You know that I’ve railed against solely relying on knowledge-based authentication: for example, by relying on a person’s knowledge of a name and a birthdate to gain access to protected health information.
What when knowledge-based authentication receives HIGHER trust than other proofs of identity?
There is a story about Leonardo Garcia Venegas, who was working in Foley, Alabama. Apparently he was caught up in an immigration raid. So Garcia, who is a U.S. citizen, did the intelligent thing: he brought out his REAL ID, a document that can only be issued to someone after they prove they are a U.S. citizen.
Except…
“Garcia told Noticias Telemundo that authorities took his ID from his wallet and told him it was fake before handcuffing him.”
So how did he finally get released?
“Garcia said he was released from the vehicle where he was held after he gave the arresting officials his Social Security number, which showed he is a U.S. citizen.”
So apparently having a REAL ID counts for nothing, while being able to rattle off a Social Security Number counts as proof?
Frequent fliers and voters take note.
(Imagen 4)
Bredemarket 
4 Comments