Roanne Levitt of VoiceTrust eServices Canada: they’re involved in National ID program for an emerging Nation. Also proof of life. This nation has 10 million citizens, half do not possess a national ID. Program in place to register citizens and provice IDs. Nation was struck by a natural disaster and everyone lost their IDs. New program is designed to enable: participation in government, job, school, vote, acquire a title to real property. Involves many government ministries.
When a citizen registers, their photo is taken, fingerprint, signature recorded. Their voice is not registered at this point, but that will change. Problem with current registry: need to equip offices with fingerprint readers (and cost to acquire, distribute, infrastructure, IT personnel to maintain). Rejection rate for manual workers (cuts, worn prints, dry hands) is high, and citizens must come into office to verify identity. Corporations (e.g., banks) have a hard time with verification. Read more…
Anastasia with Agnitio: The solution to mobile fraud and identity theft is as easy as speaking, with KIVOX mobile. Demo of current app on mobile screen of Kivox: two buttons: teach the phone and practice (enrollment). Teach: select a passphrase (from list) or customer’s own passphrase. If own, check phrase and write it down. Can use any language. Practice: phrase at bottom of big microphone picture. Speak, analysis, and done.
Next demo on security: how to leverage speech demo with FIDO clients. Worked with Nok Nok Labs to log into PayPal account. Press Login button, recognizes Nok Nok client that asks to use authentication client. Choose yes, verify with voice, successful login to PayPal. Speech used again to confirm high value transaction; is flexible and secure.
Next demo with Nok Nok Labs and FIDO: many different types of authenticators. On screen: silent, pin, voice, other methods. These are real and available products. Future: Thales (integrator) has MatchVOX (android) for on-device speaker work. Open it up, prompt for input method (mic, phone, recording). Uses live stream as phone input, compares speaker with on-phone records.
Check them out in demo room for more information.
Ollie Whitehouse of NCC Group and Lauren Horaist from RSA join Derek Top. Starting off with Ollie: Mobile Security and 2FA (two factor authentication). NCC is a large independent consultancy, iSEC Partners in the US.
Mobile security: reality and elephants, future enablers; authentication and mobile of 2FA and voice biometrics. Security threats are numerous: hardware, various OS platforms (iOS, Android, Windows), vendor customizations (undermining platform security), apps (poor design & implementation), user activity & practices (including jail breaking). Challenges (an elephant in the room): mobile vendor fragmentation, vendor spend on security, 18-24 month device life cycles, carrier certification of updates required, user awareness/education and experience with security patches and carrier desire for security patches. Read more…
Mark Lazar of Victrio: Making it work in the real world. Victrio is emerging leader in passive voice recognition; team expertise in voice recognition and call centers. Three years of implementation experience, clients include three of top five financial firms. On track to screen 100 million calls in 2013. They have the largest fraudster database in the world.
History in voice biometrics over time: Schwab and HSN (1990s); Hartford Insurance, Marriott, US Bank (early 2000s); AT&T, Visa, Bank of America, First Horizon (mid-2000s). Late 2000s: American Express, ABN/AMRO, Bell Canada, Bank of America, Santander efforts terminated–detection rates were ok but huge number of false positives, wasn’t commercially viable. Some efforts moved to internal use only, others terminated. Today: customers are increasingly frustrated (65% frustrated, 50% too time consuming, and professional fraudsters aren’t stopped. Big target in call centers with social engineering (training, turnover; 1 in 5,000 is fraudulent). Read more…
