Customer Quotes
"The Fraud Practice is a world-class credit card fraud mitigation consulting practice."
Kevin Mitnick, President Mitnick Security Consulting LLC
For Email Marketing you can trust
Advertisement
fourteen years in the information technology industry.Read more
fraud library is your first stop to find free research.
Read more 
Read more Biometrics- Fraud Library
The Fraud Practice eCommerce Fraud Consulting Services
Biometricsare used to verify a person’s identity by a unique physical attribute that distinguishes that individual from any other person. Common physical elements used are (but not limited to) fingerprints, retinal scans, voiceprints and DNA match.
Hard to dispute the results of these tests, but still not very practical ...
Biometricsare used to verify a person’s identity by a unique physical attribute that distinguishes that individual from any other person. Common physical elements used are (but not limited to) fingerprints, retinal scans, voiceprints and DNA match.
The use of biometrics is very effective as a tool to authenticate a person’s identity. The problem is that it is very expensive to implement and requires the consumer to have equipment to produce the authentication. For today’s marketplace it is very unlikely that this type of fraud technique will be implemented in any kind of mass scale. If you have a defined set of consumers who constantly make purchases you may entertain this option. But more than likely you are in a very high-risk regulated sector if you are entertaining this fraud-prevention technique. For example, the pharmaceutical sector would be well suited.
-
Merchantsmay still have “application fraud” in which the account is set up in the fraudster’s identity with their biometric readings.
-
Very expensive to implement, very small-scale type of solution.
-
Requires the consumer to have specialized equipment to perform the authentication check.
-
Most solutions still store authentication data on hard drives that could be hacked.
-
A lot of devices give the option of defaulting to a password instead of a biometric authentication.
Considerations When Implementing or Buying This Functionality
-
Are the merchant’s consumers setting up accounts? How will the merchant collect the initial biometric data from their consumer.
-
What type of equipment will the consumer need to perform the check?
-
Are the devices portable, or will they only work on the one system they are installed on?
-
How do they work for MOTO?
-
What happens if the system cannot authenticate, and it is the real consumer?
-
What are the insult rates of the solution?
-
Who supports the consumer in getting the technology to work?
-
Hardware compatibility issues.
Estimated Costs – Very Expensive
Alternative Solutions – RSA tokens, authentication schemes with pictures, passwords or codes.
Vendors – Identiphi, Digital Persona, VoiceVault, PerSay, Trade Harbor, Nuance, Authentify, L-1
These devices compare a stored image or value that is calculated by the unique characteristics of the consumer with the value they use when they make a purchase. For example, with fingerprints they may be counting the number of identical points from a pre-saved image of the consumer’s thumb.
These tools can be implemented in a number of different ways. The merchant could send their consumer the device and have him or her install it upon registering with the merchant’s solution provider. Then when the consumer attempts to make a purchase, the system would do a validation and pass the information on to the merchant.
Another method is to have the device perform the authentication and produce a one-use number for the purchase, like a disposable credit card number. In some cases the device actually performs the authentication as a means for gaining access to the site or material for making a purchase.
N/A
Property of The Fraud Practice, all rights reserved, no unauthorized duplication, reproduction or distribution without the express written permission of The Fraud Practice.