Recommendations to curb ID theft

"Identification Security: Technology and Policy Issues" published by the Foundation for State Legislatures provides a synopsis of key technology, privacy, security, access, and related identification security issues while offering advice to policymakers on specific identity and privacy concerns. The publication says identification security challenges for government "have increased significantly with the growth in identity theft, fraud, and breaches of homeland security.

False IDs are used to facilitate a variety of crimes, from the illegal purchase of alcohol and firearms, to false background checks, identity theft, terrorism, and other violent offenses. Advances in computer software and hardware have made it easier to produce fraudulent IDs and to breach ID system protections."

Of particular concern are "breeder documents," like birth certificates, marriage licenses, and other official papers that are needed to obtain driver's licenses, passports, and various government-issued documents. States are considering collecting biometric information, such as fingerprints and iris scans, but there are logistic and legal questions on how the information is stored and used.

"At least one-quarter of the states use some form of biometric technology to verify identity, and more are considering such measures," the report says.

Moreover, the publication notes that at least 14 states in the last four years have passed laws regarding information on the magnetic strips of credit cards and nine have passed laws restricting the use of Social Security numbers on driver's licenses. In addition, all states and many municipalities have planned or implemented information systems that enable data sharing among various parts of the justice community.

Specific principles for states to adopt to address identification security issues include the following:

* Establish standard requirements to protect "breeder documents" (such as birth certificates, marriage, and name-change documents) from theft, alteration, destruction, or unauthorized access--and they should be protected against forgery through legal and technical measures.

* Biometric data--including photos, fingerprints, retinal scan data and, possibly, DNA--should be used where appropriate, based on the level of risk and security required.

* Federal identification and privilege documents (i.e., passports, Social Security cards) and related procedures should not conflict with state standards and procedures and must allow secure exchanges of data to the extent necessary to prevent fraud and breaches of ID security.

* Ensure the security of issuance systems.

* Limit the validity of ID documents to a reasonable period of time.

* The document and related systems should protect against errors and include policies and procedures for correcting errors and reversing unjust denials quickly.

* Private sector uses of the identification document may be allowed but should not increase the risk of forgery or identity theft.

* The ID document and related procedures should not create a means of unauthorized surveillance of an individual.

* Individuals should be provided with notice about the purpose and use of the ID document before information is collected or the document is issued, and they should have access to this information and be able to correct inaccuracies.

COPYRIGHT 2005 Society for the Advancement of Education
COPYRIGHT 2006 Gale Group