Ghana banking sector embraces private sector biometrics, too

A lot of international attention has been focused on Ghana’s use of biometrics for voter ID management, but Ghanaian banks have been enthusiastic adopters of the technology, as well.

Ghana Automated Clearing House transaction volumes hit almost 200% (Ghana Business News)

GhIPSS was set up by the Bank of Ghana some five years ago to lead the migration of the country into an electronic payment society. Since its establishment, the wholly owned Bank of Ghana subsidiary has introduced a biometric card called the e-zwich, an electronic clearing of cheques with express clearing session, and Payment Distribution System. Its recent addition is the gh-link Interbank ATM Transaction Switching that allows bank to share ATMs.

Biometrics and a different side of the Afghan war

…from the Durango Herald:

“You never know who is coming through the gate – it is very important for me to see that I’m getting kids inside the gate and getting (them) to treatment they’re not going to receive anywhere else,” he said.

To ensure the hundreds receiving care each day are safe, Silvia and other troops scan each person’s eyes and fingers with high-tech biometric scanners that provide access to individual information.

Biometrics and ghost workers in Nigeria

Abia’s scourge of ghost workers (The Nation)

When Abia state governor Chief Theodore Orji introduced reforms in the civil service of the state which include promotion of workers due for promotion, approval of N21,000 as minimum wage, retiring those due, transferring of service of non-indigenes to their states of origin after due consultation with their home state, and insistence on biometric data capturing of all workers and pensioners in the state civil service, some cynics who believed in business as usual criticised the reforms severely.

Read the whole thing.

‘Another Brick in the Wall’ was written in 1979

Washington Times Editorial: Securing America’s schools

Though the benefits of creating maximum-security schools is questionable, the negative impact on young minds is undeniable. Surveillance cameras would watch a child’s every move from kindergarten through high school. GPS devices would track them, and biometric scanners and identification cards would ensure compliance with all attendance regulations. This normalizes a police state. Instead of learning self-reliance, kids would grow up with a state-supplied — and illusory — security blanket.

Schools knowing where students are and whether or not they are attending class discourages self-reliance? Does using technology for the purpose change its nature?

Just remember ‘Another Brick in the Wall’ was released in 1979. High technology isn’t a necessary (or sufficient) condition for police state normalization.

On another note, and in the wake of recent events, a school system in Illinois is dusting off a previously shelved plan to use biometrics to restrict access to schools to those who have been vetted beforehand:

Dist. 201 plans to launch more safety measures (Morris Daily Herald – Illinois)

The district will also re-investigate biometric thumbprint scanning systems for the vestibule, a program they began looking at a year ago.

If the system were used, all parents/guardians would provide a digital thumbprint during school registration. Along with a photo ID, the fingerprint would be in the district’s computer system. Once inside the vestibule, the parent would scan their thumb and staff would pull up the person’s photo at the same time.

Biometrics to protect customer data

Stolen credentials, basic security lapses at core of 2012 breaches (Search Security)

A common thread could be weaved through the high profile data breaches that took place in 2012. Attackers are targeting basic security lapses and configuration errors or bypassing security systems altogether by using stolen account credentials to appear as a legitimate user on the network.

Any organization that allows access to databases full of customer usernames and passwords without biometric authentication is asking for trouble. First, the number of people who have this sort of access should be limited to as few individuals as possible and those should be the types of people who understand both why the security measures are necessary and how to use them.

Better ID technology means more effective humanitarian assistance

South Sudan: Modern Technology Helps Meet the Needs of Refugees (All Africa)

Technology is changing all spheres of life, including humanitarian interventions. In South Sudan, UNHCR is using satellite imagery, interactive mapping, digital fingerprinting and text messaging to strengthen refugee protection, help the most vulnerable and reach out to refugees in urban areas.

UNHCR is conducting the first biometric registration exercise in South Sudan using digital fingerprinting technology. The nearly 200,000 refugees had been registered in standard databases, but biometrics will help to identify refugees more quickly so they can receive better assistance.

Much more at the link. Better ID tech makes effective delivery of nutrition and health services easier.

UIDAI tightens enrollment requirements

It looks like about 94% of the UID numbers issued without biometrics have had to be cancelled.

UIDAI cancels 3.84 lakh bogus Aadhaar enrolments (CIOL)

The UIDAI has cancelled 3.84 lakh Aadhaar numbers which were reportedly prepared under the biometric clause.

According to biometric clause, the authorised enrolment agencies have been granted the permission to enrol people without taking biometrics like fingerprints and iris scan. But in any case, the enrolment agency must procure photograph and demographic information of the people. As of now, 4.10 lakh Aadhaar numbers have been generated under the biometric exception clause, out of which the UIDAI has directed to scrap 3.84 lakh Aadhaar numbers.

This isn’t too surprising. Last July, the story of UID numbers being issued to plants got quite a bit of attention and it was clear then that changes were coming to the process by which the UIDAI dealt with the private entities that underpin the enrollment function.

With today’s news and the accompanying hard numbers, it seems that there was an audit designed to put some specificity to what everyone knew was a flaw in a system where unscrupulous enrollment agencies could create large volumes of fake enrollments for which they would then be paid.

Now the numbers are in and the scale of the ID fraud possible in the absence of a biometric identifier is known.

The remedies are pretty clear.

Issuing a UID number without biometrics should only be done under very particular circumstances and with a very high degree of oversight.

Firms participating in the enrollment process should face incentives and sanctions based upon their performance. That could mean bonuses for firms with very good performance, penalties for bad data practices, and worse for those actively committing fraud.

The good news is that database technology makes the technical part of figuring out who’s doing what fairly straightforward. The hard part, as always, will be agreeing on the nature of the carrots and sticks to be deployed.

On biometric ID

Director-General, National Identity Management Commission, Mr. Chris Onyemenam, in an interview with Punch:

Many Nigerians are of the view that the issuance of national identification numbers and cards will add no value to their lives, how will you react to this?

That is not true! I don’t think many Nigerians think that way, you will probably be thinking that the cynicism of the past will continue and that’s why we have embarked on an awareness campaign to enlighten people, to make them understand that what we had done in the past might have achieved limited success, but what we are doing today is different from what we did in the past.

In the past, the focus was on the issuance of an identification card; but today, we have made it slightly different to say that what we need first and foremost is to be able to create and manage identities. And one way to manage the identity is to issue the card. The card is not an end in itself but a means to an end; that end is to be able to affirm and confirm your identity that used to be what we ignored in the past.

In the past, we issued identification cards in the mistaken belief that once we issued a card, we have been able to secure and genuinely confirm the identity of an individual, which is not true because if you go to any business centre you can create a photo ID. So, what we do now is to say, what are those things that will be put in place that will be accepted by everybody as a means by which you can affirm your identity?

And one of the key features of that system is the use of the biometrics; the use of biometrics in that sense means that you can always confirm using the biometrics that the identity that has been revealed or that we have sort to confirm is exactly the identity that we want to deal with.

India: UID exposing ghost welfare beneficiaries and what the numbers mean

Aadhar helps weed out fake ration cards in Andhra  (The Indian Express)

Linking the public distribution system to Aadhar has been unearthing a huge number of fake or duplicate ration cards and civil supplies officials are now counting their savings per ration shop. In some Andhra Pradesh districts where enrolment is high, officials have counted savings up to Rs 10-12 crore every month.

“In Hyderabad district we are seeing savings of Rs 40,000 per fair-price shop per month,” says commissioner of civil supplies Harpreet Singh. “In East Godavari, it is Rs 30,000. Since the online centralised data cannot be manipulated at shop level, only the intended beneficiaries are able to take rations. Both the Centre and the state, which give heavy subsidies, are saving.”

I haven’t done this in a while.

Of course, the numbers up there are big and it seems pretty bad but what does it mean?

First the money:
Rs 11 crore = 110,000,000 rupees = USD 2 million  (2,005,424.95 as of today)

Then what the money means in context:
India GDP – per capita (PPP): $3,700 (2011 est.)

Two million dollars represents the annual earnings of 542 average Indians being stolen from the welfare system in just this one type of scheme (fake cards at ration shops) every month in this one district alone.

To compare apples to apples (years to years), that’s the annual productive capacity of 6,504 Indians disappearing into the pockets of fraudsters in a single district every year.

There are 640 districts in India.

The point of biometric voter verification

Isn’t that the point?

“Some voters could not exercise their franchise because the verification device rejected them even though they were in possession of their voter’s ID card and their names were in the register.” (Peace FM)

How about…?

Some prospective voters could not exercise the franchise because the verification device rejected them even though they were in possession of a voter’s ID card and their names were in the register. 

…which is precisely the point of biometric voter verification. Entities that have adopted biometric verification have implicitly stated that the card and the name are not sufficient to prove identity. Cards are forged. The names of the dead remain on the registry. Ghost voters (who don’t have fingerprints) are invented. Those things really happen.

On the other hand it is possible, even likely, that some number of people legitimately entitled to vote, and duly registered were prevented from casting a ballot by misapplication of the hardware, a database error or a bad ID transaction due to a damaged finger or dirty sensor, but the article doesn’t produce any examples.

Nevertheless, the electoral commission would be well served to seek out individuals who claim to fit the description quoted above in order to audit the process. Did they register? Is their template in the database? Did it make it on to the proper verification terminal for the appropriate polling place? Etc.

So far, the article’s five comments are unanimous. Verification should stay

South Florida: Baptist Health hospitals adopt biometrics for patient ID

New hand scanners being used in local hospital to identify patients (First Coast News)

You used to have to give your name, a form of ID, often a social security number when you checked into hospitals, but now all you may need is your palm.

Baptist Health is using new technology now that identifies each patient by the vein pattern in their hand. The technology is called the Palm Vein Biometric Identification System.

The computer stores the patient’s vein pattern as a binary number connected to your file, so anywhere you go within the Baptist Health system, you can be identified and your records pulled up by simply scanning your hand.

The Director of Information Services, Jim Bilsky, says the motives behind this new technology is to stop identity theft and ID Card sharing. Also to help identify patients that are brought in unconscious during emergency situations.

This one happens t be about patient ID, but it’s hard to think of an identity management challenge hospitals don’t have.

New Zealand Post office to offer ID assurance services

New Zealand Post online ID system backed by lawmakers (Post & Parcel)

New Zealand has adopted legislation granting the powers for a new national online identity verification service run by the government jointly with New Zealand Post.

The Electronic Identity Verification Act was passed by the nation’s Parliament last week, allowing private sector organisations to access the RealMe ID verification service.

The service launches in 2013 to verify people that use certain services over the Internet are who they claim to be.

NZ Post is set to get even more involved in ID services (see last year’s New Zealand ID Management: New Possibilities).

Around the world, enterprising postal services — who have seen their traditional business model of moving paper around steadily eroded — have been changing adding more explicit identity management services. I say “more explicit” because I believe it can be argued that the primary function of the postal service has always been identity management, the paper part was just ancillary to the ID part.

This post, The Post Office, Identity Assurance & Biometrics, expands on the theme.

Click Postal Service (or use the label in the footer) for more on post offices and ID services.