Join the Community

23,269

Expert opinions

43,764

Total members

400

New members (last 30 days)

191

New opinions (last 30 days)

29,066

Total comments

Join Sign in

Important Announcement of Iris Scanning Security in the UAE

04 December 2008 1 comment

Retired member

This kind of news actually make the Central Bank of UAE and authorities in the UAE truly 'seem' uninformed. Anyone in the payment security business (fraudsters as well) know that this will not solve the ATM fraud problem.

IRIS scanning is a costly solution as it is quite expensive to equip ATM machines with this capability. But what makes it a non-feasible solution is that (iris-scanning security) will only work if ALL of the ATM machines in the world will require authentication by scanning the IRIS.

What will iris scanning accomplish? How will it solve the ATM fraud?

So what if a UAE cardholder can authenticate himself when doing an ATM transaction with his Iris? How would he authenticate himself when he does an ATM transaction outside of the UAE? Answer : Back to pincode. Where are fraudsters using these cloned cards? Mostly outside of the country the cards were issued. So will IRIS scanning stop fraudsters from skimming cards? Answer is NO.

External

This content is provided by an external author without editing by Finextra. It expresses the views and opinions of the author.

5026

Report

Channels

/security

Transaction Fraud Systems and Analysis

A community for discussion of Transaction Fraud systems and anlaytical techniques for bank card and financial services organisations.

Join group

66 opinions 27 members 28 April 2025

Comments: (4)

Dave Kershaw Analyst at Ulster Bank

05 December 2008

My guess is that it will be an opt-in service: "Do not authorise any withdrawals from my account unless accompanied by an iris scan verification".

So, it's up to the customer whether they want to make the extra step to protect themselves.

Report

A Finextra member

05 December 2008

The rate at which ATMs are exploding in Sydney lately would make me nervous about investing so much in something which might easily be vandalised.

I would also consider - Can you trust a bank with your biometric data, and do you really need to?"

Will we see skimming of biometric data?

Report

A Finextra member

08 December 2008

Consumers aren't really given the choice. But I also doubt the veracity of this story. Because, most security experts know that there are more economical ways of providing strong authentication that do not require changes in an ATM kiosk. It truly would be surprising if the CB of UAE isn't properly and adequately informed of what is truly feasible.

Report

A Finextra member

16 December 2008

You are right. It is a very expensive method of dual factor authentication. They can as well go for SMS PIN or Tokens. Still, this can only prevent them within UAE. Customers can request their banks to disable withdrawals outside UAE and enable for a short period during travel.

Report

More expert opinions

James Baston-Pitt Head of Growth UK, EMEA and APAC at Alloy