Common use of Biometrics and Behavior Clause in Contracts

Biometrics and Behavior. Anomaly Detection Biometrics is also known as the inherence factor in user authentication. Unlike the other factors, it does not concern something that the user should know or have. Instead, this factor focuses on what the user is or does to ensure the user’s identity. Physical biometrics measure the presence of physical characteristics of the user. Absence of such physical characteristics can be considered suspicious and a reason for the system to ask for alternative authentication credentials. Behavior anomaly detection concerns the use of user behavior data to, after a user action has been taken, detect deviations from a previously established baseline. Therefore, afterwards it can be said whether ACM Computing Surveys, Vol. 49, No. 4, Article 61, Publication date: December 2016. A Survey of Authentication and Communications Security in Online Banking 61:19 Table III. Most Applied Possession Factor in Different Regions and Online Banking Environments Region Home banking Mobile banking App Site Africa Asia Europe M-East N-America Oceania Russia S-America (8) Offline electronic tokens (OTP) (14) Hardware & Software Certificates (27) Offl. elect. tokens (OTP, CR, WYSIWYS) (6) SMS (OTP) (6) None (7) Offl. electr. tokens (OTP) (1) Mixed (OTP) (11) Physical tokens (OTP) (3) None (8) Software (22) Software (5) None (5) None (7) Software (1) Software (9) Software (1) None (6) None, physical tokens (OTP) (7) Mixed OTP (0) N/A (6) None (3) Offline electronic token (OTP) (0) N/A (2) None a user behaved as expected or not. Abnormal user behavior can be an indication of identity fraud, where an adversary has (direct or indirect) access to all authentication credentials.