LTKA - Specific information for teachers (against schools fingerprinting our children)

LeaveThemKidsAlone.com ©
LTKA © against schools fingerprinting our children

search this site (Updated Weekly)

Read what the BBC
said about this issue

Please tell a friend

Home
ltka home page frequently asked questions U.S. kiddyprinting: ban the scan the berlin wall foundation site map
U.S.A.
U.S. kiddyprinting: ban the scan U.S. latest U.S. schools & districts that use or ban biometrics U.S. legal issues U.S. privacy organisations U.S. school biometric vendors
Latest
latest kiddyprinting news latest press reports UK government latest U.S. latest international latest data protection latest information for journalists
Facts
kiddyprinting: the whole truth risks vs benefits of kiddyprinting kiddyprinting: supporters vs opponents vital questions to ask your school 10 things you should know leading experts' warnings is kiddyprinting legal? * * guidance for schools * * biometrics in schools: executive summary biometric manufacturers listed
Schools
UK schools using biometrics schools abandoning biometrics schools rejecting biometrics * * guidance for schools * * what manufacturers tell schools how schools decide on kiddyprinting what schools tell parents how schools 'handle' parents vital information for teachers vital information for school governors vital information for school bursars
Video
video 1: think your kids are safe at school? video 2: you think biometrics are secure? podcast
Blogs
kiddyprinting: all blogs blogs: best quotes 1st recommended blog 2nd recommended blog 3rd recommended blog 4th recommended blog 5th recommended blog
Forums
kiddyprinting: all forums 1st recommended forum 2nd recommended forum 3rd recommended forum 4th recommended forum 5th recommended forum
Press
kiddyprinting: all news reports latest news 'must see' articles backgound stories full news coverage (date order) related articles other important news information for journalists
Legal
kiddyprinting: legal issues * * guidance for schools * * the legal conundrum U.S. legal issues
Parliament
debates in parliament parliamentary motions on biometrics mps' views on kiddyprinting changing DfES 'spin' * * guidance for schools * * is kiddyprinting legal?
Nothing To Fear?
nothing to hide, plenty to fear recent attacks on uk civil liberties current U.S. privacy issues how to fingerprint everyone & get away with it the five zones of surveillance a warning from history the berlin wall foundation
Overview
civil liberties and the database state TheBigOptOut.org the children's index spy blog
ID Cards
id cards latest youth against id RenewForFreedom.org id interrogation centres defy id
Contact Us
contact us feedback fun stuff

>> Vital questions you need to ask your children's school about fingerprinting <<

"When I was teaching, attendance-taking was an important part of the day. You would call the name,
look up, and make eye contact - notice them for a second. It was an important human part of the day."
Terri Dowty, director of Action On Rights For Children, on school fingerprint registration (2006)

"Girl number twenty," said Mr. Gradgrind, squarely pointing with his square forefinger,
"I don't know that girl. Who is that girl?" Charles Dickens Hard Times (1854)

WARNING: Some computer security experts feel that in the future it will be possible for
the information stored on school biometric systems to be used to steal your child's identity

info for Parents ... for Teachers ... for Governors ... for Bursars ... for Journalists

November 2006

This page brings together the most up to date news and ongoing features of this campaign. Thank you for your support!

Specific information for teachers will appear here regularly. We can supply further details of any item that is of interest. Contact us here

TEACHING UNION'S STATMENT

A spokeswoman for the National Union of Teachers said on Thursday Sept 14th: "Fingerprinting has to be done in consultation with parents and teachers and not imposed. By consultation, we are talking about proper consultation, giving parents time to respond, not installing the machines and then asking parents."

MANUFACTURERS' CLAIMS ARE NOT STATEMENTS OF FACT
We feel that it is important that teachers know that the claims made by manufacturers of biometric systems supplied to schools are not uncontroversial. The claims are presented by the manufacturers and their sales representatives as statements of fact, but this is not the case and many experts disagree.

In fact, in a very worrying development German researchers claim they have now succeeded in extracting full fingerprint scans from cheap scanners such as the ones used in schools. See the last section of this article for details. If your pupils' biometric data, which cannot ever be changed like a PIN, were to leak into the public domain as the result of such a breach, your school would not only compromise their future ability to have a passport, ID card, or to access their bank account, but you would face the possibility of litigation and multiple claims for substantial damages. If your school is already using, or considering installing, a biometric system, we strongly recommend that you seek the opinion of an independent data security consultant and arrange comprehensive insurance cover for such an event which would place both a considerable financial and time burden on the school. It would be the school and not the LEA, DfES or manufacturers that would bear the full brunt of any legal challenge in such an event.

You may be interested to read the document on school biometrics by computer security expert Andrew Clymer, a computer security expert (8 years with Cisco Systems, Visa, Fidelity, Merrill Lynch, etc).

Andrew contacted LTKA with further observations following an article in the October 2006 issue of Education Executive, where Shaun Oakes, operations director of UK Biometrics Ltd, makes the unsubstantiated claim that "nobody can hack their way into the system".

Andrew replied as follows:

There are some basic principles that all real security experts recognise

1) Given sufficient time nothing is unhackable

Typically security measures are put in place such that the estimated time required to crack the security makes the data redundant. In this case however we are talking about a lifetime, and once broken there is no possibility to change the underlying data to force it to be redundant (such as changing a PIN, credit card number etc). This is very different to military plans, financial statements etc

2) Can this data be kept secure for a person's lifetime?

For me it comes always back to point 1 above; I have a piece of data that I need to keep secure for a lifetime. Can I seriously make a bet today that the information will remain secure for a lifetime? I don't believe any IT security person would be able to make such a guarantee, and especially in these cases on a shoestring budget.

3) Claims that a full fingerprint is stored are irrelevant

The fact that the fingerprinting system does not store the actual print as a picture is irrelevant. The fact that it is able to compare an input against this number and determine a match is the critical issue. It does not seem beyond the bounds of possibility that by understanding what the critical points are you should be able to manufacture a print that exhibits these points. Proving if this is possible today or not is irrelevant, the burden of proof has to be on them that it couldn't be done in a lifetime, and that's impossible.

4) Brute force attack is NOT the typical way in

[Manufacturers] hide behind the issue of 128 bit encryption, and sure if you were to try every single combination using conventional computing today there would no chance.

However, hackers don't do this; you find a way through by having some understanding of the data being encrypted, and the processes behind it. The German Enigma machine was a classic case of this. During the WWII there is no way we could break the German codes based on trying every combination (brute force). We had to think out of the box and by understanding what the data was and other environmental issues we were able to reduce the number of computations required and could crack it.

Quantum computing is something that is on the time line for the next 30 years (article from New Scientist), this blows away even the 128 bit encryption; in the same way that 56 bit has been with conventional computing. (The 1976 state-of-the-art 64-bit Data Encryption Standard, DES, developed by the National Institute of Standards and Technology in the US, can now be cracked on today's supercomputers.) Attempting to guess future technology capabilities for the next 5 years is damn hard let alone a lifetime.

5) Data can never be totally erased without destroying a hard drive

Something you should be aware of its virtually impossible to completely erase a hard drive it needs to be physically destroyed; thus putting further pressure on schools on how to dispose of such systems. A forensic science course at University purchased a pile of hard drives off ebay and then used variety of tools to extract the data from used blank drives. In a sample of 20 drives they found a sex offender, two schools' pupils databases, and a customer list from a mobile phone shop.

SCHOOLS KEEN TO DENY FINGERPRINTING

Two schools, in Manchester and Warwickshire, threatened LTKA with legal action after we listed them as users of Junior Librarian (in each case they weren't using the optional fingerprinting module). Looks like head teachers are slowly getting the message that fingerprinting children without asking parents is wrong.

COUNCIL AXES CONTROVERSIAL WEB PAGE

Within 12 hours of LTKA highlighting a page on the Dudley Metropolitan Borough Council entitled "Tips For Fingerprinting Children", the page was hastily deleted and the menus on the site rewritten. Surely if Dudley have nothing to hide about what they are doing, they should have nothing to fear?

The page that was pulled is cached on the official Internet Archive:

http://www.edu.dudley.gov.uk/ict/software/library/fingerprinting.htm

DfES POSTION ON PARENTAL CONSENT

The latest position the DfES are taking on consent was reported in the Register:

http://www.theregister.co.uk/2006/09/07/kiddyprinting_allowed/

In a nutshell, if you're 3 years old in a nursery you ARE mature enough to consent to be fingerprinted and photographed, but in the sixth form you're NOT mature enough to opt out! That's what the students at Edgbarrow school in Crowthorne have been told by their deputy head. They were told they need to supply a letter from their parents if they didn't want their fingerprints taken.

CHILDREN'S BIOMETRICS QUESTIONED IN PARLIAMENT

Sarah Teather, the Liberal Democrat Education Spokesperson, recently asked in June this year

"To ask the Secretary of State for Education and Skills if he will make a statement on the collection by schools of pupils' personal data, with particular reference to fingerprints."(no.82201), Beverly Hughes referred her back to an answer given to Nick Gibbs, (Cons) Shadow Schools Minister, by Jaquie Smith (Lab) in February this year:

http://www.publications.parliament.uk/pa/cm200506/cmhansrd/cm060227/text/60227132.htm#60227132.html_sbhd0

Part of which reads:

"In collecting data of this type the school is likely to rely on the broad powers contained in paragraph 3 of Schedule 1 of the Education Act 2002. This enables a governing body to do anything which appears to them to be necessary or expedient for the purposes of, or in connection with the conduct of the school."

Please click link above to see full answer given by and the detailed question initially asked by Nick Gibbs which raises some valid issues surrounding biometrics in schools.

FILMING IN SCHOOLS WITH VERICOOL ('cashless' catering and registration)

We've just learned that schools require permission from the manufacturers of the Vericool fingerprinting system in order to allow filming of children using it on their premises. We feel this is outrageous since schools do not have the courtesy to ask permission from parents to fingerprint our children in the first place.

BIOMETRICS IS BIG BUSINESS

The manufacturer of Junior Librarian and Eclipse, Micro Librarian Systems is now worth £8 million, and say "The size of the UK market means there remains significant opportunity for growth."

http://www.managinginformation.com/news/content_show_full.php?id=5074

OUR POLL attracted more than 1400 votes over the summer, when most parents obviously are away. 1345 people voted against schools fingerprinting without asking parents (94%) 80 in favour (6%). And without significant mainstream coverage we've had more than 15,000 unique visitors in the same period.

CONTACTING MPs

We are urging as many people as possible to contact their MP about schools fingerprinting without explicit parental permission - see http://www.writetothem.com/ for details of your MP, MEPs, councillors, etc.

"Education, Education, Education" Tony Blair (1996) "Consent, Consent, Consent" Concerned parents (2007)

We are campaigning for the widespread use of biometrics in UK schools to be debated in Parliament, strictly regulated and
closely monitored, with statutory requirements for explicit informed parental consent where children's biometrics are taken

strictly © LeaveThemKidsAlone.com 2006-2007 Contact Us Disclaimer Privacy Policy menu © 2006-2007 javascript-array.com