After the protocol is implemented, customers will be prompted to take a photo or video of themselves. Sophisticated facial recognition software will verify the user's identity and allow the transaction.
According to the patent abstract, traditional passwords do not provide a sufficient degree of security, as many people rely on short passwords that are easy to remember and thus easy to hack. And even a long password won't protect a customer if a mobile device is stolen and hacked. Users currently type in a password after turning away from those present, possibly "awkward or embarrassing in many situations," according to the document.
Amazon's technology, however, is a bit more than just facial recognition software. Since existing algorithms can easily be spoofed by holding a picture of a person in front of the camera, the Amazon app will require the user to perform certain actions, such as blink, smile or tilt their head.
"[This] causes the transaction to be performed after verifying performance of the action by the identified user," says Amazon.
It is unknown, however, when the technology will be implemented. as additional work is required to provide sufficient reliability. Google's Android face unlock system is reportedly easily spoofed by a doctored photo, even after a blink request was introduced.