What is AIWiki Malaysia?

AIWiki Malaysia is a free, open AI knowledge base covering artificial intelligence concepts, tools, models, and use cases — written specifically for Malaysian professionals and students. It is maintained by AITG Sdn Bhd, an AI company based in Penang.

Who maintains AIWiki Malaysia?

AIWiki Malaysia is maintained by AITG Sdn Bhd (Registration: 202601016521 (1678618-W)), an AI company headquartered in George Town, Penang, Malaysia. The editorial team continuously updates and expands the knowledge base.

What topics does AIWiki Malaysia cover?

AIWiki Malaysia covers a wide range of AI topics including large language models (LLMs), AI agents, machine learning fundamentals, prompt engineering, AI automation, generative AI tools, Malaysian AI regulations, local vendor landscape, and real-world AI use cases relevant to the Malaysian market.

How do I search for AI topics on AIWiki Malaysia?

You can use the search bar at the top of the site to find articles by keyword or topic. Articles are also organised by category, so you can browse by subject area such as Models, Tools, Concepts, or Use Cases.

Is AIWiki Malaysia available in Bahasa Malaysia?

Yes. AIWiki Malaysia publishes content in both English and Bahasa Malaysia to serve the full breadth of the Malaysian professional and student community. Language availability is indicated on each article page.

How can I submit a topic or suggest an article?

You can suggest topics or submit article ideas by contacting the AIWiki Malaysia team at admin@aiteragrid.com. AITG Sdn Bhd reviews all submissions and publishes content that meets editorial accuracy standards.

Face Recognition

Face recognition is a biometric technology that identifies or verifies individuals by analysing facial features from images or video, widely used in security, banking, and immigration.

5 min readLast updated June 2026Applications

Face recognition is a category of computer vision technology that automatically identifies or verifies a person by analysing the geometric and textural features of a human face. The system typically captures an image or video frame, detects the face within it, normalises the orientation and lighting, extracts a numerical representation known as a face embedding, and compares that embedding to one or more enrolled templates to produce an identity match or verification decision.

Technical foundations

Modern face recognition systems are built on deep learning, particularly convolutional neural networks (CNNs) trained on large labelled image datasets. The pipeline generally has four stages: face detection, alignment, feature extraction, and matching. Detection locates faces in an image, often using single-shot detectors such as MTCNN or RetinaFace. Alignment normalises pose and scale using facial landmarks. Feature extraction transforms the aligned face into a fixed-length vector (commonly 128 to 512 dimensions) trained with metric learning objectives such as triplet loss, ArcFace, or CosFace. Matching computes cosine similarity or Euclidean distance between embeddings and applies a threshold to decide identity.

Breakthrough architectures include DeepFace (2014), FaceNet (2015), VGGFace, and the ArcFace family, which pushed verification accuracy on the Labelled Faces in the Wild (LFW) benchmark past 99 percent. Subsequent research has focused on robustness to pose, illumination, age, occlusion, and presentation attacks.

Verification versus identification

Face recognition has two distinct operating modes. Verification (one-to-one matching) confirms whether a claimed identity matches the live face, typical of login or eKYC flows. Identification (one-to-many matching) searches a gallery to determine who a face belongs to, used in surveillance, watch-list screening, and missing-person investigations. The two modes have different error profiles: verification trades off false acceptance and false rejection rates, while identification is additionally constrained by gallery size and rank-N accuracy.

Liveness detection and presentation attacks

Because static photographs, printed masks, and replayed videos can spoof naive recognisers, production systems pair recognition with liveness detection, also called presentation attack detection (PAD). Active liveness asks the user to blink, smile, or turn their head. Passive liveness analyses texture, depth, micro-movements, or infrared signal without user interaction. ISO/IEC 30107 defines the standard taxonomy for presentation attacks.

Applications

| Domain | Example use | |---|---| | Banking and fintech | eKYC onboarding, transaction authentication | | Mobile devices | Phone unlock (Face ID, equivalent Android implementations) | | Border control | Automated immigration gates | | Retail and access | Office entry, event check-in, age estimation | | Law enforcement | Suspect identification, missing person search |

Accuracy, bias and governance

Public benchmarks such as the NIST Face Recognition Vendor Test (FRVT) report continuous accuracy gains, with top algorithms now exceeding 99.8 percent verification accuracy at controlled false-match rates. However, NIST and academic studies have repeatedly documented demographic differentials, with higher error rates for darker-skinned, female, elderly, and very young subjects. Mitigation involves more representative training data, fairness-aware loss functions, and operational thresholds calibrated per population.

Regulators worldwide have introduced laws restricting public-sector and real-time biometric surveillance, with the European Union AI Act, Illinois BIPA, and various national data protection laws imposing consent, purpose-limitation, and retention requirements on face data.

Malaysian Context — eKYC, Banking, and Immigration

Bank Negara Malaysia (BNM) issued the e-KYC Policy Document in 2020, providing the legal and operational framework for remote biometric onboarding of individual customers by licensed financial institutions. The guideline expects systems to combine MyKad data extraction, facial verification against the MyKad photograph, and active or passive liveness detection. BNM has progressively expanded the policy to cover Islamic banking, e-wallets, and capital market intermediaries regulated by the Securities Commission Malaysia.

Domestic banks including Maybank, CIMB, Hong Leong Bank, RHB, Public Bank, and AmBank have rolled out face-recognition onboarding inside their mobile apps. Hong Leong Bank launched an eToken with built-in facial authentication for its ConnectFirst online banking platform. Digital banks licensed by BNM, including GXBank, AEON Bank, KAF Digital Bank, Boost Bank, and Ryt Bank, rely on face recognition as the primary verification step for account opening.

The Immigration Department of Malaysia (Jabatan Imigresen) operates automated biometric clearance gates at KL International Airport, Penang International Airport, and major land borders, using facial recognition together with MyKad and passport chip data. Police, JPN, and JPJ also use face-matching against the National Registration Department database for investigative purposes, subject to internal authorisation.

Personal data collected for face recognition falls under the Personal Data Protection Act 2010 (PDPA), enforced by the Personal Data Protection Department (JPDP). Recent amendments raised penalties for non-compliance and introduced a data breach notification obligation, increasing the compliance burden on operators of biometric systems. The forthcoming Malaysian AI Governance Framework, coordinated by MOSTI and the National AI Office, is expected to add specific guidance on high-risk biometric use cases.

Local computer vision firms such as XOX Net, MyEG Services, and Pos Malaysia digital arm have integrated third-party face-recognition engines into government and commercial workflows, and several Cyberjaya- and Penang-based startups offer domestically developed liveness and matching SDKs tailored to South-East Asian skin tones and lighting conditions.

References

Schroff, F., Kalenichenko, D., and Philbin, J. (2015). FaceNet: A Unified Embedding for Face Recognition and Clustering. CVPR.
Deng, J. et al. (2019). ArcFace: Additive Angular Margin Loss for Deep Face Recognition. CVPR.
National Institute of Standards and Technology. Face Recognition Vendor Test (FRVT) Ongoing. NIST.
Bank Negara Malaysia. (2020, updated 2024). Policy Document on Electronic Know-Your-Customer (e-KYC).
ISO/IEC 30107-3. Information technology — Biometric presentation attack detection.

Tags:biometrics computer-vision ekyc identity-verification

Type	Biometric identification technology
Core technique	Deep convolutional neural networks
First major breakthrough	DeepFace (Facebook, 2014)
Key use	Authentication, eKYC, surveillance
Standards	ISO/IEC 19794-5, NIST FRVT
Related	Computer vision, biometrics, eKYC

Technical foundations

Verification versus identification

Liveness detection and presentation attacks

Applications

Accuracy, bias and governance

See Also

References

References