#identity-verification

Tin lập trình mới nhất về identity-verification, tóm tắt tiếng Việt bằng AI.

Security Boulevard010 phút3 giờ trước

Identity Verification Has an Identity Crisis

Identity verification (IdV) has become conflated with document authentication, creating dangerous confusion about what level of assurance is actually being achieved. Document authentication, selfie matching, and liveness detection each answer different questions and are not equivalent to full identity proofing or contextual identity verification. Identity proofing establishes that an identity exists and belongs to a person; identity verification determines whether that identity should be trusted for a specific interaction. Point-in-time checks are insufficient because identity trust changes over time. Organizations should evaluate IdV solutions by the assurance level they provide relative to transaction risk, not by feature checklists. The post also covers NIST IALs, KYC vs. IdV distinctions, synthetic identity fraud, and the limitations of biometric matching against deepfakes.

#authentication #identity-verification Nguồn

Schneier on Security01 phút4 giờ trước

Schneier on Security

A database of nearly one million passports was leaked online after being stored in an ID verification system used by cannabis dispensaries. The core issue highlighted is that a high-value credential (a passport) was entrusted to a low-value, ancillary authentication system, and when that weaker system was breached, the high-value credentials were exposed. This illustrates the risk of using sensitive identity documents in third-party systems with weaker security postures.

#data-science #data-breach #identity-verification Nguồn