Biometric authentication: How can you measure the strength?

Presented at BSides Austin 2017, May 5, 2017, 4 p.m. (60 minutes).

We'll explore the current state of biometric authentication in light of the following questions. Why is facial recognition typically less accurate than iris? What is the NIST framework for measuring the strength of biometric authentication? What is the attack model? What is multi-modal biometric authentication? Why is its adoption growing? Is it better to store biometric information on your personal mobile or device, or a centralized server? What does the FIDO Alliance recommend?

Presenters:

  • Clare Nelson - CEO, Founder - ClearMark Consulting
    Clare lives at the nexus of security, privacy, and identity. Her middle name is MFA, and she loves all things identity. She forges identity solution roadmaps and tracks emerging technologies, especially in light of GDPR and PSD2. She recently evaluated 200+ MFA vendors, resulting in a successful acquisition. She is currently working on a biometrics project. Clare's early technical background includes software development of encrypted TCP/IP variants for NSA. She has held leadership positions in product management, marketing, and technology for companies including EMC2, Dell, Novell, TeaLeaf Technology (IBM), and mobile security startup Mi3. Clare is a co-founder of the mentoring organization, C1ph3r_Qu33ns. Clare's publications include Multi-Factor Authentication: What to Look For, and Security Metrics: An Overview, in the ISSA Journal. A frequent speaker, she has given talks at (ISC)2 Security Congress, Cloud Identity Summit, AppSec USA, HackFormers, BSides, OWASP Austin, FTC Panel, LASCON, ISSA, InfraGard, and Fortune 500 financial services organizations. She has a B.S. in Mathematics from Tufts University, and is a fitness enthusiast.

Links:

Similar Presentations: