Hacking Voice Authentication


http://www.nuance.com/ Caller Authentication Solutions – the people that make Dragon Naturally Speaking

# Why will the Voice Identification service improve existing verification procedures used by Bell?

From Bell Canada’s FAQ:
Once registered, clients are no longer required to have their bill in hand (unless they want to discuss specific call details), have PINs or passwords ready, or validate other account information.

The client’s voice can be used to associate a caller’s identity to their account and, unlike a PIN or password, a voice cannot be stolen or lost. The Voice Identification service reduces authentication delays and thus the length of call.

Verification is done only based on voice features and not on content. It is used solely to authenticate clients. If there is no match, existing client validation procedures will be used.

# How reliable is the Voice Identification Service? Will it really help prevent fraud?

The voice sample is a digital and mathematical model and cannot be played back to spoof the user’s voice. It is stored in a secure, encrypted database, and cannot be used to access a voice verification system. The Voice Identification service has been tested in numerous environments and channels to ensure the accuracy of a match.

# Are other companies using this or similar voice authentication systems?

The technology is currently being used by Aeroplan, Morgan Stanley, AT&T, and the U.S. Department of Homeland Security. Many companies are using this technology internally with their employees (e.g. to reset passwords or for Human Resources purposes).

“At Bell, my voice is my password.”

It’s safer because the Voice Identification service enhances our ability to safeguard your information. It’s simpler because the Voice Identification service reduces the length of call by streamlining the identification procedures.

Leave a Reply