The software when it installs has a local dump file - so if something happens to punches while they're downloaded (disrupted? perhaps?) it will dump the punches to the local machine. Their website is super clunky and in all honesty the software can be too - we learned a few key lessons:ġ) Central databases work great as long as you take away the ability for each time keeper to download punches. We have about 7 clocks deployed for 160 people. Central nexus for spreading disease and pestilence (This may have had something to do with the fact that no one ever cleaned the things EEEEEEWWWWWWW) In the end I didnt need to provide my fingerprint, I got to keep my job, and got to laugh as people lined up at that stupid thing every day to scan their finger 20 times because it wouldnt read their fingerprint. (that was why they were implamenting them BTW, someone up the chain thought they "were so cool", not for legitimate security concerns) I know most people wouldnt go to those lengths but working in IT SEC I knew the concerns I had and potential remifications and didnt feel I needed to open myself up to them simply because the company wanted to use "The New Shiny". It was a giant headache, a bunch of stress, and a fair bit of time and money over something that wasnt truely important in the long run. Needless to say it was a pain in the ass. The lawyers talked, and argued, and went on and on. You could use another finger, but the finger thats been "compromised" would be a BAD choice for securing something sensitive in the future, forever.Īnyway, at the time, in my area, my lawyer determined that because the company I worked for couldnt confirm that the biometric data would be destroyed upon my departure, and they couldnt guarantee the security of the information, and there were other methods available, the company couldnt compel me to provide my finger print for something as arbitrary as the time clock. If someone dumped the biometric data from the database you would. If someone dumped the passwords database of a website you're a member of, youd change your password. ![]() ![]() Due to the factors listed the resulting hashed or encrypted data will not be 100% repeatable and would result in more fails then successes.īiometric data, by its very nature, and way its secure, cant be changed. ![]() Because things like fingerprint biometrics check against multiple points of the scanned finger print, and only x% of those points need to match, and it doesnt have to be the same points every time, and dirt/dust/scratches/cuts/scabs/etc on fingers can distort or conceal parts of the fingerprint the resulting data isnt 100% repeatable. Biometric data can not be used is an encrypted state due to error tolerance. I contacted a lawyer.Īnyone that is familiar with biometrics for the use of security will tell you that using biometric information to secure non-critical, arbitrary data is a REALLY bad idea. Work insisted and said if I didnt my employment would be considered terminated. The time clock could take swipe cards and pin codes as well as finger prints. This means they couldnt guarantee that MY biometric data was a) secure, b) destroyed should I leave their employment or c) not shared with any other third party company associated with the payroll company. My employer could NOT confirm a data security or destruction policy. ![]() The problem is the information was to be used by and stored by a third party. DONT! A former employer switched to the biometric time clocks and required all employees to submit their finger print.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |