@m2sys.com

7 thoughts on “Florida Ruling Highlights Continued Urgency to Educate Public on Biometric Technology

  • April 4, 2014 at 4:02 am

    The anti-biometrics case isn’t only about identity theft. It isn’t even mainly about identity theft. The issue at hand in Florida and Senate Bill SB 188 is privacy.

    I’d love to know your position on these privacy issues:

    – Is palm scanning and the like a proportionate response to the problem of lunch time queues and attendance on the buses? If a biometric collection of Personal Information is not proportionate to the security problem being solved, then privacy suffers. There are lower tech (and cheaper) solutions to the problems that do not bring the side effects of biometrics, nor the data management overhead.

    – How secure are the biometrics scans and biometrics templates stored in school systems? Do school IT functions really have what it takes to manage secure databases? Who’s liable in the event that a school computer is hacked and biometric data is stolen?

    – M2Sys seems to hold conflicting views about the storage of raw images. You have previously recommended that raw images be retained for dispute resolution purposes in hospitals.

    • April 4, 2014 at 9:37 am

      Thank you for the comments. Yes, we understand that the legislation passed in Florida does not exclusively focus on identity theft but also includes concerns about privacy.

      We are not privy to other biometric vendor system infrastructure to know how they secure their data – perhaps you can check with the vendors who have deployments in the State and ask them that question? It is also not possible for us to comment on whether school IT functions have the ability to manage secure databases, not sure that an assessment like that can be made without internal access to school system IT departments. Again, perhaps that is a question better fielded by the vendors that operate in that state within that market.

      Thank you again for the comments.

  • Pingback: Biometrics | Zahal IDF Blog News

Leave a Reply

Your email address will not be published.

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Need Help With Biometric Identity Management Project?

M2SYS Simplifies the development and deployment of biometric projects

Contact Us
Please enter the following information

Name (required)

Your Email (required)


How did you hear about us?

Need help with a biometric project? (required)

Sign me up for the newsletter