bc

Not to derail your journal - Is the issue really the certification process or maintaining a secure chain of custody?

What has been revealed is that the existing authentication methods have failed resulting in fraudulent behavior.

The existing certification methods mainly relied on physical criteria such as the book and the information on the label. Of course the information on the label is a subset of the digital record found in the Certification database that we can access using things like the Verification web tool. My point is that they are currently utilizing a very basic two factor authentication method akin to just a username and a password.

Both of the authentication criteria (the book and the label) are housed in the outer well; whether it leaves a noticeable trace or not, at least one method has been presented that compromises the integrity of the outer well using commonly available materials.

This permits multiple fraudulent activities that we've already witnessed & documented since the inception of the new case and the rollout of the Custom Label programs:

• Label swapping
• Custom Label abuse (specifically with Restored/Conserved books getting Universal labels)
• Inner Well/Book swapping (our current scandal)

How do they increase the security in the chain of custody (which in turn increase the value of the certification and the brand name)? By adding another authentication factor that is not part of the outer well, label/Certification or book.

Same thing that Financial services companies deployed: they added a chip to the cards. 

Same thing that most Banking apps deployed: they added authentication thru a text message

Same thing that Gaming platforms deployed: they added authentication thru a token or phone app

Same thing that the multi-billion annual Italian Parmesan cheese industry is using to avoid counterfeiting; they added authentication thru a microchip https://wired.me/technology/parmesan-cheese-microchip/

I'll quit rambling now before the board software loses my post.

-bc