Originally Posted by michaelchertoff
(Sigh) The whole point of CAPPS was that if an identity didn't match up with an "activity" history.. things like tax records, etc., it would be flagged for further scrutiny. The "Fredrick Forsyth" scenario you mention above is well known and taken into account by these systems. Though they are imperfect, they wouldn't be bad.
As was just mentioned, that only covers the easily faked ID. If someone steals an existing ID (complete with history), it's not going to be caught.
"ID" does very little to promote real security.