This post is also available in: heעברית (Hebrew)

15842488_sThe use of biological markers like fingerprints, faces and irises to identify people is rapidly moving from science fiction to reality. Apple’s latest iPhone, which went on sale this week, can be unlocked with a fingerprint. Users of Android smartphones can unlock their devices with a glance. And the Department of Homeland Security is developing facial recognition technology that would allow it to pinpoint criminals and suspects in large crowds of people with closed-circuit cameras.

An Editorial in the New York Times points to the fact that expensive Biometrics, until recently used only by the military or high-tech companies, has become so commonplace now that even some schools and hospitals are using it. Its adoption could make sensitive information more secure than conventional identification cards or passwords, which can be easily forgotten, lost or hacked. This technology also has the potential to undermine privacy, which has been greatly compromised according to the recent revelations about government surveillance of phone and Internet communications.

In fact, biometrics are not as safe as is often thought. A 2010 report from the National Research Council concluded that such systems are “inherently fallible” because they identify people within certain degrees of certainty and because biological markers are relatively easy to copy. For example, people leave their fingerprints on everything they touch, which makes those fingerprints available to any determined spy or law enforcement agent. Experts have shown that fingerprints and other markers can be copied, giving hackers and thieves access to private information. And once compromised, fingerprints cannot be reset, like passwords, nor replaced, like passports.

iHLSIsrael Homeland Security

If proper safeguards are not put in place, the use of some biometrics, like facial-recognition technology, can also be used to conduct intrusive surveillance of individuals or groups of people by governments and private companies. Using facial-recognition software to match databases of photos with images from security cameras in public spaces and private buildings can help law enforcement agencies spot and track dangerous criminals. But the same technology can just as easily be abused to target political activists or protesters. Retailers could use such systems to snoop on their customers’ shopping behavior so that they could later target specific ads and offers to those customers. Facebook already uses software to determine whether photos that users upload to the site contain the images of their friends, though the company does let users opt out of the system.

Even though the use of such technology has expanded rapidly, there has been little public debate about its use. Most federal and state laws do not directly address the collection and use of biological markers by businesses and the government. Some lawmakers, like Senator Al Franken, Democrat from Minnesota, have asked government agencies and companies like Apple and Facebook to explain how they use biometrics. Nevertheless Congress must do more by enacting legislation that governs how this technology is used, to make sure it does not compromise privacy rights.