In today’s increasingly digital world, authentication, the process by which an individual can prove their identity, is pivotal when protecting both connected and unconnected assets. Businesses who don’t have effective identity authentication methods in place, leave both their business premises and its hardware vulnerable to potential hackers.
Whilst current workplace access methods include the use of fobs, swipe cards, keys, passwords and PINs, these methods of authentication are either difficult to remember or can be easily lost and stolen. As a result, we choose incredibly predictable passwords that virtually anyone can guess or borrow our colleagues passes, fobs or swipe cards.
In short, lots of people are lax about authentication.
Poor-quality authentication is risky for individuals, but when it’s scaled up to the level of a business or organisation, it becomes much more of a threat. If a business is hacked or compromised, the penalties — which will probably include both financial and reputational ‘punishment’ — are likely to be severe.
That’s why organisations must insist on enhanced methods of authentication, such as biometrics in the form of fingerprint recognition to authenticate staff. While it’s quite normal to forget a password, you can’t forget your fingerprint. Ensuring the right person is using the right entry card to gain access to the areas of the building they have permission to.
For some businesses the use of fingerprint biometrics to authenticate staff may seem like science fiction. Remember Tom Cruise in all the Mission Impossible films? Hardly a blueprint for daily business conduct.
But the truth is that biometrics, and specifically fingerprint biometrics, caught up with Mr Cruise some time ago and businesses that don’t realise the potential of fingerprint biometrics to manage employee access, are missing out.
Protecting physical and digital property
Fingerprint readers and smart cards incorporating fingerprint biometrics can control personnel access to both buildings and computer networks. What’s more, levels of access can be controlled so that Person 1, for example, can access all areas and all networks while Person 2 may only be allowed into a particular area of one building, and specific areas of the IT network/specified servers on data centre racks, and so forth.
The use of fingerprint biometric smart cards, can optimise security even further. This is because the fingerprint is held only on the card, so unlike most facial or iris recognition systems, there is no database of biometric data to be hacked or stolen. That’s a huge advantage anywhere security is paramount, such as healthcare or law enforcement facilities, and puts fingerprint biometrics ahead of many other biometric systems, let alone passwords and PINs.
A similar scenario applies to the use of fingerprint smart cards for access to IT networks, where it may be possible either to connect fingerprint biometric readers to the network or to attach individual readers to each device. As with buildings, access levels can be customised and this type of authentication can be used to generate robust and reliable audit trails of network and data access.
Indeed, fingerprint biometric smart cards can help businesses to gain pinpoint control of operations, either in real time or retrospectively (e.g. for disciplinary or legal proceedings). Using biometrics in this manner tells managers exactly who is in which building/network/system and when they accessed it. By adding fingerprint biometric capabilities to portable or employee-owned devices, the ability to manage remote or flexible working staff is simplified, because management can always see when staff are logged in and working the hours they claim.
When fingerprints are best
The standards of authentication provided by fingerprint biometric smart cards are now widely accepted, to the point that fingerprint biometric recognition is fast becoming the gold standard in smartphones. However, it is human nature to look for the next big thing, and some have argued strongly the value of facial recognition, especially for building access.
Facial recognition is a perfectly good biometric in many situations and is a valuable addition to the armoury of biometric authentication methods. However, as Apple discovered when they launched the iPhone X, it is not without problems. Apart from the furore surrounding Face ID’s alleged inability to tell some people apart, Apple itself has admitted there are problems with the camera technology required to make facial recognition work and have issued formal instructions for iPhone users experiencing them.
For effective facial recognition to be possible the camera used must be able to achieve a reasonable degree of resolution. Further to this, the camera requires a significant proportion of the face to be captured. Factors such as ambient lighting, clothing such as scarves or glasses, and even the angle of the face can have an effect on the success of facial recognition. Consequently, fingerprint biometrics present a much more accurate method of biometric authentication when it comes to access.
By embracing biometric fingerprint technology into access control, businesses can be safe in the knowledge that only certain individuals will be able to access a building and the sensitive information it holds. It’s time to say goodbye to old-fashioned access methods of keys, swipe cards, PINs and passwords, and embrace fingerprint biometrics in our migration to a new digital identity.
David Orme, SVP, IDEX Biometrics ASA
Image Credit: Flickr / AMISOM