Subscribe & Follow
Hands up! Icasa wants your biometrics
Yes, it might very well the only solution that will protect the greater society. This initiative is proposed to crack down on SIM swap fraud.
Your cellphone could provide a way for cybercriminals to access your financial accounts and gain access to your sensitive personal information and other accounts. All of this through your mobile number.
As soon as a criminal is able to change the SIM card connected to your mobile number, it gives him control over your mobile number — and he is able to receive the access code to your account. This gives him free rein to act as if it is you conducting transactions while you are completely unaware of what is taking place. In fact, no one will ever know that it was not you that withdrew all the money in your current account when it was withdrawn from your mobile app.
SIM card fraud is unfortunately rife in South Africa and mobile network operators are at a loss how to deal with this. In addition, the Rica legislation (Regulation of Interception of Communications and Provision of Communication-related Information Act 70 of 2002) places a positive obligation on mobile network operators to obtain certain data when a SIM card is sold.
Before a telecommunication service provider enters into a contract with a subscriber or sells them a SIM card, the network provider must get details such as the subscribers full names, identity number, residential and business or postal address, whichever is applicable; and a certified photocopy of his or her identification document on which their photo, full names and identity number appear. Such information must also be retained.
The problem, however, is that mobile network operators make use of various entities to sell SIM cards and cannot be at all places at all times to monitor that this information is correct and, in fact, obtained. Whether we like it or not, fraud takes place, and this means that SIM swaps take place, there is no record of the person purchasing the SIM card and this allows for criminal activity to take place unchecked.
In a world with various pieces of legislation, the broader legislative landscape should serve the public interest. It is undoubtedly in the public interest to prevent or at least aim to limit cyberfraud and therefore collecting biometric information could very well serve said interest.
Icasa as the telecommunication regulator should support mobile network obligations and put forward solutions that benefit the industry and society in general. This might just be a workable solution. The future will shed light as to the possibilities when it comes to SIM card fraud and curbing that through biometric data.