The fingerprinting program that began last month for visitors and non-U.S. citizens entering the U.S., certainly underscores the need for a comprehensive authentication system to help strengthen our borders. While this program will begin to enhance the security of our nation, the debate surrounding domestic identity verification programs is still not adequately addressing one of the most visible threats aimed at our National Security-namely the growing problem of Identity Fraud.
As we all know, the hijackers used false identifiers and false identification documents as their tickets to board the ill-fated planes on 9/11. In immediate response, our government took important steps to develop effective identity verification systems. Biometrics, facial recognition and other scanning devices are currently undergoing tests at various airports and other secure places in the U.S. There has also been much talk of implementing some type of National Identification card.
As these efforts continue, however, we also need to be mindful of some of the many challenges that exist in developing a comprehensive solution to effectively combat Identity Fraud.
When you stop and think for a moment, a biometric, which is an authentication system based on one's physical attributes, isn't effective if the identity is stolen and utilized at the point of registration. Additionally, how can we administer an authentic national identity card system or biometric if the applicant has already taken one of the thousands of Social Security numbers reported stolen over the past couple of years, or just as disturbing, created a new identity from the plethora of websites easily accessible online? Furthermore, how do we identify or authenticate someone if we do not have the data?
So, given these obstacles, the critical task at hand is figuring out how we go about answering the question that lies at the fundamental root of the Identity Fraud problem: How do I really know you are who you say you are?
One possible approach is through a knowledge-based system, better known as identity authentication. Unlike a biometric, which is based on one's physical attributes, "authentication" would identify someone by obtaining from them specific information that is general in nature and unique only to that individual when analyzed.
The logic behind this model is predicated on the theory that an imposter may know some of the information pertaining to a real individual, but he or she will likely not know all of an individuals identifying information, especially when the information is modeled.
Domestically, similar knowledge based identity verification systems are already being used in the financial world, for example, to verify someone applying for credit cards.
On the international front, properly authenticating visitors coming into the U.S. presents more of a challenge because we have not yet obtained the necessary public information that exists globally, mostly in written form, on non-U.S. citizens in their respective countries. However, the means to get this information does exist and the technology structure needed to integrate it electronically is already in place.
As we continue to strengthen and secure our homeland, we cannot ever lose sight of the fact that Identity Fraud is more than just a National Security or terrorism issue. It is also a global commerce issue. In fact, under the newly enacted USA Patriot Act, banks and other financial institutions are required to have in place systems to properly authenticate their customers.
No doubt, people already living in or trying to enter the U.S. for the worst imaginable purposes have and will continue to try and change their identities. To that end, it is imperative that we grow trust in the identity authentication process to avoid the adverse consequences of a fallen economy or further incidents of terrorism.