
	Home > Ask the Security Experts > Expert Archive: Security Management Questions & Answers > How can birth certificate fraud and passport fraud be prevented?

Ask The Security Expert: Questions & Answers

EMAIL THIS

How can birth certificate fraud and passport fraud be prevented?

EXPERT RESPONSE FROM: Mike Rothman, past SearchSecurity.com expert

		Pose a Question

		Other Security Categories

		Meet all Security Experts
		Become an Expert for this site

Digg This!

StumbleUpon

Del.icio.us

QUESTION POSED ON: 16 January 2008
What should be done to prevent hackers from using birth certificates and passports for fraudulent activity? What advice do you have for individuals and companies? It seems like this is happening more often.

It really depends on the type of business. Birth certificates and passports aren't really that useful when running an online business -- they're essentially paper documents in an increasingly digital world. In any case, corporations should verify identity based upon a credit card lookup to make sure that the card number, address and CVV2 number are consistent. For an financial transaction, that usually suffices and meets the risk criteria of the merchant bank that is underwriting the purchase.

In terms of a brick-and-mortar retail or other business services environment, it's a different ballgame and corporations need to walk the fine line between causing the transaction to be painful for the customer and ensuring that it is secure. Again, it gets back to an organization's tolerance for risk and to what degree a company wants to inconvenience its customers by making them bring all sorts of supporting documentation to prove who they are.

The final point I'll make is that employees need to be trained to spot fake credentials and to ask the appropriate questions if they get suspicious. If employees don't enforce with the same level of scrutiny, then the tightest policy in the world won't matter too much. An enterprise also needs to have a defined process to deal with such situations quickly and effectively. Front-line employees shouldn't solely bear the brunt of a hacker that is trying to commit fraud.

More information:

Learn about RFID technology in passports.
Then learn about improvements to RFID technology that may make passports more secure.

BROWSE BY TAG

Expert Archive: Security Management, Enterprise Data Protection, Identity Theft and Data Security Breaches, VIEW ALL TAGS

Digg This!

StumbleUpon

Del.icio.us

RELATED CONTENT

	Expert Archive: Security Management
	What is the GISP certification and how does it compare to the CISSP certification?
	Using a QSA to write up a PCI DSS report on compliance (ROC)
	How can gap analysis be applied to the security SDLC?
	Comparing cheap security products and appliances to costly appliances
	What are some tips on protecting my security budget in a poor economy?
	What value do research firms provide to their subscribing enterprises?
	What certificate offers the best ROI for an IT project manager?
	Is insider activity or outsider activity a bigger enterprise threat?
	How does information security prevent fraud in the enterprise?
	Differences between an SAS 70 data center and a Tier III data center

Identity Theft and Data Security Breaches

Chip and PIN adoption serves lesson for U.S. payment industry

Group to shed light on secure identity management threats

Heartland CIO is critical of First Data's credit card tokenization plan

Heartland CIO on end-to-end encryption, credit card tokenization

Heartland CIO on PCI, E3 project

Visa probes tokens, encryption for PCI card data protection

University data breach exposes 163,000 women to identity theft

TJX thrives following breach, bucks sour economy

Security expert's PCI analysis misguided, says PCI Council GM

External attacks start with unintentional mistakes, survey finds

RELATED GLOSSARY TERMS

Terms from Whatis.com − the technology online dictionary

bot worm (SearchSecurity.com)

CISP-PCI (SearchFinancialSecurity.com)

cookie poisoning (SearchSecurity.com)

drive-by pharming (SearchSecurity.com)

extrusion prevention (SearchSecurity.com)

identity theft (SearchSecurity.com)

parameter tampering (SearchSecurity.com)

pretexting (SearchCIO.com)

Rock Phish (SearchSecurity.com)

RELATED RESOURCES

2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems

Search Bitpipe.com for the latest white papers and business webcasts

Whatis.com, the online computer dictionary

Search and Browse the Expert Answer Center
Search and browse more than 25,000 question and answer pairs from more than 250 TechTarget industry experts.

Browse our Expert Advice
Operating Systems IT Management Networking Database	Security Servers and Storage Applications and Development Career Center

Find Security Solutions for Your Business

View this month\\'s issue and subscribe today.

Apply online for free conference admission.

SEARCH :

Site Index

TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.


TechTarget Corporate Web Site \| Media Kits \| Site Map All Rights Reserved, Copyright 2003 - 2009, TechTarget \| Read our Privacy Policy