What are Deepfakes and how to protect biometric identity on the Internet

Deepfake is how it is known to falsify videos and images through Artificial Intelligence . For example, they can modify a video and make believe what it is not or modify a photograph to make it look like another person or another place. We can even find audios that are false and have been modified. This can logically be a problem for the security and privacy of users, as we will see.

Deepfake or fake images and videos, a problem on the Internet

What are Deepfakes

On the Internet it is not difficult to find fake photos that pretend to be real. Sometimes as fun, as a simple joke that we clearly know is false, but at other times it can make us doubt and even compromise people.

If we apply Deepfake to the images we can have as results photographs that are practically identical to an original. For example, they can use Artificial Intelligence to make a famous person appear to be in a certain place, such as eating in a restaurant.

But they can also use the same method for videos . It is more complex, of course, but with amazing results. Technology increasingly allows us to reach something similar to reality without too much effort. There are computer applications with which we can edit videos and, if we combine it with Artificial Intelligence, the results are evident.

We can therefore say that it is a problem that can affect the privacy and security of people. They can really serve to manipulate information, to make believe what is not really. In addition, thanks to social networks there is a huge bank of photos and videos on the Internet that can be manipulated.

What is biometric identity

Biometric identity consists of identifying a person through something such as the face, the fingerprint, the pupil … It is increasingly present in our day to day, since we can turn on the mobile simply by showing our face or putting finger. Also for security systems such as entering a building, etc.

There is a big difference with identity through passwords, codes or documents, and that is that it is something that belongs to the user and we cannot change or forget. If, for example, we create a password to enter Facebook, in the mail or to start the mobile, we can change that password whenever we want and we could even forget it.

On the other hand, the biometric identity cannot be changed . It is something unique to each individual. We cannot change our face, or fingerprint, or voice. Now, what happens if they manage to fake it? Obviously that would be a problem and they would have access to the accounts.

Falsificar la identidad biométrica

How Deepfake Affects Biometric Identity

We have explained what Deepfake means and what is biometric identity. We can already get an idea of what would happen if both terms are combined. Basically an attacker could have access to our accounts, steal information, sneak malware …

As we can see, one of the methods to log in through biometric identity is the image of the face. It consists in that the camera of the phone or computer is able to identify the features and verifies that we really are the legitimate user.

Sometimes to contract an online bank account or similar they ask us for a small video or photo in which we appear. One way they can see that it really isn’t a scam. But of course, what if someone fakes that image or that video?

That’s where the biometric identity-oriented Deepfake comes in. It is a serious problem, since an attacker can use Artificial Intelligence to create a certain image of the victim or even a video as if he were actually taking a selfie to verify identity.

Therefore, a potential attacker could create a fake image or video . With that he could spoof the identity. But we must also bear in mind that there are more and more sites, programs and devices where we can use biometric identity to authenticate ourselves. This makes it a present problem, but one that will undoubtedly have a greater impact in the future, as the technology spreads and improves.

How to avoid being a victim of Deepfake

Can we avoid being victims of the Deepfake? Although technically this technique consists of falsifying an image or video through Artificial Intelligence and at the user level we could not do much to avoid it, we can take into account some tips to make it difficult for this to happen.

The first thing is to avoid exposing personal information on the network and making it available to anyone. Let’s say for example that we put our email or mobile in an open forum. Also in social networks we have images available so that anyone, even without being a contact, can access them.

An attacker could find out that we have an account on a certain platform, bank, email, social network … And, thanks to the fact that he has our photographs available, he could falsify an image or video to impersonate his identity and log in to any service that supports facial recognition.

But it’s also essential to enable two-step authentication . It is fine to use biometric identity to log in instead of using passwords, but in both cases we know that we could become victims of attacks. How do we avoid this? It is best to activate 2FA on accounts.

This means that if an intruder tries to log in even knowing the password or, in the case of Deepfake attacks by spoofing the biometric identity, they will need a second step. That second step is usually a code that comes to us via SMS to our mobile, a code that we receive in applications such as Google Authenticator, etc.

Therefore, as a conclusion we can say that Deepfake is an important problem that will put biometric identities to the test as technology advances. We can say that Artificial Intelligence becomes the enemy in this case. We have also seen that we can take into account some tips to make it more difficult to fall victim to this problem.