ITEC FPX 5030 Assessment 6 Advocating the Implementation of Biometrics

Executive Summary

This paper examines the obstacles encountered when integrating biometric technology into existing infrastructures and operational processes. It will focus on aspects such as authentication, control, and access. The paper aims to outline the requirements for effectively implementing this new technology while identifying the limitations inherent in the current infrastructure and processes. Furthermore, it will highlight the discrepancies between the demands of the new technology and the existing systems, defining the necessary modifications for successful integration.

Behavioral Biometrics

In recent years, the adoption of biometrics has surged across various companies and industries tasked with securely protecting and storing confidential information. Biometrics relies on inherent human characteristics, which can be classified into two categories: physical and behavioral identifiers. Physical identifiers, such as fingerprints, photographs, and DNA, are unchangeable and not tied to specific devices. Conversely, behavioral identifiers have gained traction and are often used to distinguish humans from machines. Examples of behavioral methods include typing patterns, physical movements, navigation habits, and interactions with technology. While current behavioral identifiers can differentiate between human and robotic actions, advancements in technology may soon enable robots to replicate human behavior more convincingly (Korolov, 2019).

Authentication, Control, & Access

Behavioral biometrics are predominantly utilized in financial institutions, including banks and state revenue departments, where they play a crucial role in consistently authenticating logged-in users. The effectiveness of behavioral biometric authentication lies in monitoring physiological and psychological variations during user interactions with systems. Key methods for measuring these interactions include keystroke dynamics, mouse biometrics, device interaction, and graphical user interface (GUI) performance. These metrics can be captured without relying on additional devices like retina scanners or fingerprint readers. By employing these measurement techniques—such as keystroke dynamics, mouse behavior, and GUI performance—financial institutions can enhance security during user sessions. This continuous authentication process mitigates the risk of potential hacking by recognizing unique behavioral patterns. If any deviations from established behavior patterns occur, security measures can be activated to safeguard user credentials, ensuring that only authorized individuals retain access to sensitive information (Behavioral Biometrics Authentication Solutions, n.d.).

Implementation Requirements

To successfully implement a behavioral biometric authentication system, organizations must grasp the necessary requirements. Security systems should operate at optimal performance to ensure the protection of users’ biometric data, which cannot be modified like traditional passwords. Research indicates that over 40% of customers may switch banks following a security breach, and more than half express concerns regarding the security of digital banking practices. The integration of biometric authentication within banking services is anticipated to improve with advancing technologies, offering consumers a seamless experience; however, extreme caution is essential (Behavioral Biometrics in Banking, n.d.). Organizations must ensure that user data remains confidential and free from manipulation, prohibiting any unauthorized access or alteration of verification processes.

Existing Infrastructure & Process Limitations

Focusing on banks and financial institutions, there is limited awareness regarding their existing infrastructure. However, the advantages of continuous authentication through behavioral biometrics are evident, as these systems do not demand substantial additional resources. With the increasing prevalence of digital banking—predicted to see half of all adults utilizing devices for financial transactions by 2021—banks face mounting threats from mobile malware and application fraud, necessitating continuous authentication throughout user sessions. Incorporating behavioral biometrics into current systems facilitates a multi-layered, context-aware approach to authentication and risk assessment without requiring intrusive user interactions (Bakken, 2019).