Tag your it
by
Charlie Bess
There was a recent announcement about an organization tagging employees to control access to secure areas. People have been doing this to pets for a while, and there has been discussion about tagging Alzheimer's patients, but this appears to be the first time anyone has tagged people as part of their business and its security.
It makes sense as part of a multi-part (what you have, what you know, who you are ...) security approach, and it would be less intrusive in your daily life, but clearly more intrusive to your body.
What’s clear is that the current security perimeter approach taken by many organizations is not effective. Security must be baked into the environment and not bolted on. Beyond that though, we have the ability to make security an enabler, using context to make security less intrusive. If people allow greater access and allow the security infrastructure to know more about them, it can guide them based upon the role they are performing. Sure the individual has the right to deny access to their information, but they may feel like they are undergoing an interrogation compared to the people the system is more familiar with.
These kinds of embedded security are part of trying to ensure that the person is who they say they are. It could become an expectation in the future for employment. I can see the conversation now, "that one was when I worked for xxx, and this one here was when I worked for YYY", kind of like kids comparing scars at the playground.
Technology advancement doesn't take prisoners — it just marches on.
