biometric security for mobile banking 2008

8/14/2019 Biometric Security For Mobile Banking 2008

1/20

WORLD

RESOURCES

INSTITUTE

Markets + Enterprise

White Paper

March

2008

BiometricSecurity for

Mobile BankingBy Loretta Michaels

Forward

By Dr. Allen L. Hammond

Washingon, DC 20002 USA el +1 202 729 7600 ax +1 202 729 7610 htp://www.wri.o


2/20

World Resources Insiue graeully acknowledges generous nancial assisance rom Vodaone, PLC or heresearch presened below.


3/20


White Paper

Dr. Allen L. Hammond1

Foreword

Innovations in Financial Services for the Poor

Over he pas 30 years, he rise o micronance hashelped many Base o he Pyramid (BoP) householdso improve heir livelihoods and even, in some cases,o climb ou o povery. Micronance is increas-

ingly becoming a commercial aciviy wih signicaninvolvemen by banks. And wih an indusry-wideclien base o approximaely 80 million borrowers, isclear ha Muhammed Yunus deserved his Nobel PeacePrize. Bu he need or access o nancial services byBoP households is boh much larger han 80 millioncusomers and more varied han micro-savings andmicro-lending.

I believe ha he nex ruly ransormaive innovaionin nancial services or he poor is now visible. a

innovaion is mobile phone bankingalready ullycommercial in he Philippines, in Souh Arica, and inKenya, and gahering momenum virually everywherein he developing world. While banks may play an im-poran role in his aciviy, he real caalyss are likelyo be echnology owners and expers. Specically,wo paries will be key o he coming mobile bankingrevoluion: rs, he mobile elecom companies haown he neworks capable o reaching several billion

unbanked people and he servers capable o process-ing many billions o iny ransacions; and second, hesarup mobile ransacion companies ha are guringou innovaive ways o use hose neworks.

e ollowing repor, Biomeric Securiy or MobileBanking, addresses a key barrier o an impendingechnology-driven revoluion in nancial services orhe poor. is orward provides some conex or herepor and is ndings by describing echnology rendsand heir poenial implicaions or access o nancialservices.

Enabling echnology rends

ere are several echnology and business rends

worh menioning here. One is he build ou o mo-bile elecom neworks, arguably he mos remarkable(and larges) recen echnological phenomenon on heplane. ere are already more han 1.5 billion mobilephones in use in developing counries, and ha num-

ber is likely o reach 2.5 billion wihin he nex 5 years.More han 80 percen o new cusomers worldwide

will come rom developing counries, and since nearlyeveryone in developing counries who is no par o he


4/20

Forward: Innovations in Financial Services

for the Poor

Dr. Allen L. Hammond


White Paper

BoP already has a mobile phone, ha growh will comealmos enirely rom adding BoP cusomers.

Growh is sill explosivein India, mobile compa-

nies are adding more han 8 million new cusomers amonh and plan o build more han 30,000 addiionalcell owers in he coming year. Mobile companies in

Arica plan o inves $50 billion o expand heir ne-works in he nex ve years2double he rae o inves-men o he pas ve years. Impending privaizaionso governmen-owned phone companies in counries

wih large, unserved rural populaions, such as Vie-nam, are atracing many ineresed bidders.

A recen empirical sudy o low-income consumersspending paterns showed ha he share o BoP house-hold expendiures on IC services (largely mobileelephony) rises 8-old beween he lowes and hehighes income segmens o he BoP. is is a ar moredramaic increase han any oher secor and a clearpreerence ha underscores he huge laen demandremaining o be apped3. is is especially he case in

Asia and Arica, where BoP populaions and markesare dominanly rural and no ye well served by mobileneworks.

A second rend is he increasing echnological sophis-icaion o mobile handses, even as prices decline.

Virually all basic handses now include voice anddaa capabiliy and signican memory; many aremulimode (capable o working over more han onerequency band); cameras are increasingly a commoneaure, even or low-end handses. Some high-endhandses include Wi-Fi capabiliy, and here appearso be no echnological reason why Inerne-enabledmobile handses (e.g., mulimode handses wih a

Wi-Fi radio) canno easily be made available o low-end cusomers as well (one esimae is ha he cos,in quaniy, o adding a Wi-Fi chip o a handse will beless han $5 per phone).

Moreover, coss o enry-level handses coninue odecline: $30 GSM phones are common, and a $20handse is planned or release in India laer in 2008.e processing power o handses is also increasing

rapidly, and is expeced o equal ha o odays PCwihin abou 5 years. us, mobile phones are becom-ing inexpensive, Inerne-enabled, mulimedia-capablecompuing deviceswih a replacemen marke ap-

proaching 1 billion phones per year. So is no hard ohink o hem as porable banking erminals.

O course, convenional mobile phone neworks donye cover many rural pars o developing counries,and may never do so. e coss o insalling a mobilenework (usually more han $100,000 per cell ower,including diesel generaors) may simply be prohibiive,especially where sparse populaions and low incomesmean ha a posiive reurn on invesmen will be a

long ime in coming.

Such high coss lead us o a hird echnology rend,which may prove imporan, especially or BoP nan-cial serviceshe growing capabiliy and very lowcoss o advanced xed wireless neworksespecially

Wi-Fi or WiMax neworks4, bu including advancedVSA neworks. ese echnologies are based on opensandards, atrac many manuacurers, and hence havedeclined in cos very rapidly. ey also are opimizedor daahey are broadband neworks capable o

carrying a much higher volume o Inerne or daarac han are he proprieary cellular neworks com-monly deployed by mobile elecoms. a makes hemideal or a wide range o services, including Voice overInerne Proocol (VOIP), commonly called Inerneelephonyand i may urn ou ha hese advancedneworks are especially well suied as a way o exendmobile elephony ino more remoe, rural areas.

rends in Action: Te Case of Vietnam

World Resources Insiue, in parnership wih USAIDand AUSAID, a provincial governmen, and a mobileelecom companyas well as Inel and oher equip-men vendorshas recenly deployed jus such a

Wi-Fi/VoIP nework in a poor, rural par o Vienam5.e pilo uses advanced mesh Wi-Fi echnology o linkogeher a group o rural villages, and advanced Wi-Fi

backhaul echnology o link hose villages o exisingopical ber. I provides voice service using VoIP on

Wi-Fi-enabled phones and Inerne access o elecen-


5/20


for the Poor



White Paper

ers or individual compuers. e srucure o he ne-work makes i possible o provide local callingwihina group o villagesa no cos (in eec, hese villagesare all wihin a large Wi-Fi hospo), while charging

normal prepaid olls or calls o more disan locaions.

Since abou hal o he phone calls in mos local ne-works say local, ree local calling is a powerul incen-ive o own a phone. Bu he mos ineresing charac-erisic o he nework is is low cos: we esimae hahe capial invesmen required o build his neworko cover every rural village in a million-populaion,mounainous province is abou $3 per person ($15 perhousehold)beween one-h and one-enh he cos

o a convenional cellular nework in he same errain.An addiional characerisic o he Wi-Fi neworks isheir low power requiremens, such ha hey can bepowered wih solar cells insead o diesel generaors,

when no reliable access o he elecrical grid is avail-ablemaking hese neworks more environmenally

benign as well. us we believe ha mobile elecomcompanies will be able o proably provide serviceeven in remoe rural areas. Wih Wi-Fi-enabled mobilehandses, he phones will work on eiher he village

Wi-Fi nework or he urban cellular nework. In ac,

mos users won know or care which nework hephone is using.

I may seem srange o sugges building a modern,broadband nework wih cuting edge echnology inhe worlds poores areas. Ye he jusicaion, I believe,is ha he echnology (or raher he services i enables)is simply more valuable or rural BoP communiieshan in more developed, urban locaions ha alreadyhave a variey o opions or conneciviy. When youhave no phone service and no Inerne access, your rsconnecion makes a huge dierenceand i may only

be aordable wih he very laes echnology6. e de-mand or aordable phone service and or Inerne ac-cess in BoP markes is, as poined ou above, very largeand largely unme. As i urns ou, more han hal adozen o he worlds leading mobile phone companiesacive in developing counries have expressed ineresin his approach and in visiing he Vienam pilo osee or hemselves boh how i works and he exen o

cusomer accepance.

Mobile Banking for the BoP

Wha are he implicaions o hese broader echnology

rends or mobile banking, and especially or exendingbanking services o low-income, rural areas? Le mesar wih an example rom my recen work in VienamI you are ou on he srees around midnigh in Hanoi,

Vienams capial, you canno miss he housands omoorbikes sreaming ino he ciy, so loaded wihproduce ha he driver is nearly invisible. ese arm-ers are aking heir produce o wholesale markes haoperae a nigh, so ha he producs reach sores andresaurans in ime or he nex morning. e arm-

ers, however, don sayhey urn over heir crop oowers or vegeables o he owner o a marke sall, andhen sar he (oen long) journey back o heir rural

village. How do hey ge paid or heir crop? Usually,no unil he nex ime hey come back ino he ciy

which migh be a monh or more laer, when heyreurn wih heir nex load o produce. Suppose heycould ge paid he nex morning, as soon as heir cropis sold by he marke sall, on heir mobile phone?

a mobile phone banking will bene rural BoP

amilies seems clear. e coninuing rapid growh omobile elecom neworks and cusomers provides anenormous poenial marke or banking serviceshe2.5 billion people in developing counries expeced o

be mobile phone cusomers wihin 5 years. e grow-ing processing power and sophisicaion o mobilehandse echnology will make possible a wider rangeo services such as advanced ransacion securiy and

voice recogniion/voice synhesis ha could beneBoP cusomers, (or example by coaching illieraecusomers hrough a banking ransacion), while de-creasing coss place mobile handses wihin reach o a

wider marke. Exending mobile neworks wih Wi-Fior oher xed wireless echnologies and wih Inerneelephony can provide coverage in more remoe orsparsely-populaed areas, as well as lower coss or localcalling. ereore, condiions are avorable or exend-ing nancial services o he vas number o people indeveloping counries ha are now unbanked.


6/20


for the Poor



White Paper

wo basic kinds o mobile banking models have beendeployed: bank-cenric models ha work under he

banking license o a single bank and will work on oneor requenly muliple mobile elecom neworks; and

elecom-cenric models ha work on a single elecomnework bu are compaible wih muliple banks or

banking neworks.

Wizzi (a sar-up company) in Souh Arica usesa bank-cenric model ha can work wih muliplemobile neworks; he Smar money nework in hePhilippines is also bank-cenric, bu works only onhe Smar elecom mobile nework; and m-Pesa inKenya is bank-cenric, bu works only on he Vodaone

(Saaricom) mobile nework. G-cash, deployed on heGlobe elecom mobile nework, is a elecom-cenricmodel ha works wih muliple banks. ese modelshave been discussed elsewhere and I will no elaboraeon hem here. Bu i is perhaps useul o noe ha

Vodaone expeced some 200,000 cusomers a heend o he rs year o operaion o is m-Pesa sysemin Kenya, bu ound isel dealing wih long lines oeager cusomers ha resuled in 200,000 cusomers in2 monhs and more han 1 million cusomers in lesshan a year. ere is no shorage o demand or mobile

banking services.

ese models may well be rapidly replicaed. Globeis ranchising G-cash o oher mobile companies;

Wizzi plans o do he same; Vodaone is planningo replicae m-Pesa on oher Vodaone neworks indeveloping counries. Oher models will appear. AllMexican banks, or example, have signed ono a com-mon plaorm or m-ransacions and will shorly begindeploying mobile banking services. ere is move-men oward mobile banking in Nigeria, Pakisan, anda number o oher counries. We are probably eneringan era o rapid experimenaion and compeiion, rom

which he winning models will emerge.

I believe ha i is plausible ha he nex 5 years will see1 billion unbanked people gain access o nancial ser-

vices via mobile phone banking. Mobile elecom com-panies in developing counries already undersand haheir growh is dependen on serving BOP cusomers,

and hey are eagerly looking or value-added serviceso oer hose cusomers. From ha perspecive, mo-

bile banking looks like a killer applicaionone hawill drive phone usage and increased individual phone

ownership (you migh share your phone, bu you areless likely o share your walle).

Mobile ransactions

Mobile banking provides a way o oer a wide rangeo nancial services. In addiion o cash managemen,loan and bill paymens, direc deposis o salaries or oreceips rom reail sales or oher commercial ransac-ions, mobile neworks can also oer remitances andmoney ransers and, eiher direcly or via a linked

debi card, aciliae cash-less consumer purchases. InKenya, Vodaone ound ha some m-Pesa cusomerswere using he sysem o provide a sae way o carryunds rom one locaion o anoherhey woulddeposi cash o he sysem, and hen draw i ou againupon reaching heir desinaion. ypically, boh bank

branches and a wide range o reail shops providecash-in and cash-ou locaions, where mobile bankingcusomers can exchange cash or digial credis or vice-

versa. In he Philippines, Smar money cusomers arenoied o a remitance rom a relaive overseas via a

ex message and can pick up heir cash a any McDon-alds or a a large number o small convenience soresor kiosks or have i credied direcly o heir debi card.Given he large and rapidly growing volume o bohinernaional remitances (esimaed a $300 billion/

year) and domesic money ransers, and he hazardso carrying cash in many pars o he developing world,his broad range o services will nd ready markes.

In addiion, mobile phones can provide a markeingand sales plaorm or addiional nancial services,such as insurance (lie insurance, healh insurance,and crop or weaher insurance), since hey can read-ily provide inormaion on or answer quesions abouspecic producs, in local languages. (Such inorma-ion is especially easy o provide wih he VoIP sysemsdescribed above as par o village Wi-Fi neworks,since hey can be programmed ino he VoIP swich-ese.g., hey are auomaed soware-based producs,even i delivered as voice). Moreover, he ransacion


7/20


for the Poor



White Paper

records including paymen or remitance records o acusomers mobile phone accoun may prove a kindo subsiue credi raing ha could qualiy a mobile

banking cusomer or a micro-loanapplied or, ap-

proved, paid ou, and evenually repaid over he mobileplaorm. Boh o hese (sill hypoheical) examplesillusrae how mobile ransacions could dramaicallylower ransacion coss, compared o convenional

banking mehods, hus making BoP nancial servicesmore aordable o cusomers and more proable o

banks.

Barriers to Mobile Banking

A key barrier o he rapid expansion o mobile banking

is lack a amiliariy wih he echnologies and businessmodels on he par o boh banks and elecom compa-nies, and he necessiy o esablishing parnerships hainvolve boh kinds o companies. As awareness spreadso he success o mobile banking eors and o hedeails o specic models, however, hese hesiaionsare beginning o disappear. Compeiion and he earo being le behind will increasingly spur innovaion.

A more signican barrier is regulaory approval,especially by cenral banks and someimes by elecom

regulaory auhoriies7. Cenral banks along wih heU.S. reasury Deparmen are concerned ha mobile

banking provides adequae proecion o cusomersand o he banking sysem isel agains raud, moneylaundering, and oher criminal aciviies such asranser o unds by erroris organizaions. A pres-en, securiy or mobile banking ransacions ress onseveral parallel approaches: device-based securiy, suchas he unique SIM card wihin each mobile handseha idenies he cusomer who owns he phone;know-your-cusomer requiremens, especially or hereail cash-in/cash-ou poins ha are usually requiredo have a radiional bank accoun and esablish heirideniy o he bank in order o open he accoun; andpatern recogniion soware ha racks ransacions oensure ha limis on he size and requency o rans-acions does no exceed regulaory limis ha mighsugges money laundering aciviy. e weakes link isdevice-base securiy.

Many cenral banks in developing counries haveye o esablish rules or mobile phone banking, norhave hey se in place some version o he ransacionsecuriy sysem described above. And because mobile

banking is sill in is inancy, serious criminal ateniono deeaing hese sysems, or example by hacking SIMcards so as o esablish ake accouns or ake over le-giimae accouns, has probably no reached he levelslikely o occur evenually. Building capaciy in cenral

banks and spreading awareness o saeguards and howhey need o be implemened is imporan o acceleraehe spread o mobile banking.

Biometric ID and Enhanced ransaction Security

ere may also be a signican role or echnology inimproving mobile ransacion securiy, as he ollow-ing repor makes clear. ere has been a lo o work on

biomeric ideniy sysems in recen years. e reporsurveys ha work and assesses is relevance or mobile

banking. In paricular, i idenies a biomeric echnol-ogy approach ha has already been incorporaed insome mobile handsesa sophisicaed, bu low-cos,ngerprin sensor.

Use o his approach or mobile banking would work

somehing like his: When a cusomer iniiaed amobile banking ransacion, he handse would requesha he user regiser his or her ngerprin on he sen-sor, and he handse would compare he ngerprin ohe one already sored in he phone (and, as a backup,also sored on he bank mobile ransacion server). ehandse would hen send he ransacion reques andhe resul o he ngerprin comparisonin eec, a

biomeric ID auhenicaiono he bank server orapproval and execuion o he ransacion. a wouldreplace he device-based securiy saeguard (he SIMcard) wih somehing much more robus and hardero deea. As he repor makes clear, he echnology oimplemen such a sysem is available now.

In summary, here is a conuence o echnology rendsleading o viable soluions ha can enable very wide-spread access o nancial services. Demonsraion ohese echnologies and he relaed service models willhelp o accelerae commercial adopion, overcome


8/20


for the Poor



White Paper

8

regulaory hesiaion, and empower he unbankedbillions. We hereore invie widespread discussion ohese soluions, in he belie ha as hey become be-er known, accepance o mobile banking as a viable

commercial enerprise by banks, elcos, and regulaoryauhoriies will accelerae.

FOOTNOTES

1)Dr. Allen L. Hammond is Vice President for Innovation and Senior Fellow,Markets & Enterprise Program at the World Resources Institute.

2)Tom Phillips, GSM Association, cited in Balancing Act, Issue # 378 (London, 2007).

3)The Next 4 Billion: Market Size and Business Strategy at the Base of the Pyramid(International Finance Corporation and World Resources Institute, Washington DC,2007).

4)Wi-Fi is the wireless standard already widely deployed employed in hotspotsand in homes and ofces; WiMax is its more sophisticated (and expensive) cousin,designed to handle the multiple reections of wireless signals encountered in urbanenvironments and to provide slightly longer range. Its complexity and cost are atpresent a disadvantage in rural areas of developing countries, compared to Wi-Fi,although costs are expected to continue declining.5)The pilot referred to here is one of several similar pilots in Vietnam; other similarmodels have been deployed in Mongolia and Sri Lanka.

6)The advanced mesh WiFi access points being used in the Vietnam pilot can con-nect at high speeds to a normal laptop within a cell extending at least 1 k ilometerfrom the access point, except where line-of-site is blocked by hills or tall buildings;with a small extension antenna plugged into the laptop, the cell radius is 2 kilome-ters. This range often makes it possible for a single access point to cover a village ora rural neighborhood extending over several square kilometers. With the appropri-ate antenna, the units can connect to the next celle.g., the next village coveragezonelocated between 1 and 10 kilometers away. As many as 10 such cells canbe linked together in a chain, sharing a single ber link or VSAT connection to theInternet. Such advanced technology thus facilitates affordable connectivity for ruralBOP populations--connectivity that may otherwise be prohibitively expensive.

7)CGAP, Regulating Transformational Branchless Banking: Mobile Phones and otherTechnology to Increase Access To Finance, Focus Note 43 (cgap.org/portal/site/cgap/BranchlessBnaking/FN43).


9/20


White Paper

ke, especially or border conrol, physical access andraud prevenion. o dae hese biomeric sysemshave largely been complex and expensive o build andoperae, and have hus been limied in heir imple-menaion. As echnology improves, he abiliy o use

biomerics or individual applicaions, paricularly inmobile banking, is o grea ineres o nancial insiu-ions seeking secure means o signing up rural cusom-ers.

e purpose o his documen is o provide an inro-ducion o biomeric echnologies, and in paricularlook a hose biomeric echnologies ha would beporable o mobile plaorms. e inenion is o un-dersand and evaluae how biomerics migh be usedor mobile banking and paymen sysems, and o iden-iy he bes approach o ake given he curren sae ohe echnology and he naure o mos rural markes inhe developing world.

Te Biometric ProcessBiomerics is ypically dened as a means o uniquelyrecognizing humans based upon one or more inrinsicphysical or behavioral rais. Physical rais reer o

wha you are, as opposed o wha you know, and in-clude such hings as ngerprin, ace, reina, iris, handgeomery, and DNA. Behavioral rais reec wha

you do, and include such acions as signaure, gai, andkeysroke. One biomeric rai ha is considered bohphysical and behavioral is voice.

Regardless o he ype o biomeric ha is used, heprocess involved when conducing biomeric auhen-icaion is generally uniorm (see gure below). euser will rs enroll hemsel in he sysem by provid-ing muliple samples o he relevan biomeric, whichare hen convered o digial, mahemaical emplaesand sored or uure reerence. Once he user is suc-cessully enrolled, heyll gain biomeric access o hesysem by presening a live scan o he biomeric

Loretta Michaels8

Biometric Security for Mobile bankingBiomeric auhenicaion or mobile banking addresses key concerns o he nancial secor in r ying o reach he unbanked

e provision o basic nancial services o unbankedpopulaions, and he growh o mobile phone ne-

works, are boh widely acknowledged as having broadeconomic benes. e logical exension o hesegrowh areas is o converge he wo o allow innovaiveapproaches o rural banking and paymen sysems. Inorder o do so, counries need o pursue boh broadercoverage o cellular neworks, and beter conneciviyin he orm o aordable mobile phones and easier ac-

cess o nancial and oher ypes o services.e economics o exending high-cos cellular ne-

works ino rural areas canno usually be jusiedwihou high voice and daa rac orecass. One wayo address low-cos coverage is via WiFi echnology,

which is he subjec o anoher WRI projec9. Beyondbasic coverage, however, is he need o link users ouseul nancial services via easy-o-use handses andsimple applicaions.

For he banking secor o provide nancial services inrural areas, he issues hey ace include no jus cover-age and conneciviy, bu also basic amiliariy wih

banking sysems, rom raining and educaion in heuse o bank accouns o he provision o adequaesecuriy measures or users unamiliar wih PINs andpasswords and who oen have ew ormal ideni-caion documens. I is he securiy issue ha is oparicular imporance o nancial insiuions, no jusin developing counries bu worldwide, led by growingconcerns abou money laundering and erroris nanc-

ing, raud and consumer proecion.

An area o rapid developmen in securiy sysems ishe use o biomerics. While ngerprins have long

been used in law enorcemen, oher ypes o biome-rics have largely been he su o research and sciencecion. However, rapid advances in biomeric ech-nology, largely driven by naional securiy concerns,have brough several biomeric soluions o he mar-


10/20

Biometric Security for Mobile Banking

Loretta MichaelsMarkets + Enterprise

White Paper

10

rai, which is hen compared o he reerence emplae.e comparison o emplaes akes he orm o eiheridenicaion, which means ha he live scan is com-pared o many emplaes o ascerain who he user is

(aka a 1:N comparison), or auhenicaion, where helive scan is compared o jus one emplae o conrmha he user is indeed who hey say hey are (a 1:1comparison). e deerminaion o wheher or nohe wo emplaes mach will depend on he levels oaccuracy demanded by he sysem adminisraor (hehreshold level). is may seem oddly exible or asecuriy sysem, bu in ac no biomeric sysem iscompleely oolproo in reurning a 100% oal mach.Raher he sysems will indicae ha he emplaes cor-

respond o a cerainy level o, say, 95%. Is up o headminisraor o he securiy sysem o decide how ac-curae hey demand he mach o be, and se he sysemaccordingly via he hreshold level. e disincion

beween idenicaion and auhenicaion is imporanwhen evaluaing biomeric sysems, as he sysems willrequire dieren hreshold levels, no o menion vaslydieren sorage and processing sysems. Aer all, con-rming ha I am who I say I am is very dieren romrying o deermine who I am in he rs place, and heormer should be easier han he later.

Is also imporan o undersand he dieren per-ormance merics o a biomeric sysem, as hese

will impac wha sors o hreshold levels are neededdepending on he purposes o he securiy sysem. Asheir names imply, he False Mach Rae (FMR, also

known as he False Accep Rae, or FAR) measures hepercenage o invalid users who are misakenly allowedino he sysem, while he False Non-Mach Rae(FNMR, or he False Rejec Rae, FRR) measures he

percenage o valid users who are misakenly rejecedby he sysem. While i would seem inuiive o seboh measures as close o zero as possible, in realiyhere are radeos made depending on he purposes ohe biomeric sysem. For example, access o a nuclear

weapons sie would demand absoluely no alse mach-es, bu will correspondingly resul in a higher numbero alse rejecions o valid users, which will hen needo be resolved via oher means o vericaion. Whilemiliary auhoriies will probably deem his ype o

inconvenience o valid users an accepable price o payor nuclear securiy, oher organizaions may demandmore user-riendly sysems or heir employees orcusomers, say or access o an oce building elevaoror all-day passholders a a heme park10. Because helevels deermined or boh FMR and FNMR involvea radeo in he sysem design, mos scieniss whoare looking o compare biomeric vericaion sysems

will in ac look a he level a which he FMR equalshe FNMR, oherwise known as he Equal Error Rae(or EER). Oher measures ha are looked a when

evaluaing biomeric sysems are he imes required orenrollmen and vericaion, and he Failure o Enroll(FE) rae, which would reec how oen users areunable o enroll a all due o any number o reasons,including illness and physical injury.

Figure 1. Comparison o Biomeric emplaes


11/20



White Paper

11

Anoher elemen o consider when designing a bio-meric sysem is wheher he emplae comparison,or maching, will occur locally, or example on hemobile handse or he door keypad, or cenrally using a

separaely locaed daabase. e obvious implicaionso his choice are he need or sorage capaciy andcommunicaions links beween he biomeric scan-ner and he hos sysem. Local maching will requireless processing power, bu will also mean a limi ohe number o reerence emplaes ha can be soredor comparison purposes. As a resul, local machingis generally hough o be beter suied or 1:1 auhen-icaion, requiring a yes or no decision abou a singleemplae mach. Depending on he ype o sysem

being implemened, some expers also believe halocal sorage and vericaion o reerence emplaes arebeter or preserving he privacy o personal daa. eac ha many biomeric sysems use each successivelive scan o enhance and improve he reerence em-plae on he local device is anoher reason o considerlocal maching sysems.

Larger, cenralized maching sysems have heir ownbenes, o course. For one hing, hey will havegreaer sorage and processing power available o he

sysem, and are hereore able o provide boh 1:1 and1:N auhenicaion, which is necessary or some sys-ems such as law enorcemen and surveillance. isgreaer capaciy and capabiliy, however, will necessar-ily involve he sorage o muliple reerence emplaes,

which will impac sysem hardware and sowareneeds. ere is also he need o consanly monior hehos and is communicaion wih scanner unis suchas mobile handses, plus daabase managemen and

backup requiremens.

o dae, no research esing has been done o compareaccuracy levels beween local and cenralized biome-ric maching sysems, alhough heres litle reason o

believe ha here would be major qualiy dierences.Raher, biomeric expers agree ha he perormanceo any sysem will depend more on he qualiy o hescans ha are aken, which in urn depends uponenvironmenal issues such as noise, illuminaion ordir, and on usabiliy issues, which in urn will depend

on sysem design and user raining. Decisions abouwhich ype o sysem o build should be based uponwha ypes o auhenicaion will need o be done,1:1 or 1:N, how he sysem will be used, wha level o

backup and communicaions links can be buil, andhow he enire sysem needs o inegrae ino exisinginormaion managemen sysems.

For purposes o replacing PINs and passwords ormobile banking ransacions, biomeric auhenicaion

via local maching should suce in erms o securiy, ashe banks purpose will be o veriy wheher he user is

who hey say hey are raher han ideniy hem in hers place. In keeping wih he laes nancial securiy

sandards, banks may wan o employ wo-acor iden-icaion, whereby wo crieria are used o veriy hecusomers ideniy, bu his is enirely easible wih hemobile phone. One soluion is o regiser he handse,usually via he users cellphone number, and link i

wih a paricular individual accoun holder, and hensend his inormaion along wih he biomeric conr-maion o he nancial insiuions processing sysems.

Many Kinds of Biometrics

ere are many ypes o biomerics being sudied

oday, some o which are already being commerciallyimplemened in cerain applicaions. Physiologicalrais ha are used or validaing a persons ideniyinclude ngerprins, aces, reina and iris, voice, handsincluding knuckle, palm and vascular paterns, DNAand oher more experimenal rais such as odor,earlobes, sweapores and lips. Behavioral rais includesignaures or specic signs, keysroke paterns, voice,and gai. While ngerprins have been in use by lawenorcemen or more han a cenury, he res o he

biomeric rais lised here are ar more recen and in

some cases sill considered very experimenal. An in-deph review o all he various biomeric echnologiesis beyond he scope o his paper. Raher, wha we areineresed in is which o he biomerics can be consid-ered porable o some ype o mobile device, speci-cally a cellphone. e biomerics ha lend hemselvesmos o he small orm-acor inheren wih a cell-phone are acial recogniion, voice recogniion, irisrecogniion and ngerprins. (Signaures and sign rec-


12/20



White Paper

12

ogniion are proving o be reliable auhenicaion ools,bu hey require larger and more sophisicaed screenshan would be ound on mos cellphones nowadays,so hey are excluded rom his analysis.) e issues o

consider in evaluaing hese measures include accuracy,reliabiliy, accepabiliy, suscepibiliy o raud, ease oenrollmen, usabiliy, environmenal eecs, hardwareand soware size, and cos.

Facial Recognition

A acial recogniion sysem uses a compuer algorihmo ideniy or veriy a person rom a digial image or a

video rame. is is done by comparing seleced acialeaures rom he image and comparing hem agains a

reerence emplae usually sored in a acial daabase.While is much newer han ngerprin echnology,

is gained wide usage in some securiy applicaions,paricularly CCV sysems and some border cross-ing conrols. Facial recogniion emphasizes eauresha are less suscepible o aleraion, like eye sockes,cheekbones, and he sides o he mouh, and as such isresisan o many o he changes associaed wih mosplasic surgery and o changes ha come wih aging.radiional acial recogniion algorihms include Ei-genace, Fisherace, he Hidden Markov model and he

neuronal moivaed dynamic link maching. However,in recen years, a newer acial echnology has emerged,3D acial recogniion, ha isn aeced by illuminaionand is showing accuracy raes up o en imes beter

han older algorihms11.

Facial recogniion is cheaper and easier o use han irisor reinal scans, in par because is less invasive and cangenerally use low speed, low resoluion cameras, bu igives a higher alse negaive rae han oher biomericechnologies because o he need or ighly conrolledenvironmens. A acial recogniion sysem is sensiiveo such crieria as head posiion and angle, movemen,lighing and oher acors, including he use o dieren

cameras or enrollmen and vericaion. In addiion,acial recogniion has cerain weaknesses ha limi isuseulness or raud prevenion. I canno disinguishidenical siblings, i can be deeaed by poining hecamera a a high-resoluion video monior playing a

video o an auhorized user, and can also be deeaedby he use o a severed head. And o course here maybe religious or culural prohibiions agains acial pho-ographs in some regions o he world ha will limi is

volunary upake by arge users.

As a resul o he environmenal issues noed above,acial recogniions reliabiliy is sill lower han oherechnologies, and usually reurns a lis o close mach-es raher han a single deniive mach, as do iris andngerprin sysems. For he ime being, acial recogni-ion is mos oen deployed in 1:N environmens orlarge-scale idenicaion opporuniies, surveillanceand law enorcemen.

A basic acial recogniion sysem can probably use asandard camera phone o 1 Mg or more, while em-plae size can range rom 1000 o 2000 byes. (Seechar on page 8 or comparison o biomeric em-plaes.)

Voice Recognition

Virually all Norh Americans are amiliar wih speechrecogniion, having come across i when rying ophone mos companies nowadays. Voice recogniiondiers rom speech recogniion, in ha voice recogni-


13/20



White Paper

1

ion analyzes how you say somehing, versus whayou say in speech recogniion. Each persons voice isunique, due o dierences in he size and shape o heir

vocal cords, vocal caviy, ongue and nasal passages.

e way an individual speaks is also deermined by hecomplex coordinaion o heir lips, jaw, ongue and sopalae. Voice and speech recogniion can in ac unc-ion simulaneously using he same uterance, allowinghe echnologies o blend seamlessly: speech recogni-ion can be used o ranslae he spoken word o an ac-coun number, while he voice recogniion veries he

vocal characerisics correspond o hose associaed

wih ha users accoun. Considered boh a physi-ological and a behavioral biomeric measure, voice rec-ogniion has good user accepance and requires litleraining o use. However, while popular, low cos andcapable o working over any phone, is less accuraehan oher biomeric sysems and can enail lenghyenrollmens requiring muliple voice samples o ataina usable emplae. Specrographic voice images areused o creae a relaively large emplae, beween 2 and10 kilobyes. ere are many vendors o voice recogni-ion sysems, along wih many proprieary echnolo-gies, and hough no sysems have been commercializedon handheld devices, processing can be done on a cen-ral server ha is easily accessed via a mobile phone, sono new hardware should be needed.

One o he bigges weaknesses o voice recogniion isha i suers rom a high rejec rae in noisy environ-mens, which is a problem or ouside usage. Peror-

mance can also vary according o audio signal qualiyas well as variaions beween enrollmen and veri-caion devices, and wih variaions in environmens(inside versus ouside, variaions in background noise,

ec.). Voice changes ha occur as a resul o ime, in-jury, cold or illness can also be an issue. Finally, voicerecogniion can be deeaed by playing back a highdeliy recording, which would obviously be o greaconcern o nancial insiuions.

While voice recogniion benes rom ease o usage,high user accepance, and no need or new hardware,he impac o environmenal issues upon perormancerenders i o low o medium accuracy, which is no

likely o mee he securiy needs o mos nancialinsiuions.

Iris Recognition

Iris recogniion is a newer mehod o biomericauhenicaion han analyzes he eaures ha exis inhe colored issue surrounding he pupil, such as rings,urrows, reckles and he corona. Iris paterns possessa high degree o randomness, wih each iris having 266unique ideniers as compared o 13-60 or oher bio-merics. ese iris paterns, which dier even beween

idenical wins, are apparenly sable hroughou oneslie (alhough hey will change wihin hours o deah,prevening he use o dead eyes). e iris eauresand heir locaion are used o orm whas called heIrisCode , which is he digial emplae o he iris,

wih an average emplae size o 512 byes.


14/20



White Paper

1

Iris recogniion is proving o be a highly reliableechnology, oering excellen perormance wih a verylow alse mach rae, while being less invasive han

he older reinal scans. However, or he ime being,real-world ecacy rarely maches he perormanceachieved under laboraory condiions. An iris scan in-

volves a small moving arge, locaed behind a curved,we, reecing surace, which is obscured by eyelashesand lenses, and parially occluded by eyelids ha areoen drooping. As a resul, using he sysem eecive-ly requires ighly conrolled environmens and a veryhigh level o raining.

Iris scans require hardware ha is no usually ound onodays average cellphones. ypical cellphone camerasare sill oo low in resoluion or accurae iris scanningapplicaions, and a proper iris scan requires a near-in-rared illuminaion ler insead o he more common

visible ligh ler ound in cellphone cameras. Addi-ionally, o preven a picure rom being able o ool hesysem, advanced devices may vary he ligh shone inohe eye and wach or pupil dilaion, a eaure ha isno currenly viable on small devices like cellphones.

In erms o user accepance, he ac ha iris scans areno invasive is helpul, assuming he raining issues can

be properly addressed. O course here remain somenegaive, Orwellian connoaions o he use o irisscans, bu wheher hese concerns would also apply odeveloping counry users is unclear.

Fingerprints

e use o ngerprins o ideniy people has beenaround or over a cenury. I s he mos maure

biomeric echnology ou here oday, wih acceped

reliabiliy and a well-undersood mehodology. Assuch, here are many vendors o ngerprin recogniionon he marke oday, alhough no all o hem employcompaible equipmen or algorihms. ree o heradiional means o ngerprin recogniion employOpical, Capive Resisance/Pressure, and ermalscanning echnologies. While all hree have been inuse or years, wih good reliabiliy and accuracy, heydo have weaknesses when aced wih odays demand

or beter raud prevenion inhe ace o more sophisicaed

biomeric applicaions, no omenion more sophisicaed

criminals. Specically, allhree o hese ypes o nger-prin scanning can be de-eaed in various ways, such asusing dead ngers or copyinghe las prin used wih adhe-sive lm and re-presening io he scanner. Addiionally,esing has shown ha he elderly, manual laborers andsome Asian populaions are more likely o be unable o

enroll in some o he radiional ngerprin sysems.

A newer ngerprin echnology, employing RF Imag-ing, uses ulrasonic holography o he ouer layer odead skin as well as he inner layer o live skin o creaehe emplae, rendering i nearly 100% accurae, no omenion resisan o he use o ake or dead ngers, ordir and oil. In addiion, he newer ngerprin sysemsuse each new scan o he nger o enhance he exisingemplae, hus making i more accurae wih use overime.

While ngerprins have proven o be highly reliableand accurae over he years, paricularly now using RFimaging, heyre no compleely inallible. ey can

be aeced over ime by such hings as years o manuallabor or physical injury, so here would probably be adesire o updae he reerence emplaes as and whennecessary or commercial and nancial applicaions.Oher acors ha can cause ailure in a ngerprinscan are cold and humidiy (paricularly in he olderypes o ngerprining), and locaion, angle and pres-sure o placemen on he sensor (known as a plaen).Oher issues o consider are ha he use o ngerprinsrequires physical conac, which can be a problem insome culures, and he ac ha ngerprinings longassociaion wih criminal jusice lends isel o someprivacy resisance, alhough his will probably ame-liorae over ime wih increased use o biomerics andupdaed privacy laws.


15/20



White Paper

1

Fingerprin capure echnology is easily accommo-daed on a cellphone, wih sensor sizes ranging rom 12mm x 5 mm o abou 1.5 cm x 1.5 cm, and low powerand processing requiremens. e ngerprin emplae

isel ranges in size rom abou 256 byes o 500 byes.Char 1. below summarizes he main characerisics ohe biomeric echnologies discussed in his paper.

Market Activities in Mobile Biometrics

Currenly, mos biomeric applicaions around heworld end o ocus on naional securiy and lawenorcemen aciviies, as well as physical access osensiive or resriced aciliies. As undersandingo he echnologies and heir perormance levels hasimproved, more secors o he economy are lookinga he use o biomeric sysems or idenicaion andauhorizaion. e echnology and nancial secors inparicular are ineresed in he use o biomerics, parlyo improve heir cusomers user experience by savinghem he hassle o having o consanly re-ener pins,passwords and accoun numbers. For hose pars ohe nancial services world who are seeking o expandheir cusomer base ino previously unserved areas,inconsisencies in he availabiliies and ypes o ocialidenicaion presen challenges o opening up new ac-

couns. Biomeric idenicaion is one way o address-ing hose challenges.

Asia is leading in he use o mobile biomeric aciviy12.Mos curren cellphone-based biomeric applicaionsare being seen in Japan, Souh Korea and, increasingly,China, where biomerics are used o unlock handsesand/or applicaions on he handse. In all hese cases,

hough, he biomeric is used o supplemen, raherhan replace, he normal securiy sysems already inplace or online and mobile banking. In Japan, So-

bank Mobile (ormerly Vodaone) and NT DoCoMo

boh oer Sharp handses ha use Face Recogniion,rom biomeric vendors such as Oki and Neven Vision.Several handses on oer a all he mobile operaorshave Fingerprin sensors, including hose rom LG, Fu-

jisu, Samsung, Panasonic and Sharp, using ngerprinechnology rom Auhenec and Arua. In addiion,Oki Elecronics has come ou wih a proprieary cell-phone ha conains Iris Recogniion soware ha useshe phones own camera. (Wheher his phone has hado be reroted wih inrared lers is no clear.)

In China, handse vendors are saring o inroducehandses wih ngerprin echnology, including Yulongand Qiao Xing Mobile (CEC). And in Korea, KFhas inroduced several phones using Auhenecsngerprin soluion, including hose rom Panech,Moorola and LG.

While Europe hasn been as acive in his area, herewas an EU collaboraive research program sared in2004 called SecurePhone ha produced a high-endPDA prooype using ace, voice and signaure-based

biomeric auhenicaion sysems on a SIM card. Morerecenly, Swisscom Mobile has embarked upon a rialusing Aruas ngerprin sensors on a oshiba phone.

In India and pars o Arica, governmens and nancialinsiuions have sared using biomerics o enroll ru-ral populaions or social benes and banking applica-

Char 1. Main characerisics o biomeric echnologies


16/20


17/20



White Paper

1

securiy and auhorizaion across various secors alsogrows. In paricular, he nancial indusry is increas-ingly ineresed in he use o biomerics o help in heongoing gh agains money laundering and erroris

nancing, raud and consumer proecion. A he sameime, as he provision o sandard inrasrucure lags arbehind he rollou o cellular services in mos devel-oping counries, ineres in he use o mobile phoneso access rural populaions and provide banking andinormaion services is exploding.

Biomerics would be a useul soluion o he issue osecuriy or mobile banking in developing counries,paricularly o address he unique needs o he un-

banked in rural areas. echnically, he use o biome-

rics is enirely easible in mobile applicaions. eaccuracy o biomeric idenicaion sysems is as goodi no beter han mos radiional banking securiy sys-ems, and he soware and ransmission requiremenso several biomerics echnologies are cerainly wihinhe realm o possibiliy or mos o odays cellular ne-

works. e main issue o address wih any biomericsysem is ha he perormance will only be as good ashe qualiy o he daa capured, so ha environmenalconrols and user raining are o paramoun impor-ance.

For purposes o mobile phone banking, ngerprinrecogniion appears o be he bes echnology o useoday. Fingerprins are already being used or severalrural banking applicaions around he world, wih ac-cepable perormance and securiy resuls. And whilehere is a requiremen or incremenal hardware andsoware o accommodae ngerprin sensors on hehandse, he use o ngerprin recogniion echnol-ogy is being used in several mobile phones oday by a

wide range o handse vendors. As or use in cellularneworks, he size o ngerprin emplaes, which canrange rom 250 o 500 byes, can easily be ransmited

via odays GSM and CDMA daa neworks, allowingor sysems ha can provide maching boh locally andcenrally, depending on he applicaion requiremens.

In erms o how i would work, ngerprin recogni-ion securiy could eiher inerace direcly wih a

banks online banking sysem, an approach ha willoen require cosly sysems inegraion (and resul inan undesirable one-o soluion), or i could inerace

wih a separae mobile banking plaorm. e mobile

banking plaorm would ac as a black box inerme-diary beween he cellphone and he bank, receivinghe ideniy and biomeric auhorizaion daa rom heusers handse and, once veriying he inormaion,sending a pre-auhorized signal o he banking sysem,using sandard ISO banking proocols, elling he banko go ahead wih he ransacion a hand. In ac his ishow many mobile banking sysems work oday, akinginormaion rom he handse and ranslaing i in oneorm or anoher or use by banks and paymen proces-sors.

As is oen he case wih new echnology applicaions,he bigges issue acing mobile operaors and banks

when rying o evaluae biomerics or mobile bank-ing will no be he echnology, per se, bu raher he

business case around building he echnology ino heapplicaion13. Quesions such as who owns he cus-omer, who builds and operaes he mobile bankingplaorm, who pays or he cellphone, and who handlesall he implemenaion, raining and cusomer-servicerelaed issues all need o be addressed o undersandhe overall atraciveness o a biomeric mobile bank-ing applicaion.

FOOTNOTES

8)Loretta Michaels is a consultant with extensive experience in telecoms and mobilepayments, particularly in the developing world.

9)See Forward.

10)Disney World was, until 2007, the largest user of biometric systems in the US. Itused ngerprint scanners from Lumidigm, a company set up with nancial backingfrom the CIA, NSA and DOD.

11)National Institute of Standards and Technology (NIST) 2006 Facial RecognitionVendor Test (FVRT).

12)Appendix A: leading vendors addressing mobile phone biometric technologies.

13)Appendix B: issues for consideration when designing a mobile banking system.


18/20


Appendix A: Biometric & Handset VendorsMarkets + Enterprise

White Paper

18

Appendix A.

Biometric & Handset Vendors with

Mobile Products in Market

Fingerprint Recognition Vendors

Authenec, Inc. Melbourne, Florida, www.auhenec.com.Wih over 25 million sensors in use worldwide, including in 7 million cellphones, one o he leading supplierso ngerprin sensors or PC, wireless device and access conrol markes; Auhenec has issued 33 paens onis echnology, he larges paen porolio in is indusry, and is lised as one o he ases growing echnologycompanies in America.

Atrua echnologies, Inc. Campbell, Caliornia. www.arua.comLeading provider o ngerprin soluions o he mobile, consumer elecronics, compuing and mass soragemarkes, as well as a leading provider o joysicks and ouchpads o he compuing and gaming markes. O he12 new ngerprin mobile phone models announced in he rs hal o 2007, 10 had Aruas ngerprin soluion.Currenly in a mobile paymens rial wih Cellular Souh and Kyocera.Oher leading ngerprin recogniion vendors (currenly wihou cellular soluions): L-1, CrossMach, Lumi-digm, SagemMorpho, Digial Persona, UPEK

Face Recognition Vendors

Omron Corporation Kyoo, Japan. www.omron.comA global leader in sensing and conrol componens, Omron operaes in a wide variey o elds such as indusrialauomaion, home appliances & oce equipmen, auomobiles, social & nancial sysems, and healhcare. InFebruary 2005 i inroduced he Okao Face Recogniion Sensor, or use in PDAs, mobile phones and ohermobile devices conaining a camera. e Okao Vision line consiss o a range o acial-recogniion echnology,including idenicaion echnology, which can recognize individual aces; he abiliy o esimae gender and age

based on acial characerisics; a racking echnology ha can deec and rack he movemens o a human body;and he abiliy o esimae where a person is looking based on he orienaion o heir ace and gaze.

Oki Electric Industry Co., Ltd. okyo, Japan. www.oki.com

OKI is Japans rs elecommunicaions manuacurer, and is now ocused on hree main businesses, he ino-elecom sysem business, semiconducors and priners. I has been providing acial recogniion soware, heFSE (Face Sensing Engine) middleware or embedded sysems, as a securiy produc o various governmenagencies, nancial insiuions and oher enerprises, along wih is iris recogniion echnology. In lae 2006 OKIinroduced is new Iris Recogniion echnology or Mobile Phones, which is able o use a sandard camera hais embedded in a mobile erminal.

Neven Engineering, Inc. (rade name: Neven Vision) Sana Monica, CA .Neven Vision was ounded in 2003 by a group o people who had worked ogeher on a biomerics company


19/20


Appendix A: Biometric & Handset VendorsMarkets + Enterprise

White Paper

1

(Eyemaic Ineraces, Inc.), bu in he las ew years had changed heir ocus o applying ha echnology o mo-bile visual search. eir service oerings include image-driven mobile markeing services, visual mobile search,comparison shopping and m-commerce, enhanced phoo messaging, secure daa access and eld ideniy veri-caion. Cusomers include NT DoCoMo (or auhenicaing ransacions), he U.S. governmen (including he

LAPD or ideni ying gang members), and Coca-Cola (or mobile markeing campaigns). Neven Vison holdsa number o paens on ace recogniion, image recogniion and video recogniion, including he image baseenquiry sysem or search engines or mobile elephones wih inegraed cameras, image-based search engineor mobile phones wih camera, and single image based muli-biomeric sysem and mehod. In Augus 2006,i was purchased by Google, o be incorporaed ino Googles Picasa produc line o improve organizaion andsearch o personal phoo albums. Google hasn made any specic announcemens on how i inends o use hemobile echnology i acquired wih he purchase, alhough he ac ha Google will be paricipaing in he FCCsspecrum aucion indicaes ha i does plan some ype o mobile oering.

Oher leading ace recogniion vendors (currenly wihou cellular soluions): L-1, Bioscryp, CrossMach,

SagemMorpho, Daasrip, Labcal

Iris Recognition Vendors

Oki Electric Industry Co., Ltd (see above)

Oher leading iris recogniion vendors (currenly wihou cellular soluions): Irisguard/Iridian (now owned byL-1), LG Iris, Panasonic

Mobile Handset Vendors with Biometric Solutions in the Market

Fingerprint

Samsung, LG Elecronics, Fujisu, Hiachi, Moorola, Panech, oshiba, Panasonic, Kyocera, CEC, Yulong

Face

Sharp

Iris

Oki (proprieary)


20/20


Appendix B: Key Issues to ConsiderMarkets + Enterprise

White Paper

Appendix B.

Key Issues to Consider in Designing a

Biometric Security System in Mobile Banking

- Who does cusomer belong o - mobile operaor or bank?

- Who builds, operaes and owns he mobile banking plaorm?

- Who pays cos o new and/or upgraded cell phone hardware? How are cell phone bateries kep charged(solar?)

- How will cusomers enroll in sysem? Physical presence required, plus processes or veriying iniial ideniyclaims

- How will cusomers be rained in use o sysem?

- Should debi cards be issued in conjuncion wih service or use in urban AMs?

- Need excepion handling or boh enrollmen and vericaion; 1-800 # or problems, wih secre quesions orwhen cusomer can veriy biomerically?

- o wha degree will biomeric mach decisions be incorporaed ino exising ineraces or banking, paymenand clearance sysems?

- How many ideniers - handse ID, bank accoun #, biomeric ID

- W ha are he hreshold (accuracy) requiremens?

- Locaion o biomeric daa sorage and processing or maximum availabiliy

- Adminisraive and audiing uncionaliy o manage biomeric accouns and ransacions

- How much personal daa resides on handse?

- Cash handling nework and use o eld agens, reail agens, mobile AMs

- Soware requiremens or cell phones no prohibiive; soware and backup requiremens or mobile bankingsysems and linkages o bank nework o be deermined

- Processing requiremens - need basic daa nework (shouldn need 3G as long as youve go a secure unnel ohe bank)

biometric security for mobile banking 2008

Documents