The future prospects of embedded microchips in humans as unique identifiers: the risks versus the rewards

Abstract

Keywords

access control employees microchip implants RFID risk social implications uberveillance

Microchip implants for humans are not new. Placing heart pacemakers in humans for prosthesis is now considered a straightforward procedure. In more recent times we have begun to use brain pacemakers for therapeutic purposes to combat illnesses such as epilepsy, Parkinson’s disease, and severe depression. Microchips are even being placed inside prosthetic knees and hips during restorative procedures to help in the gathering of post-operative analytics that can aid rehabilitation further. While medical innovations that utilize microchips abound, over the last decade we have begun to see the potential use of microchip implants for non-medical devices in humans, namely for control, convenience and care applications. Most of these emerging applications that have been demonstrated in numerous case studies have utilized passive radio-frequency identification (RFID) tags or transponders embedded in the tricep, forearm, wrist or hand of the implantee. The RFID transponder stores a unique identifier that is triggered when the device comes into range of a reader unit.

The first commercial RFID implantable – the VeriChip

After Professor Kevin Warwick’s Cyborg 1.0 experiment in Britain in 1998 (Warwick, 2002), came the unrelated establishment of the VeriChip Corporation in the United States, soon after the September 11, 2001 terrorist strike. Scott Silverman, the CEO of the then VeriChip Corporation was often quoted describing the need for implants, especially for first responders, given the tragic way so many firemen lost their lives in the Twin Towers (Applied Digital Solutions, 2003). He and Richard Seelig, the Vice President of Medical Applications at VeriChip, were implanted in early 2002. On 11 May 2002, the Jacobs family volunteered to be the first consumers to undergo the chipping procedure, which was broadcast live on American television (BBC, 2002). VeriChip then chose to implant some high-profile people, including Mr Rafael Macedo de la Concha (Mexico’s Attorney General) and a number of his staff, citing security purposes. In 2004 and 2006, Baja Beach Club and Citywatcher.com respectively, were engaged in human implantable programs on their company premises. According to VeriChip about 2000 persons had been implanted worldwide by the end of 2008.

When VeriChip first launched their product range, they had four cornerstone application contexts: (1) VeriPay, (2) VeriMed, (3) VeriGuard and (4) Corrections. The VeriPay system allowed end-users the capability to perform cash and credit transactions with the embedded implant. VeriMed was a user-driven healthcare information portal whereby consumers (i.e. patients) could maintain their own personal health record (PHR) online. Hospital staff and emergency services personnel could then access that information to get patient history, as well as alerts regarding allergic reactions to drugs and more. The VeriGuard application was considered to be a versatile secure access technology which let in authorized persons to buildings and blocked out unauthorized persons (VeriChip, 2003). Finally, VeriChip’s ‘Corrections’ product had to do with chipping people who had committed a crime, were on parole or probation, or were awaiting trial.

This article uses a case study to showcase the issues arising from the application of RFID implants in humans. The study focuses on one of the earliest deployments of the VeriChip VeriGuard application within a business context at Citywatcher.com. Located in Cincinnati, Ohio, Citywatcher.com was a small government contractor specializing in surveillance equipment and surveillance-related projects. On 1 February 2006, two of its employees had glass encapsulated microchips with miniature antennae embedded in their forearms (WND, 2006). All employees of the small business were given an opportunity to get an implant for access control, and a total of four employees were implanted. The microchips acted just like RFID proxy cards, save for the fact they were beneath the skin. The embedded microchips were used by the employees to gain access to a restricted area containing vaults of sensitive data and images related to policing (e.g. Cincinnati Police Department) and private business. Citywatcher mainly stored on its premises CCTV video surveillance of public streets in Cincinnati. The CEO of the company, Mr Sean Darks, considered the implants to be more sophisticated than keycards and touted their usability and affordability when compared to biometric systems. Darks was quoted on several occasions as saying that the solution was very convenient. It should be made clear that the company ceased operations in 2008 for reasons that were unrelated to the implanting of employees.

The data for the case study come from a single interview with Mr Gary Retherford of Six Sigma Consulting (conducted on 17 June 2009; see Six Sigma, 2010). He was the external consultant responsible for the deployment of the VeriChips at Citywatcher.com, and was himself voluntarily implanted (Associated Press, 2006). The data from the interview was analysed using emergent themes and the narrative is characterized by thick descriptions from the interview.

Lessons from Citywatcher.com

Seeing what the world was made of

Retherford described a feeling of excitement, anticipation and even trepidation when he announced that the first employees had been chipped. He was thinking about the future impact the announcement might have because from his research: ‘it was going to be the first time in any place of employment, [that] employees [had been] implanted with a microchip’. He noted:

and this is a little strange to say this – but I wanted to see … how the human race would react and what the world was made of to deal with this concept and so when … I clicked the little send button … I remember I had kind of a pause and a thought and a deep breath. Because I knew there was no coming back once I hit the send.

Furthermore, from a personal motivation, Retherford stated:

there was also a part of me that felt that there was nothing wrong with this [human microchipping] … as humans we begin to do things more and more as we get used to it. So there’s the initial shock, but once you get over it, whatever ‘it’ is, we tend to absorb it, we bring it into our minds, we’re able to wrap arms around it and we continue to move forward. Now sometimes it takes a little bit longer for some than for others, depending on the situation or what it is.

Taking the risks and the pace of change

We asked Retherford about the importance of deploying new RFID services and applications with the user at the centre of the design effort as a risk minimization strategy. Retherford’s responses ranged from ‘there are no risks at all’, putting on his Six Sigma Consulting hat, to there are ‘tremendous risks’ putting on his Baby Boomer’s hat. No doubt this was a natural attempt to reconcile the pace of change between the era he grew up in with the era he was now living in. He stated: ‘[i]t’s unfathomable … to ever think that I was watching a television with only three channels and I did not have a cell phone and I did not have a computer … so the differences are so vast …’ But finally, Retherford stated: ‘No, I don’t think there are risks because it’s a moot point to say that there are.’

It was not difficult to see where Retherford was coming from and how he conceptualized the world around him. For Retherford, technological change of any type was ever-present so fighting it did not make sense. He was asked to clarify whether risk was an inherent part of all change and as such not that big a deal. Retherford agreed that the risk argument was no longer even an argument any more, but rather another ‘moot point’. He was much more amenable to the idea of: ‘Well, okay, it’s going to happen so now how do we do it? Let’s address the issues that we have to based on the “fact” that it’s going to happen anyway.’

Resistance and the vocal minority

Retherford especially found irritating the negativity surrounding RFID implants by some members of the global community. He called it ‘irrational paranoia by the vocal minority’. According to Retherford, some people were making RFID implants out to be bigger than they actually were and linked to some type of conspiracy theory related to Big Brother type technology. Putting aside the claims of the passionate opponents of RFID implantable technologies, Retherford again asserted:

I think by and large, society is ready for it… I’m one of these people, that if I know something is coming, I don’t try to not embrace it, I go ahead and embrace it and look for the positive sides of it and on this [RFID implants] it was pretty obvious to me that there was a positive side.

Those who are against implantable technologies like RFID, claim that it will ultimately be used by the state to conduct sophisticated tracking and tracing of individuals and will lead to breaches in bodily privacy.

To a degree, Retherford categorizes opposition to chip implants as a type of hysteria which stems from personal beliefs which take on one of several forms including: (1) civil libertarian, (2) religious literalist, (3) paranoid and/or (4) mentally imbalanced. He emphasizes that instead of people talking about risk return, or the value proposition of chip implants, that is, ‘What do I get out of it for getting implanted?’, people are directly engaging with statements to do with Big Brother or the Mark of the Beast (from the Book of Revelation). Retherford points to other technologies that he perceives to be of greater significance to Big Brother than mere implants. He uses the example of cell phones and the internet and questions why the group concerned by Big Brother are not lobbying against the widespread diffusion of such technologies as biometrics. He says circumspectly:

So now you have to consider the arguments of the people that are against it [implants] and really come down to a rational reason why people would argue either for or against either way and I don’t consider paranoia or just someone of a radical viewpoint to be a rational reason to either include or not include something.

This is a sentiment echoed by another implantee, Mr Amal Graafstra (Graafstra et al., 2010). There were also some consultants at the time who did not want to start VeriChip deployments until they had addressed all the issues but according to Retherford, these people ‘were left behind’.

The socio-ethical implications

Repeated questioning of what the socio-ethical implications that microchip implants in humans will give rise to does nothing to alter Retherford’s stance. Retherford is not interested in opinions or feelings about the implants as he sees these as irrelevant. More importantly he is focused on where the future trajectory of technology is headed and how he will best work around those parameters. ‘What ifs’ were somewhat redundant lines of questioning for Retherford, who is much more interested in ‘not “should we do this?”, but “how do we implement it?”’ Here Retherford does allude to the importance of finding a balance between law and control but emphasizes that the question of whether or not we should use the chip is long in the past.

I think that discussion has already been done. I think that discussion is over with. Because the fact that it is within the sights of the technological world to achieve it, you no longer make the argument on should it or shouldn’t be, now you go into the realm of: how do we discuss and maybe legislate on the trade-offs between how much control and how much not to control, because we’re already there for all practical purposes. We’re there now even if you don’t look at it is an implantable chip. We’re there …

It is on this crucial point that Retherford seems to have contradicted himself. On the one hand he is saying that questions to do with socio-ethical implications are irrelevant, and on the other he is talking about having a discussion about the trade-offs between how much control is too much or too little.

Privacy, security and control

Retherford is in agreement that there is no doubt that the implantable microchip is going to have an impact on society. Retherford acknowledges control and privacy issues but emphasizes that these issues are only relative to security. The compelling question that needs to be asked, Retherford maintains, is whether ‘my security supersede[s] my neighbours’ right to privacy?’ Alluding to homeland security and law enforcement personnel with whom Retherford has had contact in his day-to-day tasks, he reaffirms the philosophy of the sector as being: ‘It’s my job to protect you regardless of what it costs you.’ In fact, it is quite clear the attitude which is propelling this philosophy forward says: ‘I will protect you no matter how much of your privacy and your liberties I destroy, it’s my job to make sure that no harm comes to you …’ More recently see the work of Magnet (2011) who writes on the relationship between RFID, surveillance and bodily scrutiny.

We are concerned with the impact that such an implant regime would have upon the individual, especially in the employer–employee context. New types of operational efficiencies in organizations would mean there would be limited flexibility built into the way people worked. Some level of choice would be automatically withdrawn from the individual, even on which route to take on a given job using the company car. Retherford, who does acknowledge the broader issues, had to admit to this looming scenario. He reflected:

[W]ell I think what you’re saying makes sense.… I understand what you’re saying – in the mind, it does make you wonder, ‘Okay, can I really work like this?’, because you know if I want to veer off and stop off somewhere that’s not typically where I would go next because I want to stop and get something to drink, a Coke or something. I mean, is this going to be in the back of my mind that I’m now outside of that control? And I do believe that that is certainly a risk which is coming at us as a society. That is, can we operate under those types of conditions?

But again, Retherford returns to the security versus privacy question, and the driving force behind someone being implanted. Retherford recounts that there is a question he poses to others, that is always answered the same way:

Does my right to security supersede my neighbours’ right to privacy? … Because the question then comes is – ‘Do I want to be chipped?’ No. But I don’t really know my neighbour that well, so maybe Congress should pass a law that chips my neighbour.

RFID implants may well be an alternative but they too will be open to the same abuses as present-day technology systems (Reynolds, 2004). And we need to consider what they will mean for humanity. If we are embedding computer systems into the human body for non-medical purposes, then we need to be ready for the internalization of a lot of the same problems that personal and mobile computing have brought with them. Even Retherford has to concede:

I think that there will be attempts to maybe abuse it by those people who are already trying to attempt to do these things that are either external to the government or you know, say other organizations that we interact with. But I don’t think it’s going to be any different from what we see today.

Sizing up the implantable market

Retherford does not doubt that the market for RFID implantables, like so many other technologies, will be driven by commerce. He believes that adoption will happen in ‘small incremental ways’ at first, ‘in efforts that are first imposed on smaller groups’. Among these groups he cites Alzheimer’s facilities or nursing homes, and prisons, given their fundamental use of access control systems to let people come and go or to keep people in. Retherford referred to jails being excellent outlets for RFID implants and framed the argument by referring to citizenry who would be more than happy to see ‘less desirable’ citizenry chipped to stamp down on criminal acts, or those who are repeat offenders. Despite this approach being fraught with ethical issues, it is likely that RFID implants will be rolled out to address needs in minority groups, such as those suffering from mental illness, or children who are under the guardianship of their parents, or the elderly who are being looked after in care. For Retherford, this is exactly the manner in which the whole populace might grow accustomed to the idea of opting into implants. Of course, another way would be to bring in an implant during a state of emergency for management and coordination purposes (Associated Press, 2005; Klein 2007).

Being implanted and maintenance issues

A great part of the story of the adoption of RFID implants has to do with the fact that technology is being implanted beneath the skin, where bearers do not have any control to remove it at will (Masters and Michael, 2007). The aspect of bodily privacy is especially important here. But for Retherford, the ‘psychology of having it [RFID] implanted is not going to be the hurdle’. Retherford points to the younger generation as opposed to those in their 60s and thinks that those in their 20s will just view RFID implants as yet another technique, akin to their iPod and cell phone. He parodies: ‘Ah, my chip doesn’t work so therefore I need to go get some maintenance done.’ Retherford explains with reference to Gen Ys (otherwise known as Millennials, born between 1981 and 2000):

[T]hey’re going to look at this and they’re going to wonder why we ever had this discussion because they’re going to say, well, I have the chip and somebody did knock my frequency out or they did render it a problem so now I need to go [to] … a chipping centre if you would, I need to go in and get my chip reprogrammed … or something like that.

Discussion and conclusion

Opting out of the single sign-on chip

A big part of the argument for proponents of chip implants for humans has to do with the fact that it is argued that microchips will be optional. Retherford for one does not see chip implants as ever being mandatory. People will be given an option. This is the common mantra among business developers of implantables (Michael and Michael, 2010). Yet the authors of this article believe that when services are tied to a citizen’s implantable unique ID, without an ‘alternative’ device, opting out means a loss of services, perhaps even monetary loss (Michael and Michael, 2012). There are consequences to opting out even from ‘optional’ systems. Retherford is confident, that when people are faced with the alternative possibilities, they will prefer to have the implant rather than not. Today, risks related to a multitude of technologies and applications are evident, but words like ‘consent’ and ‘choice’ and ‘opting out’ have almost become synonymous with politically correct statements. At least for now, we can speak about options and not mere compliance. But for how long?

Scope creep and common concerns

As technology moves faster than the enactment of policy and legislation, it is innovation that is now driving new levels of technology acceptance. The bombardment with and diffusion of innovations, day after day, at an exponential rate, has meant that consumers’ expectations and their ability to adapt to changes in the marketplace have made them more resilient and, to some extent, more open to the trying out of new ideas (Kurzweil, 2005). But, with the onslaught of inventions, also comes the increasing importance of how these technologies can be used, beyond the scope of their original design. It is on this aspect that reports on implants and nanotechnology that come from very different sources agree. That is, sober sources of secondary data from those vested with the direction of a state’s policy, regulation and legislation are surprisingly similar to the vocal online opinions from those who are generally labelled as conspiracy theorists or human rights activists (Michael and Michael, 2010).

Human rights

Whatever the inspiration for the argument that different groups are putting forward regarding why people should or should not be implanted for commercial applications, it is important to bring diverse groups of people together to debate and discuss what these possibilities might herald, what they might mean today and well into the future. Discussions about human rights, liability and loss, and the potential for invasion of privacy and breakdown of trust between organizations and citizens, or insurmountable control of governments over citizens will have major repercussions well into the future. Are there potential detrimental effects for individuals who bear high-tech devices? Privacy experts would do well to warn about the perils of maintaining a false sense of ‘freedom’, ‘security’, and ‘justice’ based around convenience solutions which look as if they are making life easier but are instead encroaching on our human rights.

Numerous case studies demonstrate the successful deployment of VeriChip-style devices and commensurate applications but, for the time being, implantables for non-medical applications have diminished in importance for all but the hobbyist implantees, systems engineering researchers and artists. This does not mean that the potential for RFID implantees has disappeared – we may still be waiting for that next generation who may demand an iPlant, just like the current generation has demanded an iPod, iPhone and iPad. How the next generation go about achieving risk return might be based on a completely new paradigm. If the risk-taking behaviour is successful the dividends are purported to be great, but equally if the risks taken are not calculated, the effects might well be detrimental and have long-term repercussions for humanity from which there will be no turning back. One thing that is clear is that, despite the arrival of the implantable microchip, we have not yet seen it unleashed to its full capacity. As a community of stakeholders, we have a great deal of thinking to do between now and that point, but perhaps not as much time in which to act. The VeriChip Corporation may no longer be operational, but there are now numerous other companies, including Positive ID and VeriTeQ that are deploying applications for RFID implants in the ‘care’ space. The potential for function creep is there for care-style applications to be underpinned by services that are principally oriented around consumer control and uberveillance.

References

Applied Digital Solutions (2003) Implantable personal verification systems. Available at: http://www.adsx.com/prodservpart/verichip.html (accessed April 2004).

Associated Press (2005) RFID chips help track Katrina dead. September. Available at: http://www.msnbc.msn.com/id/9514138/ (accessed October 2010).

Associated Press ( 2006) Company implants ID chips into employees’ arms. 13 February. Available at: http://www.foxnews.com/story/0,2933,184722,00.html (accessed October 2010).

BBC (2002) US family gets health implants. 11 May. Available at: http://news.bbc.co.uk/2/hi/health/1981026.stm (accessed October 2010).

Graafstra

A et al.

(2010) Social-technical issues facing the humancentric RFID implantee sub-culture through the eyes of Amal Graafstra. Paper presented at International Symposium on Technology and Society, Wollongong, Australia, IEEE Computer Society.

Klein

(2007) Shock Doctrine. New York: Metropolitan Books.

Kurzweil

(2005) The Singularity Is Near: When Humans Transcend Biology. London: Penguin.

Magnet

(2011) The audible body. In: MCorpus: An Interdisciplinary Reader on Bodies and Knowledge. Casper

Currah

. New York: Palgrave Macmillan, pp. 139–153.

Masters

Michael

(2007) ‘Lend me your arms’: the use and implications of humancentric RFID. Electronic Commerce Research and Applications 6(1): 29–39.

10.

Michael

(2010) The diffusion of RFID implants for access control and e-payments: a case study on Baja Beach Club in Barcelona. Paper presented at International Symposium on Technology and Society, Wollongong, Australia, IEEE Computer Society.

11.

Michael

(2012) Implementing namebers using microchip implants: the black box beneath the skin. In: Pitt

(ed.) This Pervasive Day: The Potential and Perils of Pervasive Computing. London: Imperial College Press, pp. 100–145.

12.

Reynolds

(2004) Despite the hype, microchip implants won’t deliver security. 20 July. Gartner Research. Available at: http://www.gartner.com/id=453560 (accessed October 2012).

13.

Six Sigma (2010) SixSigma Security. Available at: http://www.sixsigmasecurity.com/index.html (accessed June 2009).

14.

VeriChip (2003) VeriChip Corporation launches first in a planned series of ‘VeriGuard’ secure access control applications: first VeriGuard system now installed and functioning. 9 October. Available at: http://findarticles.com/p/articles/mi_m0EIN/is_2003_Oct_9/ai_108679224/ (accessed November 2010).

15.

Warwick

(2002) I, Cyborg. London: Century.

16.

WND (2006) Employees get microchip implants: company requires controversial device for certain workers. 10 February. Available at: http://www.wnd.com/?pageId=34751 (accessed October 2010).