Identity by type and swipe

Published: Updated:
Identity by type and swipe. Photo via WINK News.
Identity by type and swipe. Photo via WINK News.

You’re probably used to using your fingerprint to get into your phone. Or maybe you even smile for facial recognition in your everyday life. But, fingerprints and faces are just the beginning when it comes to biometrics. The next wave in security: identifying online users through digital behavior.

Whether you type, swipe, tap or click the way you move– or behave— on digital devices is unique to you and now it can be tracked.

“Behavioral biometrics is a technology that uses… artificial intelligence to develop a profile of a user based on the behaviors that they exhibit when they log into a website or an application,” says Jordan Blake, VP of Product Management at biometrics company BehavioSec.

Blake says their technology tracks how you type, like time between keystrokes or how you hold a device, but not what you type, like username or password. Clients, like banks or e-tailers, use it to monitor and store customers’ digital behavioral characteristics. He explains, “We build a profile. It usually takes a few sessions for us to recognize that you are who you are. And then after that, we’re able to tell whether a fraudster or an intruder or someone else is trying to log in to your account even if they have the correct credentials.”

There are many biometrics options, including Biocatch, Typing DNA and Biometric Signature ID. They may work a speck differently, but they tout that proper identification is the mission.

Blake says if done right, users won’t even know the technology is there.“It’s literally doing it all in the background.”

Pam Dixon, with the World Privacy Forum, agrees that this is the next wave in fraud protection, but she has a concern. “There’s really very little biometric regulation in the United States,” she says.

Dixon wants clear rules on notifying people if biometrics are being used and what’s being done with the information. She says, “If it’s ever sold or used apart from any security purpose immediately related to, you know, the transaction at that website it’s inappropriate.”

She’s also concerned that health information could be detected from, say, finger pulses or tremors and used. Blake says that isn’t likely. “The answer to that is, in theory, potentially in the future this technology could be used. But in its current implementation that information would be very, very difficult to glean.”

Behavioral biometrics is still new in the U.S.. Behaviosec is currently working with some government agencies and is testing the technology with some banks. Another company Biocatch touts success with a top U.S. Bank.

So what happens if possible fraud is detected? Blake says it is up to the company using the technology. Some banks, for example, may log you out of the transaction until you can offer further confirmation or call to confirm.

And, it’s important to note that everyone we talked to said that a robot’s ( bot’s) behavior looks very different from human behavior and can be easily detected.

Copyright ©2023 Fort Myers Broadcasting. All rights reserved.

This material may not be published, broadcast, rewritten, or redistributed without prior written consent.