Commit Traffic Crimes in 50 States…Well, 7

How does California know whether an arrested intoxicated person has a drunk driving conviction in, say, Oklahoma?

Or better still, how does Oklahoma know whether a licensed driver also has a driver’s license in, say, California?

Answer: they don’t. Because privacy.

The American Association of Motor Vehicle Administrators (AAMVA) provides participating states with a system (S2S) to check such things.

“State-to-State (S2S) Verification Service is a means for a state to electronically check with all other participating states to determine if the applicant currently holds a driver license or identification card in another state. The platform that supports S2S, the State Pointer Exchange Services (SPEXS) was successfully implemented in July 2015. Participation in S2S does not commit a state to be in compliance with the federal REAL ID Act. However, if a state chooses to be REAL ID compliant, the Department of Homeland Security generally looks for S2S to be part of their compliance plan.”

Not all states participate. As it turns out, neither California nor Oklahoma are part of S2S. Oklahoma is slated to join, but this may not happen.

“Oklahoma lawmakers have asked the state Supreme Court to immediately block the transfer of driver’s license and identification card data to a national interstate data exchange run by the American Association of Motor Vehicle Administrators (AAMVA).

“The lawmakers argue that the planned transmission exceeds statutory authority, violates state privacy protections, and collapses a key distinction that Oklahoma law makes between REAL ID-compliant and noncompliant credentials.”

Based upon past history, it’s no surprise that some in Oklahoma oppose big guvmint and AAMVA S2S participation.

But why has California opted out of S2S?

Basically, the privacy of Social Security Numbers. The state doesn’t to share this personally identifiable information willy nilly.

(As an aside, take a moment to think about how a state in enforcing the privacy of Social Security Numbers, which are assigned at the federal level. And also think about how Social Security Numbers are NOT supposed to be a national ID number. The mind boggles.)

So what do the other states do if someone claims to have a California driver’s license, but California won’t confirm this because of privacy concerns? Here’s what Tennessee does.

“All states and jurisdictions in the United States participate in S2S, except for California, Connecticut, Illinois, Kentucky, Nevada, Oklahoma, and West Virginia. New or returning Tennessee residents transferring from these nine states must obtain a Motor Vehicle Record (MVR) from their former state. The MVR be issued within 30 days of applying for a Tennessee license or ID.”

Good to know if I ever move out of California.

Taxes and Tacos

(From Roxanna Gracia in the office of Assemblymember Michelle Rodriguez.)

Assemblymember Michelle Rodriguez is pleased to invite you to Taxes & Tacos, hosted in collaboration with Golden State Opportunity.

Saturday, February 28
10:00 a.m. – 1:00 p.m.
Mt. Zion Church of Ontario
224 W. California St.
Ontario, CA 91762

This event will offer free tax assistance*, access to community resources, and free tacos while supplies last. We would greatly appreciate your support in sharing this event with your network or community members who may benefit. The event is open to the public, and all are welcome to attend.

Thank you for your continued partnership and support of our region. Please feel free to reach out if you have any questions.

*Tax assistance is available for individuals and families with an annual income of $69,000 or less. Appointments are encouraged, though walk-ins will be accepted as space allows. To secure an appointment, please click here.

Asm. M. Rodriguez Taxes & Tacos FlyerDownload

For Californians, Happy Data Privacy Week

(I wrote THIS one in 2026.)

CalPrivacy, also known as the California Privacy Protection Agency, is marking the whole danged Data Privacy WEEK with a very Californian term.

Drop.

Now when Californians use the term “drop,” it’s usually used in the earthquake-related phrase “drop, cover, and hold on.”

But in the privacy world, DROP stands for “Delete Request and Opt-out Platform.”

“DROP lets you send a single request to over 500 registered data brokers.”

Which makes no difference to the UNREGISTERED people who sell your data, but it’s something I guess.

Happy Data Privacy Day

From UC Davis in 2024:

“Data Privacy Day is marked each year on January 28….Data Privacy Day began in the United States and Canada in January of 2008 as an extension of its European counterpart. In Europe, Data Protection Day commemorates the January 28, 1981, signing of Convention 108, the first legally binding international treaty on privacy and data protection.”

According to the Council of Europe:

“This Convention is the first binding international instrument which protects the individual against abuses which may accompany the collection and processing of personal data and which seeks to regulate at the same time the transfrontier flow of personal data.

“In addition to providing guarantees in relation to the collection and processing of personal data, it outlaws the processing of “sensitive” data on a person’s race, politics, health, religion, sexual life, criminal record, etc., in the absence of proper legal safeguards. The Convention also enshrines the individual’s right to know that information is stored on him or her and, if necessary, to have it corrected.”

The full (English) text is here (PDF).

A lot has happened since 1981, but it all had to start somewhere.

(An aside: I wrote this post on Saturday, November 8, 2025. On that date I asked Google Gemini when the next biometric-related holiday was, and this is what came up.)

Is Vibe Coding Real?

It’s as real as…well, AI-powered content marketing.

SaaStr is a champion of vibe coding, with demonstrated results.

“We’ve built 12+ AI-powered apps on SaaStr.ai…”

These aren’t prototypes, but production apps used 800,000 times.

But before you apply your domain knowledge and create a vibe coded app, recognize this teeny tiny caveat.

“But here’s what almost nobody in the “I built a SaaS in 4 hours” content wave is telling you:

“I maintain these apps every single day. Every. Single. Day.”

Which means that you have to know how to…well, code. To evolve the code base without breaking other parts of it.

And if you don’t have the skills to MAINTAIN a code base, perhaps you should outsource your software development to humans who CAN maintain it. And who can apply technological rigor to every iteration of the product.

Such as Silicon Tech Solutions. For further information on the services they offer, check Bredemarket’s Silicon Tech Solutions page.

On Adversarial Gait Recognition

Biometric product marketing expert.

You’ve presumably noticed the multiple biometrics on display in my “landscape” reel. Fingers, a face, irises, a voice, veins, and even DNA.

But you may have missed one.

Gait.

I still remember the time that I ran into a former coworker from my pre-biometric years, and she said she recognized me by the way I walk.

But it’s no surprise that gait recognition is susceptible to spoofing.

“[A]dversarial Gait Recognition has arisen as a major challenge in video surveillance systems, as deep learning-based gait recognition algorithms become more sensitive to adversarial attacks.”

So Zeeshan Ali and others are working on IMPROVING gait-based adversarial attacks…the better to counter them.

“Our technique includes two major components: AdvHelper, a surrogate model that simulates the target, and PerturbGen, a latent-space perturbation generator implemented in an encoder-decoder framework. This design guarantees that adversarial samples are both effective and perceptually realistic by utilizing reconstruction and perceptual losses. Experimental results on the benchmark CASIA-gait dataset show that the proposed method achieves a high attack success rate of 94.33%.”

Now we need to better detect these adversarial attacks.

A silly walk, but on Fawlty Towers.

Amazon Fresh Stores in Upland and Elsewhere Rebranding…Or Closing Altogether

The Amazon Fresh store in La Verne only lasted a few years.

The Amazon Fresh in Upland, just opened last May, won’t last that long. Amazon:

“After a careful evaluation of the business and how we can best serve customers, we’ve made the difficult decision to close our Amazon Go and Amazon Fresh physical stores, converting various locations into Whole Foods Market stores.”

Not sure how long it will take to decide on the fate of each store, but Whole Foods already has an Upland presence.

Yoti iBeta Confirmation of Presentation Attack Detection Level 3

We’ve talked about Levels 1 and 2 of iBeta’s confirmation that particular biometric implementations meet the requirements of ISO 30107-3. But now with Yoti’s confirmation, we can talk about iBeta Level 3.

From iBeta:

“The test method was to apply 1 bona fide subject presentation that alternated with 3 artefact presentations such that the presentation of each species consisted of 150 Presentation Attacks (PAs) and 50 bona fide presentations, or until 56 hours had passed per species. The results were displayed for the tester on the device as “Liveness check: Passed” for a successful attempt or “Liveness check: Failed” for an unsuccessful attempt.

“iBeta was not able to gain a liveness classification with the presentation attacks (PAs) on the Apple iPhone 16 Pro. With 150 PAs for each of 3 species, the total number of attacks was 450, and the overall Attack Presentation Classification Error Rate (APCER) was 0%. The Bona Fide Presentation Classification Error Rate (BPCER) was also calculated and may be found in the final report.

“Yoti Limited’s myface12122025 application and supporting backend components were tested by iBeta to the ISO 30107-3 Biometric Presentation Attack Detection Standard and found to be in compliance with Level 3.”

More from Yoti itself.

“Yoti’s MyFace is the first passive, single-selfie liveness technology in the world to conform to iBeta’s Level 3 testing under ISO/IEC 30107-3 – their highest level for liveness checks.”

Also see Biometric Update and UK Tech.

After all, facial age estimation is of no meaning whatsoever if the face is fake. So it was important that Yoti receive this confirmation.