Between Protection and Risk – How DNA Could Change Authentication
Voices, faces, and movements can be faked to look deceptively real using AI. Even highly sophisticated biometric methods are becoming less reliable as a result. According to the latest Identity Fraud Report from Entrust, deepfake attacks have increased by more than 200 percent in recent years. This has brought DNA into the spotlight as the last unalterable proof of a person’s identity.
DNA as an unalterable proof of origin
Unlike fingerprints or facial recognition, DNA is considered virtually tamper-proof. A single set of base pairs can prove a person’s ancestry beyond a shadow of a doubt. But this technology carries risks: Genetic data is not only unalterable, but also inheritable. Anyone who discloses their DNA potentially exposes their family members’ data to attackers as well.
Data silos and vendor lock-in
Today, millions of DNA records are held by private testing companies such as 23andMe and Ancestry. These companies often store, analyze, and categorize genetic profiles without strict regulation. In the event of bankruptcy or a takeover, sensitive DNA data could fall into the hands of insurance companies, pharmaceutical firms, or government agencies. The risk of misuse is high.
Authenticity in the Age of AI
Since photos, voices, or even videos are no longer sufficient proof of authenticity, DNA could become the ultimate form of authentication. But without clear governance structures, the question remains: Who manages this data? Who is allowed to use it? And what happens if it is compromised?
Governance for Non-Human Identities
The growing number of machine identities—such as bots or AI-powered agents—exacerbates the challenge. Companies need new frameworks to clearly define ownership, lifecycles, and responsibilities for such identities. DNA-based identity verification could serve as a bridge here, enabling machine identities to be uniquely linked to human owners.
Conclusion: Responsibility remains a human matter
DNA as an anchor of identity sounds like science fiction, but it could soon become a reality. It offers opportunities for greater security in a world where AI can mimic every outward aspect of identity. At the same time, it raises serious questions about data protection, governance, and ethical responsibility. One thing is certain: responsibility, accountability, and control can only be ensured where people remain identifiable as the source.