In the dynamic world of IT and security, the concept of BYOD (Bring Your Own Device) has revolutionized how organizations manage employee devices. Today, a new evolution in this paradigm is emerging: BYOC (Bring Your Own Credential). This innovative approach promises to transform access control systems, offering enhanced security, privacy, and efficiency. As users bring their own access credentials on mobile devices to system owners, BYOC mitigates the need for organizations to issue new credentials and aligns with stringent data protection regulations like GDPR and CCPA.

Understanding BYOC

BYOC is a model where individuals use their personal mobile devices to carry access credentials, which can then be integrated into an organization’s access control system. This shift not only simplifies the process of credential management but also places greater control over personal information in the hands of the user. Unlike traditional methods where access credentials are issued by the system owner, BYOC allows users to maintain their personal data, thereby enhancing privacy and compliance with data protection laws.

The Mechanics of BYOC

The BYOC model operates through a series of streamlined steps:

1. Credential Creation: Users generate access credentials on their mobile devices through a secure app. These credentials can be encrypted and stored safely on the device.

2. Credential Submission: When a user needs access to a system, they present their mobile device to the system owner. The credential can be shared via QR codes, NFC (Near Field Communication), or secure cloud-based exchanges.

3. System Integration: The system owner integrates the provided credential into their access control system, granting the user the necessary permissions without issuing new credentials.

4. Revocation and Updates: Users and system owners can update or revoke their credentials directly from their devices or on the access control system, providing a dynamic and responsive approach to access management.

So why should we be considering BYOC?

Consider these points:

Enhanced Security – BYOC leverages the advanced security features of modern mobile devices, such as biometrics, encryption, and secure storage. By doing so, it reduces the risk of credential theft or duplication. Since the credentials are not stored in a centralized database, the attack surface for potential breaches is minimized.

Improved Privacy Compliance – Data privacy regulations like GDPR (General Data Protection Regulation) and CCPA (California Consumer Privacy Act) require stringent controls over personal data. BYOC inherently supports these regulations by allowing users to retain control over their personal information. Since credentials are created and managed by the user, there is less risk of personal data being mishandled or exposed during the credentialing process.

Cost Efficiency – Issuing and managing physical access credentials can be costly and time-consuming for organizations. BYOC reduces these overheads by shifting the responsibility of credential management to the user. This not only lowers costs but also simplifies administrative processes associated with credential issuance and maintenance.

User Convenience – Users benefit from the convenience of carrying access credentials on devices they already use daily. This eliminates the need to manage multiple physical cards or fobs, streamlining their interactions with various access control systems. Additionally, updates to credentials can be made in real-time, enhancing user experience and reducing downtime.

Implementing BYOC does have its Challenges

When considering this approach to credentialing you should be aware of some key factors that could impact adopting the technology.

Technical Compatibility – For BYOC to be effective, access control systems must be compatible with a wide range of mobile devices and credential formats. This requires investment in technology that can interface seamlessly with different operating systems and communication protocols.

Security Assurance – While BYOC offers enhanced security features, ensuring these are robust and effective is crucial. Organizations must implement rigorous security protocols to protect against potential vulnerabilities in mobile devices and credential transmission processes.

User Training and Support – Adopting BYOC involves a cultural shift for both users and system administrators. Comprehensive training programs are essential to ensure all stakeholders understand how to create, manage, and use mobile credentials securely. Ongoing support must be provided to address any issues or concerns that arise during the transition.

Regulatory Compliance – Despite its inherent advantages, organizations must still ensure that their BYOC implementations fully comply with relevant regulations. This involves regular audits and updates to policies and procedures to align with evolving legal requirements.

As the digital landscape continues to evolve, the adoption of BYOC is likely to grow. Its potential to enhance security, privacy, and efficiency makes it an attractive option for organizations. Looking ahead, several trends are poised to shape the future of BYOC.

The Internet of Things (IoT) is expanding rapidly, and BYOC can integrate seamlessly with IoT devices to offer even more streamlined access control solutions. For instance, smart locks and other IoT-enabled access points can interact directly with mobile credentials, further simplifying user interactions.

Artificial Intelligence (AI) and Machine Learning (ML) can be employed to monitor and analyze access patterns, identifying potential security threats in real-time. These technologies can enhance the overall security posture of BYOC implementations by detecting anomalies and enforcing dynamic access controls.

The paradigm shift to BYOC represents a significant advancement in access control systems. By enabling users to bring their own credentials, organizations can enhance security, improve compliance with data protection regulations, and reduce costs. While challenges remain, the potential benefits of BYOC make it a compelling option for advancing access control systems. As technology continues to evolve, BYOC is set to become a cornerstone of secure and efficient access management in the digital age.

This article originally appeared in the聽听辞蹿听.聽Paul F Benne is the President of 麻豆传媒社区 and has over 35 years in the protective service industry.

The post Tech Trends: BYOC to Usher in a new era in access control appeared first on 麻豆传媒社区.

Unfortunately, workers aren鈥檛 getting the training they need and want. As I mentioned in my last post, 70% of employees say they don鈥檛 have mastery of the skills they need to do their jobs. In that post, I also talked about how too many management teams treat employee training as an exercise in box-checking rather than a mechanism to deliver meaningful results. As a result, employees become frustrated, fail to thrive, and ultimately quit. Then, the replacement hires undergo the same superficial, ineffective training, and the cycle continues.

We鈥檝e defined the problem. Now, let鈥檚 focus on the solution.

Understanding Learning and Forgetting Curves

Most people are familiar with the concept of a learning curve. It鈥檚 a graphical representation of how performance progresses over time as a student learns and practices. Easy-to-master repetitive activities, like data entry, show fast initial gains that quickly level off. More complex tasks have wiggly learning curves, where students progress significantly, then taper off while skills sink in before the curve tics upward again. Management understands that learning curves differ by subject, and some training takes longer before workers reach acceptable proficiency.

Fewer people are familiar with the forgetting curve, but it鈥檚 even more important than the learning curve when desigining effective training programs.

The forgetting curve was developed by psychologist Hermann Ebbinghaus, whose experiments over a century ago showed that human memory retention drops quickly and dramatically after learning new information. People forget 50% of what they鈥檝e learned within an hour of training, 75% in six days, and 90% after a month. Therefore, useful training programs require reinforcement of previous lessons as new information is taught. Imagine the futility of trying to learn a foreign language if you only focused on new vocabulary during every class.

In addition, skill reinforcement requires practice and follow-up after the initial training concludes. You may have taken four years of high-school Spanish, but how much did you retain just a few years after graduation if you never spoke it? A one-time class, regardless of its length, will not be effective if the skills taught are not integrated into a worker鈥檚 routine and supplemented with refresher courses and new, updated material over time.

Types of On-Going Training

There are several proven approaches that advance learning outcomes. They include:

Physical Exercise: Physical repetition of tasks, building in complexity, reinforces muscle memory so that required actions can be executed more quickly and with less effort.

Successive Learning: Revisiting and practicing tactical skills and procedural protocols over spaced sessions is effective for developing complex skill sets that build upon each other.

Spaced Practice: Studies have shown that frequent short learning sessions are more effective than longer, less frequent sessions. Frequent sessions help transfer knowledge to long-term memory, resulting in superior recall and retention.

Security Industry Application

Ignoring the realities and consequences of the forgetting curve is perilous in the security industry. Employees who don鈥檛 remember what was taught may fail to identify, mitigate, or respond to a security threat as their job requires.  

For example, let鈥檚 look at video management systems (VMS). At the most basic level, security guards engage with a VMS while sitting at their post, watching a grid of rotating surveillance views. By all accounts, it鈥檚 a pretty dull job.

So, what happens when a severe threat arises, like protesters storming the building? The situational awareness derived from VMS is critical to coordinating the security team鈥檚 response. Can the guards quickly search for video clips based on specific parameters? Can they export video to share with law enforcement?

The guards may have learned how to use more sophisticated features of the VMS platform, but that was a while ago, and the steps have not been practiced since. Plus, the guards are now under pressure. Even if they recall some of what they learned, their navigation of the VMS menus will be slow, with some trial and error, rather than the seamless operation that comes with muscle memory. With threats coming from multiple directions, how do they make sense of the situation and prioritize action steps? They have little or no practice making crucial judgment calls in stressful emergencies. Imagine how much more confidently they could respond if theses skills had been reinforced through regular training.

Active shooter and de-escalation training also require practice, and reinforcement. You hope your team will rarely need these skill sets, but if they鈥檙e not practiced frequently, they鈥檒l get rusty and fail to deliver when most needed. I could mention many other examples, but they all follow this same pattern. Without on-going training, security teams are ill-prepared to deal with crisis.

Training Resources

The most obvious person to train an employee is that employee鈥檚 manager, but managers don鈥檛 always have the learning and development knowledge and experience to do it effectively. Management training can help those in leadership positions to be better mentors to their subordinates, but teaching specific skills 鈥� in depth 鈥� may not be the best use of the manager鈥檚 time.

Fortunately, training is readily available through professional organizations like ASIS, SIA, PSA, ESA, and others. Certain licensed employees must earn continuing education credits to maintain their status, but all workers benefit when required to keep skills current 鈥� and offered educational resources to do so. Eligibility for such training is a perk of professional association membership.

Training is available elsewhere, too. Equipment manufacturers offer certification courses on their technologies. System integrators typically include customer training with the systems they install. Security consultants are staffed with industry experts who can provide customized training courses based on an organization鈥檚 specific needs and align that training with broader risk management initiatives.

In short, don鈥檛 let the grim statistics on the state of training deter your organization鈥檚 efforts to implement an effective L&D program. The reasons that training is often ineffective can be overcome by focusing on how employees learn and why they forget. With repetitive, reinforced learning and continuing education, your security team members will be equipped to perform optimally, even in adverse conditions, using the full range or resources at their disposal.

The post Unlocking Success in Security L&D Programs appeared first on 麻豆传媒社区.

In considering this technology, it鈥檚 important to evaluate the pros and cons of using it in an application. While the benefits may be clear, you should objectively review the pros and cons I explore in this article to help guide you in the decision-making process of using the technology.

Creating an environment that disorients and limits visibility of an adversary can be a significant deterrent and limit the negative outcome of a security incident. Consider these pros of security foggers:

Immediate Deterrence and Disorientation – When activated, fog generators quickly fill the protected area with thick fog, often within seconds. This sudden loss of visibility can scare intruders, causing them to flee immediately. The dense fog significantly hampers an intruder’s ability to navigate the space or identify targets, reducing the likelihood of theft or vandalism.

Rapid and Active Response – Fog generators are designed to activate swiftly once triggered. This can be from an automatic intrusion detection or from a manual trigger of a security device. This rapid response time is crucial in preventing the intruder from accomplishing their objective. While traditional alarms may only alert and possibly scare off intruders with sound, fog generators add a physical barrier, enhancing the overall effectiveness of the security system.

Non-Lethal and Safe – The fog produced is typically non-toxic and safe for humans and pets, ensuring that it doesn鈥檛 cause harm to innocent parties while still being effective against intruders. Unlike some other security measures, fog generators do not cause structural damage or leave lasting residues, making them suitable for protecting valuable assets without the risk of collateral damage.

Versatility and Coverage – Fog generators can be used in a range of environments, from small retail shops to large warehouses. They are adaptable to different spaces and security needs. Modern fog generators are capable of covering large areas quickly, making them effective even in expansive spaces.

Integration with Existing Systems – Fog generators can often be integrated with existing alarm, access, video surveillance systems, and other security measures, providing a comprehensive security solution without the need for a complete overhaul.

Psychological Impact – The psychological 鈥渇ear-factor鈥� effect of suddenly being enveloped in fog can be powerful. Intruders may panic, leading to hasty retreats and increased likelihood of apprehension by law enforcement.

As with any technology, it鈥檚 important to understand the potential downside. This will allow you to balance if the benefits outweigh the risks in its application. Consider these possible cons to the technology:

False or Delayed Activation – There is a risk of false alarms triggering the fog generator, which can result in unnecessary disruptions and the need for cleanup; even if no residue, exhausting the fog from the air requires specific effort. While there are ways to mitigate this by having remote alarm verification, this can add significant time into triggering the system, limiting its effectiveness.

Frequent Testing and Maintenance – To ensure reliability, any security technology, including fog generators, should have regular testing and maintenance. This can be prohibitive given how this technology works.

Limited Duration of Effect 鈥� Security foggers are a temporary measure. The fog is effective only for a limited time. Once it dissipates, normal visibility is restored, potentially allowing intruders to resume their activities if they manage to wait it out.

Life Safety and Health Concerns 鈥� These systems rapidly fill an environment with dense zero-visibility fog. In some scenarios, the sudden deployment of fog can create hazardous conditions for any occupants, making evacuation difficult. This technology may not be approved by the Authority Having Jurisdiction (AHJ); therefore, approval from the AHJ should be sought before installation.

Health Concerns – While generally safe, there can be concerns for individuals with respiratory issues or allergies. While the manufacturers of the technology indicate that it is safe, actual 3^rd party testing should be reviewed and disclosed to system owners prior to installation.

Training and Usage – Security personnel and staff need proper training to effectively handle and respond to fog generator activation. In reality, if this technology is activated it will be displacing to both employees and adversaries. So, a training protocol with regular reviews is critical to ensure the proper response and recovery of an activation.

False Sense of Security – Over-reliance on fog generators might lead to complacency in other areas of security, potentially creating vulnerabilities if the system fails or is bypassed.

Fog generators present a unique and effective addition to security systems, providing immediate deterrence and disorientation to intruders while being safe and non-lethal. Their rapid response, versatility, and ability to integrate with existing security measures make them an attractive option for various environments. However, they come with challenges, including the potential for false alarms, regulatory compliance, and costs associated with installation and maintenance. Proper training and regular maintenance are essential to maximize their effectiveness. Balancing these pros and cons can help determine whether fog generators are a suitable security measure for specific needs and environments.

This article originally appeared in the聽听辞蹿听.聽Paul F Benne is the President of 麻豆传媒社区 and has over 35 years in the protective service industry.

The post Clearing the Fog on Security Foggers appeared first on 麻豆传媒社区.

A Security Operations Center (SOC) serves as the nerve center for monitoring, detecting, and responding to security incidents. Integrating Protective Intelligence within the SOC framework not only bolsters its efficacy, but it also empowers proactive measures against potential vulnerabilities.

Understanding Protective Intelligence

Protective Intelligence encompasses the proactive gathering, analysis, and dissemination of information to preempt and mitigate security threats. Unlike traditional reactive approaches, which respond after an incident occurs, Protective Intelligence focuses on identifying potential risks before they materialize. This proactive stance enables security teams to anticipate threats, assess vulnerabilities, and implement preemptive measures, thereby minimizing the effects of a potential event.

Fortifying the SOC with Protective Intelligence provides security teams with actionable information that was previously non-existent or difficult to come by. Today, robust platforms like samdesk (), Dataminr (), and LifeRaft (), are game-changers in empowering security teams with Protective Intelligence.

In an era defined by evolving cyber threats, geopolitical instability, and emerging risks, the role of Protective Intelligence in enhancing the performance of SOCs cannot be overstated. By adopting a proactive stance rooted in intelligence-driven decision-making, organizations can fortify their security program, mitigate risks, and safeguard their assets against potential threats. Here are some of the key features and benefits these platforms provide:

Early Threat Detection: One of the primary advantages of incorporating Protective Intelligence into SOC operations is the ability to detect threats at an early stage. By leveraging various sources 鈥� such as open-source intelligence, social media monitoring, and threat intelligence feeds 鈥� security analysts can identify indicators of potential threats before they escalate. This early detection enables swift intervention, preventing potential breaches or attacks.

By analyzing threat patterns and tactics, security teams can devise preemptive measures to deter potential adversaries.

Risk Assessment and Prioritization: Protective Intelligence provides valuable insights for risk assessment and prioritization within the SOC. By analyzing the credibility and severity of threats, security teams can allocate resources effectively, focusing on the most critical areas of concern. This targeted approach increases operational efficiency and ensures that the SOC remains vigilant against the most significant risks.

Enhanced Situational Awareness: Real-time intelligence feeds and threat analysis enhance the situational awareness of SOC operators. By continuously monitoring evolving threats and trends, security analysts gain a comprehensive understanding of the threat landscape. This heightened awareness enables proactive decision-making and rapid response to emerging security challenges, minimizing potential disruptions to business operations.

Threat Mitigation Strategies: Protective Intelligence enables the development of proactive threat mitigation strategies tailored to specific risks. By analyzing threat patterns and tactics, security teams can devise preemptive measures to deter potential adversaries. Whether through enhanced perimeter security, employee awareness training, or advanced threat-hunting techniques, Protective Intelligence empowers SOC operators to stay one step ahead of potential threats.

Intelligence-Led Investigations: Integrating Protective Intelligence into SOC operations facilitates intelligence-led investigations into security incidents. By correlating internal security data with external threat intelligence, analysts can uncover patterns, trends, and indicators of compromise more effectively. This intelligence-led approach streamlines incident response efforts, enabling faster containment and remediation of security breaches.

Proactive Threat Hunting: Protective Intelligence empowers SOC teams to engage in proactive threat-hunting activities. By leveraging advanced analytics and threat intelligence, analysts can proactively search for signs of malicious activity within the network. This proactive stance allows security teams to identify and neutralize threats before they cause significant harm, enhancing the efficacy of organizational defenses.

Collaborative Intelligence Sharing: Effective Protective Intelligence relies on collaboration and information sharing both within the organization and with external partners. By participating in threat intelligence sharing communities and industry forums, SOC teams can gain access to valuable insights and collective intelligence. This collaborative approach enhances the accuracy and timeliness of threat intelligence, strengthening the overall security posture of the organization.

Challenges to Avoid

While the benefits of Protective Intelligence are undeniable, implementing and managing an effective program within the SOC comes with its own set of challenges. The following considerations should be acknowledged and planned for when considering and deploying a Protective Intelligence program. This will minimize any negative or adverse effects of using this technology.

Data Overload: The sheer volume of data generated by various intelligence sources can overwhelm SOC analysts, making it challenging to separate qualified threats from noise. Narrowing the focus of the information these systems collect will help reduce the volume of inbound information that the SOC needs to review.

Resource Constraints: Building and maintaining a robust protective intelligence program requires dedicated resources, including skilled personnel, technology infrastructure, and ongoing training. To implement a Protective Intelligence program, there should be an analysis of whether current SOC staff are able to handle the additional tasks associated with accurately and efficiently curating the inbound intelligence.

Integration Complexity: Integrating disparate intelligence sources and tools into the SOC ecosystem can be complex, requiring seamless interoperability and data correlation capabilities. It is best to crawl before you run, keeping the program simple before creating multiple system dependencies.

Privacy and Compliance:聽Adhering to privacy regulations and compliance standards while collecting and analyzing intelligence data is critical to maintaining trust and legality. It is important to collaborate with your legal team when creating a Protective Intelligence program to play it safe.

This article originally appeared in the聽听辞蹿听. Paul F Benne is the President of 麻豆传媒社区 and has over 35 years in the protective service industry.

The post Tech Trends: The Power of Protective Intelligence appeared first on 麻豆传媒社区.

As AI continues to advance, we in the security industry must develop robust detection methods to preserve the accuracy and integrity of data, as this data is required to identify and respond to threats in the physical world. This is especially true on our continually advancing reliance on technology like video surveillance systems, VoIP intercom and phone systems, and protective intelligence used in security operations centers.

Understanding how to identify AI-generated content is crucial for maintaining trust and accuracy in an ever-evolving digital landscape. By staying vigilant and adapting detection strategies to keep pace with AI advancements, individuals and organizations can contribute to the ongoing battle against misinformation and deceptive practices, fostering a digital landscape built on trust and authenticity.

While the security industry progresses to embrace this technology in various capacities, let鈥檚 delve into some strategies that we mere mortals can use to detect AI鈥檚 presence in different domains, such as images, audio, and text.

While the security industry embraces AI in various capacities, understanding how to identify AI-generated content is crucial for maintaining trust and accuracy.

How to Detect AI in Images

Noise Analysis: AI-generated images often carry subtle patterns or artifacts that deviate from those present in naturally captured visuals. By scrutinizing noise patterns, and hard-to-generate items like hands, feet, logos, and background text in images, you can unveil the telltale signs of images crafted by AI algorithms. This nuanced examination aids in distinguishing between authentic and machine-generated visuals.

Examine the metadata: AI-generated images may lack the typical metadata markers associated with photos taken by traditional cameras. Anomalies in metadata such as geolocation, camera model, lens settings, etc., can serve as a red flag, prompting further investigation into the image鈥檚 authenticity.

Reverse image search: Employing reverse image search tools is a valuable technique to ascertain the origin of an image. AI-generated images often lack real-world counterparts, making them stand out in search results. This method is particularly effective in identifying instances where AI has been employed in the creation or manipulation of visual content.

How to Detect AI in Audio

Spectral analysis: AI-generated audio frequently exhibits specific spectral patterns or anomalies not found in naturally occurring sounds. Spectrogram analysis can unveil these hidden patterns, assisting in the identification of AI-generated audio content. This analytical approach is vital for differentiating between human and machine-generated sounds.

If you don鈥檛 have a spectrum analyzer handy, try these two human-capable detection methods. First, listen for words or phrases that get repeated 鈥� AI-generated content will use the same cadence, rhythm, and pronunciation, giving you a clue to its origin. Second, if you are having a dialog with AI, it does not know how to respond to bizarre questions 鈥� so if you get a call and it sounds like your family member asking for help and money, ask the AI for a code word like 鈥渨hat am I holding in between the toes of my left foot?鈥� While the AI will have no idea how to respond, a family member will give you the secret code word or at least ask what the heck you are talking about.

Voiceprint analysis: Analyzing the voiceprint of a speaker can be instrumental in identifying AI-generated voices. AI often struggles to replicate the nuanced characteristics present in human speech, and voiceprint analysis can reveal discrepancies that may not be perceptible to the human ear.

Linguistic analysis: AI-generated speech may lack the natural flow and coherence found in human communication. Identifying unnatural syntax, grammar, or contextual inconsistencies can provide valuable clues in determining the authenticity of audio content.

How to Detect AI in Text

Linguistic anomalies: AI models may struggle with nuanced language use, so scrutinize for unnatural word choices, awkward sentence structures, or inconsistencies. Thorough linguistic analysis is crucial for revealing subtle signs of AI involvement in machine-generated text.

Stylometric analysis: AI models may exhibit consistent stylistic features that differ from the diversity found in human-generated content. Stylometric analysis, which focuses on patterns in writing style, is a powerful tool for detecting these subtle variations.

Contextual inconsistency: AI-generated text may struggle to maintain context throughout a piece of writing. Abrupt changes in tone, topic, or inconsistency in narrative flow can reveal instances where AI has been employed in the creation of textual content.

Cross-Domain Detection

Multi-modal Analysis: Combining techniques from image, audio, and text analysis creates a comprehensive approach to detecting AI across various domains. Cross-referencing results from different modalities can enhance the accuracy of AI detection and provide a more robust defense against machine-generated content.

Machine learning classifiers:聽Training machine learning classifiers using labeled datasets is an effective approach to distinguishing between AI-generated and human-created content. This method leverages the power of algorithms to identify subtle patterns across images, audio, and text, contributing to a more sophisticated and adaptive detection system.

Article Link –

This article originally appeared in the聽听辞蹿听. Paul F Benne is the President of 麻豆传媒社区 and has over 35 years in the protective service industry.

The post Tech Trends: How to Detect AI appeared first on 麻豆传媒社区.

These technologies, which enable the identification of individuals based on their facial features, have been heralded as a breakthrough in enhancing security and streamlining law enforcement operations; however, they have also raised profound concerns about privacy, civil liberties, and potential abuses. As a response to these concerns, numerous cities and countries have started banning or heavily regulating the use of facial recognition technologies in these domains.

This has a big impact on the security industry as we prepare to understand, market, and deploy these technologies. Your customers will have questions, and their integrator should be able to provide some answers. Thus, it is essential to explore the arguments for and against the banning of facial recognition technologies in security and law enforcement to deliver the most informed recommendation to an end-user.

While the proponents of facial recognition technologies emphasize their utility, opponents argue that the risks and drawbacks far outweigh the benefits, leading to a growing movement to ban or heavily regulate their use in security and law enforcement.

The Rise of Facial Recognition Technologies
Facial recognition technologies have evolved at an astonishing pace. These systems utilize computer algorithms and databases of facial images to identify and verify individuals by analyzing distinct facial features. The technology has numerous applications, ranging from unlocking smartphones to enhancing security measures in public spaces and assisting law enforcement agencies.

Advocates of facial recognition technologies argue that they significantly contribute to national security and public safety. They cite instances where these systems have successfully identified and apprehended criminals, located missing persons, and thwarted potential terrorist threats. The potential applications are immense, including the rapid identification of suspects, enhancing border security, and improving the speed and accuracy of validating a person that may have been placed on a watch list.

The Case for Banning Facial Recognition Technologies
While the proponents of facial recognition technologies emphasize their utility, opponents argue that the risks and drawbacks far outweigh the benefits, leading to a growing movement to ban or heavily regulate their use in security and law enforcement.

Privacy concerns: The primary argument against facial recognition technologies is the grave invasion of personal privacy. The constant surveillance and monitoring of individuals in public spaces, without their consent or knowledge, raises serious ethical and legal concerns. The widespread use of these technologies could turn public areas into surveillance states, infringing on citizens’ rights to privacy and anonymity.

Inaccuracy and bias: Opponents have said these systems have been shown to exhibit a significant degree of inaccuracy, particularly when it comes to recognizing individuals from diverse racial and ethnic backgrounds. This inherent bias can lead to wrongful arrests and misidentifications, disproportionately impacting marginalized communities.

The potential for racial profiling and discrimination is a valid concern; however, tests of different facial recognition technologies have been conducted within the industry by IPVM.com that shows these systems can be successfully deployed but vary in their success by manufacturer.

Surveillance state: The deployment of facial recognition technologies has the potential to create a surveillance state, where individuals’ every move is tracked and recorded. This dystopian vision raises concerns about the erosion of personal freedoms and the establishment of a society where people are constantly watched and restricted in their actions.

Lack of accountability: In many cases, the use of facial recognition technologies lacks transparency and accountability. Law enforcement agencies and security firms may use these technologies without adequate oversight or regulations in place. This absence of checks and balances can lead to abuses of power and violations of civil liberties.

Security vulnerabilities: Facial recognition systems are not immune to security vulnerabilities. Hackers and cybercriminals could exploit these technologies to access sensitive information or manipulate data for malicious purposes. These vulnerabilities pose a significant risk to national security and individual privacy.

Bans and Regulations
In response to these concerns, several countries and cities have taken measures to regulate or prohibit the use of facial recognition technologies in various capacities. The website www.banfacialrecognition.com has a comprehensive list of U.S. locations where this technology is in use, under regulations, or banned.

European Union: The European Union has taken a proactive stance on protecting citizens’ privacy by implementing the General Data Protection Regulation (GDPR). GDPR places stringent regulations on the use of biometric data, including facial recognition technology. It requires explicit consent for data collection and mandates clear rules for its use.

San Francisco, California: In 2019, San Francisco became the first major city in the United States to ban the use of facial recognition technology by government agencies. The ban is aimed at preventing government surveillance and protecting civil liberties.

Massachusetts: Massachusetts followed suit with regulations aimed at protecting the privacy of its citizens. The state enacted a law that prohibits facial recognition technology for law enforcement purposes, except for cases involving serious criminal offenses.

Portland, Oregon: Portland passed a ban on the use of facial recognition technology by both public and private entities in 2020. The city cited concerns about civil rights and civil liberties as the driving force behind the ban.

The banning of facial recognition technologies in security and law enforcement is a complex issue that revolves around striking a balance between security and privacy. While these technologies hold significant promise in enhancing safety and aiding law enforcement, their potential for misuse, bias, and invasion of personal privacy has sparked a growing movement to restrict or prohibit their use. The global trend of implementing regulations and bans on facial recognition technology reflects the need to safeguard individual freedoms and civil liberties in an increasingly connected and surveilled world.

As you specify and endorse these systems for customers, I recommend consulting the Security Industry Association鈥檚 advocacy page on facial recognition technology.

What to Tell Your Customers
The future of facial recognition technology in security and law enforcement will likely involve continued debate and evolving regulations as governments and communities grapple with the challenge of preserving public safety while respecting fundamental rights. As technology advances and the societal landscape changes, finding a middle ground that respects both security concerns and individual privacy rights will remain a pressing issue for lawmakers, civil rights activists, and the general public.

As an industry we should note that the successful deployment and accuracy of these systems largely comes down to understanding the correct use-case, and designing the system to support the intended need. Too often, we rush to implement without considering proof of concept, not by the manufacturer, but within the context of the customers environment and application.

As you specify and endorse these systems for customers, I recommend consulting the Security Industry Association鈥檚 advocacy page on facial recognition technology (www.securityindustry.org/advocacy/policy-priorities/facial-recognition). The site includes research statistics that show positive support of facial recognition for public safety, air travel, workplace and other application areas. It also includes a full shareable document and a fact sheet exploring the values and the benefits of facial recognition that outlines each of SIA鈥檚 core principles regarding the responsible and effective use of facial recognition technology and makes recommendations for public- and private-sector applications of the technology, including by law enforcement. There are also success stories that integrators can use to validate the effectiveness of the technology.

Article Link –

This article originally appeared in the聽听辞蹿听. Paul F Benne is the President of 麻豆传媒社区 and has over 35 years in the protective service industry.

The post Tech Trends: Should Integrators Specify Facial Recognition? appeared first on 麻豆传媒社区.

Fast-forward to today and the evolution of wearable technology has grown exponentially. A host of wearable technologies not only do what was once only dreamed of but are capable of much more. It is now commonplace for wearable users to employ watches, rings, and other wearable devices to provide them with hyper-insight to health and fitness information. These devices can record heart rate, respiration, temperature, steps, motion, etc. and compare that data to a baseline to determine performance and abnormalities.

Wearable devices know its user鈥檚 unique biometrics and that information can be used to validate identity 鈥� not only for access control but also for ordinary transactions. These devices can monitor for duress and medical conditions that may require third-party involvement, and they can also be a tool for employee accountability. I can imagine a slight shift to a more dystopian future, where wearables are a means to instill and enforce a social credit score, adding and subtracting points for the performance or lack of performance of predefined acts.

As software and hardware manufacturers are actively at work creating the devices and platforms, the need for wearable security and safety devices continues to grow and will become accepted as commonplace. As this technology has continued to develop and improve, it is being embraced and adopted into various industry sectors, including for security; in fact, the impressive capabilities of wearables are impressive, it is only the tip of the iceberg when it comes to using this information for security purposes.

Identity Management
The security industry鈥檚 continuously evolving need to confirm someone鈥檚 identity is playing out as manufacturers continue to reinvent access card and reader technologies. These advancements are necessary to keep up with the sophistication of adversaries that have learned how to exploit previous technologies.

With complexities of validating a user鈥檚 authorization to gain access to a secure area made difficult without adding some level of biometrics to the validation process, wearable technology can be the answer. A health and fitness wearable has more uniquely identifiable data on its user than a fingerprint does. Someone鈥檚 walk, gait, stride, and dominant-side characteristics all have unique individual attributes that are continuously recorded. This is also true for someone鈥檚 heartbeat, respiration, keystroke motion when typing, and many other recorded points of uniquely identifiable biometrics. Thanks to wearables these attributes are always being collected and recorded, and developers are now researching how this unique biometric information can be used to validate identity and thus increase the level of security in identity authentication.

Personal Security
The evolution of wearable devices does not stop there; in fact, a whole new world of applications is being developed to gain insight, increase efficiency, and provide safety and security for the device鈥檚 user. These functions can be categorized in four areas for use in a safety and security capacity.

1. Health and fitness:
   Because it has a large consumer-based demand, this category is by far the most developed and advanced. It is also a bit sensitive, as employees are not often willing to share this data with employers.

That said, applications that detect a possible duress condition such as fall detection, heart rate spikes, and motion detection are being used effectively in law enforcement, security, and healthcare industries to monitor staff for wellbeing, while also triggering third-party alerts should a metric fall outside of a normal range. Some employers are also encouraging staff to use wearables to be informed of the negative effects of long hours at a desk behind a computer, allowing the employee to take corrective measures.

2. Access and employee controls:
   Wearables specifically for access control and identity verification, such as those made by Toronto-based Nymi (www.nymi.com), are at the forefront of development. This technology also supports the use of wearables for time-and-attendance and real-time occupancy data. As previously mentioned, the benefits of being able use biometric data to confirm identity makes this category particularly useful in security. The user validates to the wearable device, and the wearable device validates to the edge appliance.
3. Documentation and accountability:
   Wearables are being used for documentation and accountability of employees in the field. Already ubiquitous in the law enforcement industry, body cameras that record and stream video are also catching on among delivery drivers, healthcare workers and more. Additionally, internet-connected uniforms can broadcast location, speed, and direction of the wearer; smart watches can send location and bio data; and smart glasses can provide two-way information sharing. These devices are almost always connected to Computer Aided Dispatch (CAD) systems, and this connectivity allows for the sharing and rapid dissemination of data to aid in the response to incidents.
4. Personal protection and safety:
   Devices used to communicate duress come in many variations of styles and functionality. Most security executives are familiar with PERS devices, but many manufacturers are embedding this technology in more consumer-friendly packages. Birdie, for example, is a small keychain-type device that allows the users to separate the device from the keychain to create a duress event. Doing so will trigger a local audible alarm as well as communicate via Bluetooth to the user鈥檚 smartphone to send location data and other metrics to a list of recipiences preprogrammed into an app. While the company is focused on marketing the device to women, its clearly a good choice for anyone. Similar devices from other companies can come in the form of jewelry and decorative pendants.

Article Link –

This article originally appeared in the聽听辞蹿听. Paul F Benne is the President of 麻豆传媒社区 and has over 35 years in the protective service industry.

The post Tech Trends: The Evolution of Wearables appeared first on 麻豆传媒社区.

The gold standard for decades in maintaining dedicated and reliable inbound and outbound communications has been the POTS (Plain Old Telephone Service) line. It has been very typical to install POTS lines for duress alarms, intrusion detection systems, emergency intercoms, and dedicated voice lines for security operations and operations centers.

One of the great appeals for using POTS (besides being the only thing available) was that the POTS line provided both power and communications over a copper wire. The phones were powered by the telephone companies鈥� infrastructure, moving the points of failure outside of the users control, and onto the responsibility of the service provider. This type of system would provide for communications even if power was out. Amazingly, you could lose power and the phone would still work. Sure, it doesn鈥檛 sound impressive now, but in the 1970s it was.

As cellular technology became more dependable and widely available, many companies started to use this communications pathway as a backup or redundant method of communications; however, at the time, the technology was cost-prohibitive to deploy and use as a primary communication pathway, unless site specific conditions warranted its use in that capacity. Cellular technology has since become a viable option for both primary and backup communications of voice and data.

Now with more and more devices being IP-based, as well as the need to consolidate systems for voice and data communications, service providers are sunsetting the old and expensive-to-maintain POTS service 鈥� moving to Voice over Internet Protocol (VoIP).

The Rise of Voice over IP
VoIP is a technology that enables voice calls to be transmitted over the internet rather than traditional telephone lines. It utilizes packet-switched networks, converting voice signals into data packets for transmission.

This innovation has gained traction in recent years due to several compelling reasons:

1. VoIP offers substantial cost savings. Traditional landline services require dedicated infrastructure, which can be expensive to install and maintain. In contrast, VoIP utilizes existing internet connections, eliminating the need for separate telephone lines. This cost-effectiveness is especially attractive to small businesses and startups looking to streamline their operations, and it is commonplace for large enterprises.
2. VoIP provides an extensive array of features that surpass those of POTS. Call forwarding, voicemail transcription, video conferencing, and virtual phone numbers are just a few examples of the rich feature set offered by VoIP. These features enhance productivity, collaboration, and customer service capabilities, enabling businesses to operate more efficiently and competitively.
3. VoIP systems are highly scalable, allowing businesses to easily add or remove lines as per their requirements. This flexibility eliminates the limitations imposed by traditional phone systems and accommodates the ever-changing needs of modern enterprises. As companies expand or downsize, VoIP adapts accordingly, ensuring seamless communication without unnecessary costs or complications.

More Benefits of VoIP
The advantages of VoIP extend beyond cost savings and feature-rich functionalities. One of the most significant benefits is geographical flexibility. With VoIP, users can make and receive calls from anywhere with an internet connection. This eliminates the constraints of physical location, making it easier for businesses to establish virtual offices, remote work setups, and global presence. This allows for some unique applications in the security world as well.

Additionally, VoIP integrates well with other communication channels, such as email, instant messaging, and video conferencing platforms. This integration enhances overall communication efficiency, enabling seamless transitions between different modes of interaction. Whether it is integrating voice calls into customer relationship management (CRM) software or automating call routing, VoIP empowers businesses to streamline workflows and enhance customer experiences.

Furthermore, VoIP is compatible with various devices, including smartphones, tablets, and desktop computers. Users can access their VoIP services through dedicated apps or web-based interfaces, providing a unified communication experience across multiple devices. This flexibility ensures that individuals and businesses are always connected, regardless of the device they use or their physical location.

The Challenges of VoIP and Data Communications
IP-based technology does provide some challenges in maintaining communications pathways that are highly reliable with an uptime acceptable to support critical communications. While previous communications relied largely on the provider maintaining equipment and uptime availability, IP-based technology now requires that the provider and the customer maintain their systems so that they can be relied on for critical communications.

When migrating from a POTS-based method of communicating critical voice and data to a IP-based system, adding proper battery backup, redundant communication pathways, and proper network configurations to ensure network traffic priority is critical.

Article Link –

This article originally appeared in the聽听辞蹿听. Paul F Benne is the President of 麻豆传媒社区 and has over 35 years in the protective service industry.

The post Tech Trends: The Rise of VoIP appeared first on 麻豆传媒社区.

The advancement of technology over the past three decades is astounding. Just a short 20 years ago, the vast majority of video surveillance systems were still using VHS tapes, multiplexers, and analog cameras with resolutions that were just a fraction of todays most basic of imaging technologies. Patrol, response, and investigations were exclusively done by manpower.

Today, we are seeing a massive influx of true Artificial Intelligence 鈥� albeit mostly basic video-based analytics 鈥� into these traditional security technologies.

Basic AI in Practice for Security

We are now able to see the emergence of AI鈥檚 most elementary abilities surfacing in the security industry. An example is Coresight.ai, whose technology is able to provide facial identification of individuals using standard video surveillance cameras 鈥� even when the face of the subject is partially obscured. The technology provides the ability to match a person of interest on a watch list to individuals captured on live and recorded video.

Consider Zeroeyes and Omnilert, whose AI technologies use standard video surveillance cameras to detect a person in possession of a gun, prompting the system to trigger an action or alert prior to the subject carrying the gun making entry to a facility or shooting the weapon.

Companies like Viisights bring behavioral analytics that are able to detect a wide variety of behaviors like fighting, crowd formation, accidents, slip-and-falls, throwing objects, or other aggressive behaviors.

The vast amount of currently installed security technology is wholly reactive, meaning that an incident must take place prior to a mitigative action being taken. These technologies make security systems and departments proactive in a way we have never seen. AI can greatly speed the detection and response to many incident types, and also trigger on precursors that happen before an actual incident occurs.

As for AI and robotics, by now you have likely seen Spot the robot dog from Boston Dynamics, and perhaps some of you have seen Atlas, the most dynamic humanoid robot in the world from the same company. There have been plenty of similar robots roaming tradeshow floors the past couple of years.These robots now have human-like agility and the ability to analyze their environment. They are equipped with an array of sensors that give the robotic platform detailed information on its movement, surroundings, and position, as well as process incredible amounts of data in milliseconds. The robot can calculate thousands of probable scenarios, weighing what ones have the most likelihood of occurring, then almost instantly react to the situation, faster than humans are capable.

Imagine the Possibilities

You can easily extrapolate the possibilities. Consider the integration and convergence of just these few AI technologies and robotics mentioned: A person with a gun exits their vehicle at a school or bank, the AI determines the presence of a gun and also determines that the person in possession of the gun is on the facility鈥檚 watch list (placed on the list perhaps because they are a terminated employee or a student identified as high risk), this triggers an automated lockdown, pre-scripted announcements, law enforcement notifications, starts live video streaming to responding agencies, and automatically tracks the location and actions of the subject. Then a security robot, powered with this real-time information, moves into place to intercept the subject as they attempt to gain entry into the facility.

The robot can analyze threats, verbal exchanges, micro expressions and movements of the subject against thousands of like scenarios or previously documented incidents to make a determination of the subject鈥檚 probable actions before the subject even takes them. Then with faster-than-human reaction time and agility, engage the subject with less-than-lethal force to disarm and subdue the subject.

While we are not quite there yet, it is certainly on the horizon. In April, the New York Police Department announced the use of Spot the robot dog and other robots to start patrolling Times Square.

Playing Devil鈥檚 Advocate

To say this article is far-reaching would be a false statement; so why would I choose to open with such a negative statement like 鈥渢he total destruction of mankind?鈥�

Let鈥檚 entertain another scenario, an adversarial one. We know that all technology eventually becomes more commonly understood and can be used for both good and bad. Currently, the development of AI and robotics technology has little to no regulation or oversight, providing few limits to what this technology can be programmed to do, or better yet, to not do.

Elon Musk is quoted as saying AI is 鈥渜uite a dangerous technology鈥� and that AI has the potential to destroy civilization. What happens when an adversary 鈥� criminal enterprise, enemy state, or the AI itself 鈥� obtains and programs AI to do their bidding?

Imagine an adversary who develops an integrated AI robot with advanced sensory technology and physical agility, the ability to analyze and process petaflops of information to render an action hundreds of times faster than any human鈥檚 ability. The outcome is potentially unstoppable. It is a frightful view into a 鈥淭erminator鈥� movie-type threat that security and law enforcement teams are not remotely ready or equipped to respond to.

Avoiding the Ugly

We should not be surprised that the security industry is embracing the newest emerging technologies such as AI and robotics. As illustrated, they are an obvious force multiplier and bring new efficiencies to improve the security function.

However, the bad is there, just bubbling under the surface.

In the end, the security industry should embrace a better approach to develop and use this technology with some firm ground rules 鈥� to hopefully harness the good and avoid the bad and potentially ugly.

Article Link –

This article originally appeared in the聽听辞蹿听. Paul F Benne is the President of 麻豆传媒社区 and has over 35 years in the protective service industry.

The post Tech Trends: AI – The Good, the Bad, and Perhaps the Ugly appeared first on 麻豆传媒社区.

VIPs may be targets of stalkers, protesters, the paparazzi, and other bad actors seeking to do harm. Security teams need the tools to maintain situational awareness and facilitate command and control wherever heightened protection is called for. It鈥檚 a tall order.

Public events like parades, political rallies, sporting events, speeches, and performances, as well as private affairs, like the weddings and funerals of the rich and famous, occur in locations that are difficult to secure. Coverage must often span massive areas. Threats can come from any direction, including overhead and far beyond the event鈥檚 official perimeter.

Event security is focused on maintaining a secure environment for the public at large. Meanwhile, executive protection services must stand up separate command and controls dedicated to keeping their clients safe.

Deploying a dedicated command and control is expensive, as it must be equipped with much of the same technology as a permanent security operations center (SOC). Plus, it must provide reliable and redundant connectivity to all systems and devices utilized across the event site without the benefit of a permanent infrastructure.

Public sector dignitaries have protective details equipped to mount exhaustive security operations on their behalf. The U.S. Capitol Police, Secret Service, federal, and state agencies each have an abundance of resources, including a fleet of mobile command vehicles ready to deploy to protect dignitaries and politicians. The private sector does not. Unless such individuals face a specific threat against them, they typically must pay for their own security.

Fortunately, a new option has recently entered the security marketplace: mobile command as a service (MCaaS). Just as VIPs may invest in fractional jet ownership, MCaaS provides access to a fully equipped, state-of-the-art mobile command vehicle for a specified number of engagements per year.

When comparing services, here’s what stakeholders should consider.

What Technologies Are Included?
To approximate the command-and-control systems utilized by public sector dignitaries, an MCaaS solution should include an array of integrated security technologies from best-in-class manufacturers. Look for:

Video surveillance

Video analytics

Aerial drone surveillance

Drone detection

Gunfire detection

Perimeter protection

Real-time weather monitoring

Social media monitoring

Communication systems are equally important. A fully equipped mobile command should offer the following:

VoIP telephones

2-way radios

Cellular PTT radios

Satellite telephone, TV, and radio

Satellite and cellular data

Public address systems

The service should include the deployment of temporary cameras and other devices across the event site. Coverage should extend to broad perimeter monitoring, while placing an emphasis on areas where the client is most vulnerable, such as the green room, stage, and any walkways the client may traverse.

Live monitoring of social media is critical, as it may provide advance warning of potential threats. There should also be communication channels between event security and private security teams. If event security must contend with danger anywhere onsite, private security must have sufficient knowledge to evacuate its charge via the safest route possible

How Is It Deployed?
The 鈥淪鈥� in mobile command as a service differentiates today’s new offerings from more traditional rental models. A quick Web search of mobile command rentals will result in rental trailers equipped with communication systems and a workstation for video surveillance monitoring.

MCaaS represents a much broader suite of technologies, plus it includes the expertise of security professionals to assist private details with systems engineering, training, and onsite deployment. They can also attend events, working side-by-side with members of the executive protection service. MCaaS provides high-profile executives, high-net-worth individuals, and celebrities with the same tools and technologies used to protect top-level public sector VIPs.

To ensure the availability of vehicles, MCaaS providers may cap the number of clients they enroll to maintain a suitable client/vehicle ratio. They may also offer services to a limited geographic area, minimizing travel time before an event. An overextended MCaaS provider may not be able to deliver services when needed, negating the value of the investment.

A Paradigm Shift
The security industry’s digital transformation has brought countless new technologies to the market. Unfortunately, they only help the customers that can afford them. Many technology manufacturers have migrated to a recurring revenue model to reduce upfront hardware costs, thus making their cutting-edge solutions accessible to a broader base. Customers benefit from always-current systems that require less maintenance, include free updates, and offer operational expenditure tax advantages.

MCaaS offers similar value propositions, albeit on a grander scale. VIPs, or the executive protection services that protect them, may have previously deemed a fully-equipped mobile command as beyond budget. MCaaS will level the playing field, bringing grade-A resources to the private sector. It’s a paradigm shift whose time has come.

Article Link –

Paul F Benne is the President of 麻豆传媒社区 and has over 35 years in the protective service industry.

The post Elevating Executive Security with Mobile Command as a Service appeared first on 麻豆传媒社区.