Top Security News

DHS: Patch Windows Now
The importance of one Microsoft fix is so critical that the Department of Homeland Security is advising Windows users to apply it as soon as possible...

Hybrid App Security Analysis: Increasing Reliability of Security Testing Results
To increase the reliability of security testing results, developers are finding that security testing should be a combination of analysis techniques...

Yes, Your Search History Identifies You
The New York Times writes about Thelma Arnold, a 62-year-old Georgia widow who was identified, despite a random anonymizing number, within AOL's...


David A. Utter
Thursday: 08.10.06

Identity Angel Could Thwart ID Theft

An artificial intelligence program in development at Carnegie-Mellon University will search the Web for personally identifiable information, and alert potential victims that such data is in the wild online.

Search Engine Strategies Conference

Visit WebProWorld's complete coverage of the SES conference in San Jose
Dr. Latanya Sweeney, an Associate Professor of Computer Science, Technology and Policy at CMU, has an ambitious project in the works. Called Identity Angel, the project will develop a program that tracks down the assorted bits of information a thief can use to steal someone's identity.

Her abstract on the Identity Angel project cites identity theft as a threat to national security and economic prosperity. If enough information about a person can be found online, a thief can fit those pieces together and impersonate the real person.

Work on the project has been proceeding for a couple of years. Identity theft has been an issue of increasing importance, and many firms have been making efforts at preventing people from putting information in the wrong hands. That approach does not address the data that may be online already, though.

Wanna wallet stuffed with $10,000?

Sweeney cited name, address, date of birth, and Social Security number as the critical bits one needs to impersonate someone else. As an example, Sweeney showed how a typical credit card application online asks for these details, and if known the application can be submitted, and possibly approved.

Much of the important data can be found in résumés job seekers have posted online. In a sample of what Identity Angel finds online, Sweeney showed excerpts from three résumés found through "filtered searching"; those extracts contained all four pieces of information. Sweeney truncated the Social Security numbers shown in the report.

Identity Angel then emailed the people whose details were discovered online. Out of 105 people contacted, 71 of them no longer had those details available online a year after being notified.

This and other proactive approaches will be needed as identity theft increases in sophistication. The best defense for people will be to refrain from making those personal details available online in the first place; dates of birth and Social Security numbers do not need to be posted on the Internet where they can be easily found.

About the Author:
David Utter is a business and technology writer with WebProNews.

About SecurityProNews
SecurityProNews is updated in real time with vital internet security alerts, news and in-depth articles for IT Managers. SecurityProNews understands that IT Management Begins With Security.
 

SecurityProNews is brought to you by:

SecurityConfig.com NetworkingFiles.com
ITmanagementNews.com NetworkNewz.com
DatabaseProNews.com SQLProNews.com
ITcertificationNews.com SysAdminNews.com
LinuxProNews.com WirelessProNews.com
 
 

Advertising Newsletters Corporate Info Site Map Support
© 2006 SecurityProNews. An email newsletter.
, Inc. 2549 Richmond Rd. Lexington KY, 40509
All Rights Reserved. Terms under which this service is provided to you. Read our privacy policy. Contact us.		 SecurityProNews is part of the iEntry Inc. Network of sites and newsletters.


Alex Bard SecurityProNews About Us News Archives Feedback