"Data Privacy a Growing Consideration for Biometrics in IAM"

Biometrics are increasingly being used for secure access management. However, according to an RSA session presented by Mike Serra, product counsel with Cisco Systems, and Stephen Wu, shareholder with the Silicon Valley Law Group, as more organizations turn to biometrics as a source of user authentication, the technology raises a slew of issues. The General Data Protection Regulation (GDPR) and other data privacy laws are drawing attention to the importance of user protection. As these data privacy laws mature and more states and countries pass new regulations, biometric protections are moving to the forefront. Wu pointed out that a new EU law addressing Artificial Intelligence (AI), for example, discusses biometrics. The use of real-time biometric identification systems in public places is prohibited by this law. Organizations that depend on biometrics as part of their authentication systems must also be aware of how the data is used and stored as biometrics become more intertwined with data privacy laws. This article continues to discuss the benefits of biometrics for Identity and Access Management (IAM), facial recognition risks, and data protection in biometric authentication. 

Security Boulevard reports "Data Privacy a Growing Consideration for Biometrics in IAM"