identification – SSL and internet security news

How Solid Protocol Restores Digital Agency

July 24, 2025 infossl

data breaches, data privacy, identification, privacy, Security technology, Uncategorized

The current state of digital identity is a mess. Your personal information is scattered across hundreds of locations: social media companies, IoT companies, government agencies, websites you have accounts on, and data brokers you’ve never heard of. These entities collect, store, and trade your data, often without your knowledge or consent. It’s both redundant and … Read More “How Solid Protocol Restores Digital Agency” »

Problems with Georgia’s Voter Registration Portal

August 7, 2024 infossl

fraud, Georgia, identification, national security policy, Security technology, Uncategorized, voting

It’s possible to cancel other people’s voter registration: On Friday, four days after Georgia Democrats began warning that bad actors could abuse the state’s new online portal for canceling voter registrations, the Secretary of State’s Office acknowledged to ProPublica that it had identified multiple such attempts… …the portal suffered at least two security glitches that … Read More “Problems with Georgia’s Voter Registration Portal” »

Security Analysis of the EU’s Digital Wallet

June 27, 2024 infossl

credentials, cryptanalysis, cryptography, eu, identification, Security technology, Uncategorized

A group of cryptographers have analyzed the eiDAS 2.0 regulation (electronic identification and trust services) that defines the new EU Digital Identity Wallet. Powered by WPeMatico

Surveillance through Push Notifications

March 6, 2024 infossl

fbi, identification, police, privacy, Security technology, surveillance, Uncategorized

The Washington Post is reporting on the FBI’s increasing use of push notification data—”push tokens”—to identify people. The police can request this data from companies like Apple and Google without a warrant. The investigative technique goes back years. Court orders that were issued in 2019 to Apple and Google demanded that the companies hand over … Read More “Surveillance through Push Notifications” »

AI Bots on X (Twitter)

January 22, 2024 infossl

artificial intelligence, chatbots, identification, Security technology, twitter, Uncategorized

You can find them by searching for OpenAI chatbot warning messages, like: “I’m sorry, I cannot provide a response as it goes against OpenAI’s use case policy.” I hadn’t thought about this before: identifying bots by searching for distinctive bot phrases. Powered by WPeMatico

Facial Recognition Systems in the US

January 3, 2024 infossl

face recognition, identification, privacy, Security technology, surveillance, Uncategorized

A helpful summary of which US retail stores are using facial recognition, thinking about using it, or currently not planning on using it. (This, of course, can all change without notice.) Three years ago, I wrote that campaigns to ban facial recognition are too narrow. The problem here is identification, correlation, and then discrimination. There’s … Read More “Facial Recognition Systems in the US” »

Breaking Laptop Fingerprint Sensors

November 29, 2023 infossl

authentication, biometrics, fingerprints, identification, reports, Security technology, sensors, Uncategorized, vulnerabilities

They’re not that good: Security researchers Jesse D’Aguanno and Timo Teräs write that, with varying degrees of reverse-engineering and using some external hardware, they were able to fool the Goodix fingerprint sensor in a Dell Inspiron 15, the Synaptic sensor in a Lenovo ThinkPad T14, and the ELAN sensor in one of Microsoft’s own Surface … Read More “Breaking Laptop Fingerprint Sensors” »

On Technologies for Automatic Facial Recognition

September 15, 2023 infossl

biometrics, face recognition, identification, Security technology, Uncategorized

Interesting article on technologies that will automatically identify people: With technology like that on Mr. Leyvand’s head, Facebook could prevent users from ever forgetting a colleague’s name, give a reminder at a cocktail party that an acquaintance had kids to ask about or help find someone at a crowded conference. However, six years later, the … Read More “On Technologies for Automatic Facial Recognition” »

The Inability to Simultaneously Verify Sentience, Location, and Identity

August 11, 2023 infossl

academic papers, identification, Security technology, trust, Uncategorized

Really interesting “systematization of knowledge” paper: “SoK: The Ghost Trilemma” Abstract: Trolls, bots, and sybils distort online discourse and compromise the security of networked platforms. User identity is central to the vectors of attack and manipulation employed in these contexts. However it has long seemed that, try as it might, the security community has been … Read More “The Inability to Simultaneously Verify Sentience, Location, and Identity” »

Fooling a Voice Authentication System with an AI-Generated Voice

March 1, 2023 infossl

artificial intelligence, authentication, banking, biometrics, deep fake, fraud, identification, Security technology, spoofing, Uncategorized, voice recognition

A reporter used an AI synthesis of his own voice to fool the voice authentication system for Lloyd’s Bank. Powered by WPeMatico