[OPLINLIST] Smart phone Library Card application

Nick Tepe NTEPE at columbuslibrary.org
Mon Aug 22 12:21:42 EDT 2011 

Columbus Metropolitan has for as long as I'm aware accepted just the library card number for customers to check out materials. In fact, many of our customers memorize their library card numbers and store the physical card in a secure place in order to be sure that no one else can access the account. Not being able to use just the number to check out would be a major inconvenience for many of our customers, especially those who have multiple family members' cards to keep track of, and would likely create more work for staff as we would have to check IDs and/or look up accounts for customers who would otherwise just be able to enter their card numbers.



Requiring customers to present the physical card in order to check out is essentially the library attempting to control access to the card, which regardless of whether or not the restriction is in place is ultimately the customer's responsibility. That being the case, it's better customer service to allow the customer to manage access to their account as they see fit. As long as we put reasonable security measures in place (such as PINs and a process for blocking lost cards) there shouldn’t be any difference between using the physical card or just using the number. Credit cards allow you to use the card number to make purchases online or over the phone (usually with a PIN or security code, just as we do), and require you to monitor activity on your account and immediately report a lost or stolen card. I can't see any reason why a library card should be any different.



C. Nicholas Tepe
Circulation Division Manager
Columbus Metropolitan Library
96 South Grant Avenue
Columbus, OH 43215
(614) 849-1203     fax (614) 849-1303
ntepe at columbuslibrary.org<mailto:ntepe at columbuslibrary.org>
________________________________
Columbus Metropolitan Library<http://www.columbuslibrary.org/>   [cid:image001.png at 01CC60C5.ADC64DE0] <http://twitter.com/columbuslibrary>    [cid:image002.png at 01CC60C5.ADC64DE0] <http://www.facebook.com/columbuslibrary>    [cid:image003.gif at 01CC60C5.ADC64DE0] <http://www.youtube.com/user/columbuslibrary>
________________________________






-----Original Message-----
From: Avery Shifflett [mailto:shifflav at oplin.org]
Sent: Monday, August 22, 2011 11:43 AM
To: oplinlist at oplin.org
Subject: Re: [OPLINLIST] Smart phone Library Card application







I'd actually like to see some more discussion on the security aspect of using barcode apps on smart phones.  I think Dan Will brought up an excellent point about patrons being able to enter any number they like.  I can see this becoming a huge problem.  Anyone tech savvy enough to use such an app will figure out that they can enter any number they like.  As long as the barcode meets the check digit, they can literally use anyone's account.



Personally, I'm thinking that if we accept it, we need a photo ID as well (as the original poster asked).



One person said: "there isn’t a way to verify that the person holding the card is the person you issued the card to, so why would the device be any different?", but I see it as being very different.  A physical card would have to be lost for someone else to use it, and the patron can report it lost/missing.  With a barcode app, anybody can use my account even though my physical card is safely tucked away.





Thoughts anyone?







Thanks,



Avery Shifflett

Carroll County District Library

















========================================================================================





Bruce,



   I have not seen this and since I don’t have a “smartphone” I won’t be using it but, my opinion is that the library card was given to the patron as their method of identification. They knew that when they got the card. They cannot (reasonably) expect you to accept something else.  What prevents the user from putting just any number in the app and have it create a barcode that might actually be someone else’s number? I can see where this might be something to work towards for our patrons but, I think we need a way to control the id creation (unless there is security controls that I am unaware of).



Be interesting to see how this plays out.





Dan Will

Technology Supervisor

Meigs County District Public Library

willda at oplin.org

740.992.5813

740.992.6140 (fax)


-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.oplin.org/pipermail/oplinlist/attachments/20110822/afda895b/attachment-0001.html
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.png
Type: image/png
Size: 489 bytes
Desc: image001.png
Url : http://lists.oplin.org/pipermail/oplinlist/attachments/20110822/afda895b/image001-0001.png
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image002.png
Type: image/png
Size: 212 bytes
Desc: image002.png
Url : http://lists.oplin.org/pipermail/oplinlist/attachments/20110822/afda895b/image002-0001.png
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image003.gif
Type: image/gif
Size: 608 bytes
Desc: image003.gif
Url : http://lists.oplin.org/pipermail/oplinlist/attachments/20110822/afda895b/image003-0001.gif

More information about the OPLINLIST mailing list